How does MCP differ from Google\u2019s A2A protocol?

MCP defines how an agent talks to tools, databases, and APIs (agent-to-tool). A2A defines how agents talk to each other (agent-to-agent) \u2014 discovery, delegation, and coordination of sub-tasks. They\u2019re complementary, not competing. Google released A2A in April 2025 and donated it to the Linux Foundation in June 2025, so both protocols now sit under the same AAIF governance and are designed to interoperate.

How does MCP differ from Google\u2019s A2A protocol?

MCP defines how an agent talks to tools, databases, and APIs (agent-to-tool). A2A defines how agents talk to each other (agent-to-agent) \u2014 discovery, delegation, and coordination of sub-tasks. They\u2019re complementary, not competing. Google released A2A in April 2025 and donated it to the Linux Foundation in June 2025, so both protocols now sit under the same AAIF governance and are designed to interoperate.

The MCP 2026 Roadmap: Everything That's Changing for Developers

TL;DR — Key Takeaways

Anthropic donated MCP to the Linux Foundation's Agentic AI Foundation on December 9, 2025 — OpenAI, Google, Microsoft, AWS, Cloudflare, and Bloomberg joined as platinum members
The 2026 MCP roadmap (March 2026) targets four areas: transport scale, agent-to-agent communication, governance maturation, and enterprise readiness
MCP Apps shipped January 26, 2026 with 9 day-one partners (Amplitude, Asana, Box, Canva, Clay, Figma, Hex, monday.com, Slack) — tools now return interactive HTML in sandboxed iframes inside Claude, ChatGPT, Goose, and VS Code
Google's A2A protocol is now under the same governance body — complementary to MCP, not a replacement
MCP hit 97 million monthly SDK downloads and 10,000+ active servers; Pinterest saves 7,000 engineering hours per month using it

The MCP world moved fast in the past few months. The protocol joined the Linux Foundation. The 2026 roadmap dropped in March. MCP Apps shipped in January — and suddenly agents can render interactive UIs inside chat windows. Then Google's A2A protocol joined the same governance body. And the MCP Dev Summit brought 95+ sessions to New York City on April 2–3.

If you blinked, you missed a lot. This article covers every major shift, what each one means in practice, and what you should be building right now.

MCP Timeline — 18 Months in One Glance

MCP went from an internal Anthropic experiment to Linux Foundation infrastructure in under 18 months. Here's every shipping milestone that got us to April 2026:

Nov 25, 2024

Anthropic open-sources MCP

Initial spec, Python + TypeScript SDKs, Claude Desktop support.

Mar 2025

OAuth 2.1 draft for remote servers

First serious enterprise-auth story for remote MCP deployments.

Jun 18, 2025

Streamable HTTP + Elicitation

Spec revision 2025-06-18 ships Streamable HTTP as the production transport and adds elicitation (servers can prompt users for input).

Sep 2025

Official MCP Registry launches

Central, discoverable index of MCP servers — the "npm for agents".

Nov 25, 2025

Spec revision 2025-11-25

Tightens Streamable HTTP, OAuth 2.1, and tool schemas. Current stable.

Dec 9, 2025

MCP joins the Linux Foundation (AAIF)

Anthropic donates MCP alongside goose (Block) and AGENTS.md (OpenAI).

Jan 26, 2026

MCP Apps ships

9 day-one partners. Tools can now return sandboxed interactive UIs.

Mar 2026

2026 MCP Roadmap published

Transport scalability, agent communication, governance, enterprise readiness.

Apr 2–3, 2026

MCP Dev Summit NYC

First physical summit — 170+ attendees from Anthropic, AWS, Microsoft, OpenAI, GitHub, Uber.

Why MCP Joining the Linux Foundation Matters More Than You'd Think

Most developers I talk to saw the headline and filed it under "governance stuff." That's a mistake.

When Anthropic donated MCP to the Agentic AI Foundation (AAIF) — a directed fund under the Linux Foundation — on December 9, 2025, the protocol stopped being Anthropic's protocol. It became a neutral, open standard.

The co-founders of the AAIF are Anthropic, Block, and OpenAI. Platinum members include Google, Microsoft, AWS, Cloudflare, and Bloomberg. That means every major AI lab and cloud provider now has a seat at the governance table.

Why does that matter? It's the difference between a proprietary API and HTTP. Proprietary protocols get replaced when their owners pivot. Open standards get entrenched.

