Discovery
Self-consistent .well-known discovery documents.
Agent card whose URL matches the issuer claimed by the OIDC and OAuth discovery docs. The three sibling .well-known documents agree on a single authority.
Agent Skills Discovery v0.2.0 index control. References a single skill stub at not.catastrophic.io/.well-known/agent-skills/echo.json so the discovery chain resolves end-to-end. The sha256 digest is all-zeros — obviously fake but format-correct, same pattern AASA and assetlinks use on this host. Build against this baseline; flip hostname to chaos to exercise the failure modes.
SEP-1649 MCP Server Card control. Self-consistent: serverInfo + protocolVersion that matches the capabilities + transport URL that actually resolves on this same host (to a minimal MCP error stub at /mcp returning a valid JSON-RPC 'Method not found' response). Build a client against this baseline; flip hostname to chaos.catastrophic.io to exercise the failure modes.
OAuth Authorization Server metadata claiming the same issuer as the OIDC discovery doc above. Counterpart to the chaos document, which deliberately disagrees with its siblings.
RFC 9728 Protected Resource Metadata control. resource matches the URL the document is served from; authorization_servers points at not.catastrophic.io/.well-known/oauth-authorization-server (a well-formed AS doc on this same host) so the discovery chain resolves end-to-end. bearer_methods_supported uses only IANA-registered values.
OIDC discovery doc whose issuer is `https://not.catastrophic.io` and whose endpoint URLs all resolve to real stubs on this same subdomain. Self-consistent with the OAuth AS and agent-card docs.
The chaos counterparts of these three documents return individually-valid responses that collectively contradict each other about who the authoritative server is. Here, all three agree.