MCP joins two other founding projects under the AAIF:

goose (Block) — an open-source, on-device AI agent with native MCP client support. Runs models locally or via any provider and ships with a built-in MCP server catalog.
AGENTS.md (OpenAI) — a simple markdown convention that tells AI coding agents how to work with your repo: setup commands, conventions, testing, deployment. Think of it as CONTRIBUTING.md for AI. Adopted by 60,000+ open-source projects.

Put the three together and you have a complete open stack: AGENTS.md tells agents how to behave in your repo, MCP gives them tools and context, goose gives them a runtime. The agentic AI stack is consolidating around open standards — fast.

AAIF Founding Members at a Glance

Anthropic (co-founder)

Block (co-founder)

OpenAI (co-founder)

Google (platinum)

Microsoft (platinum)

Amazon AWS (platinum)

Cloudflare (platinum)

Bloomberg (platinum)

The 2026 MCP Roadmap — 4 Priorities You Need to Understand

The official 2026 roadmap dropped in March. The maintainers organized it around four priority areas. Here's what each one means in practice — not just on paper.

1. Transport Scalability

Streamable HTTP gave MCP a production-ready transport. But running it at scale exposed real problems.

When you run multiple server instances behind a load balancer, sessions break. Requests for the same session can land on different instances with no shared state. The Transports Working Group is making Streamable HTTP stateless across instances — defining how sessions are created, resumed, and migrated during scale-out.

They're also standardizing MCP Server Cards — a metadata format served at a .well-known URL so registries, crawlers, and clients can discover a server's capabilities without opening a live session.

One important note buried in the roadmap: no new official transports will be added this cycle. The working group is evolving Streamable HTTP rather than introducing alternatives — so if you're designing around it, you can count on it being the long-term default.

2. Agent Communication

Current MCP lets an agent call tools. The 2026 roadmap expands how servers and agents collaborate on multi-step reasoning.

An MCP server won't just expose tools — it will become an autonomous participant that receives tasks, evaluates policy, negotiates scope, and delegates sub-work to peer agents. The hard part is making delegation safe, observable, and reversible.

3. Governance Maturation

The AAIF is establishing working groups for each area of the spec. This means community-driven proposals, conformance testing, and formal review processes — not ad hoc changes from Anthropic's internal roadmap.

4. Enterprise Readiness

OAuth 2.1 with PKCE is now the spec'd auth mechanism for remote MCP servers. The roadmap doubles down on audit logging, policy enforcement, and compliance hooks — the things enterprises need before they'll run MCP in production.

Is your MCP server production-ready?

Check HTTPS, auth, CORS, headers, and injection risks in seconds — free.

Test any MCP server free →

MCP Apps — The Protocol Just Went Beyond Text

Until January 26, 2026, every MCP interaction was text in, text out. MCP Apps changed that fundamentally. It shipped as the first official extension to the MCP spec — published via the @modelcontextprotocol/ext-apps package.

Tools can now return rich HTML interfaces that render in sandboxed iframes with bidirectional JSON-RPC between host and UI. Think: a live data visualization dashboard, an editable design component, a multi-step form — all inside the conversation, no tab switching required.

MCP Apps was co-developed with OpenAI and is now part of the protocol spec itself — not a vendor extension. It works today in Claude, ChatGPT, Goose (Block), and VS Code, available on Claude's Pro, Max, Team, and Enterprise plans.

Day-one launch partners (Jan 26, 2026)

Amplitude

Asana

Box

Canva

Clay

Figma

Hex

monday.com

Slack

Salesforce (Agentforce 360) confirmed as coming soon.

A concrete example: Figma's MCP App lets you edit a design component inline in chat. Hex's renders a live, filterable dashboard. Canva's embeds a mini-editor. Tools that previously returned JSON blobs can now return interactive surfaces the user manipulates — without ever leaving the conversation.

What this means if you're building MCP servers

Returning structured data is no longer the ceiling for a good tool response. If your server powers dashboards, analytics, or any data-heavy workflow, start thinking about interactive responses instead of plain JSON. The spec now supports it natively.

MCP Meets A2A — Complementary, Not Competing

Google released the Agent-to-Agent (A2A) protocol in April 2025 and donated it to the Linux Foundation in June 2025. It's now under the same AAIF governance as MCP.

The distinction matters: MCP is how an agent talks to tools. A2A is how agents talk to each other.

MCP

Agent → tools, databases, APIs, file systems. Gives one agent access to external capabilities and context.

A2A

Agent → agent. Specialized agents discover each other, delegate sub-tasks, and coordinate results.

Most teams building real systems will use both. A2A doesn't replace MCP — it adds a coordination layer on top for multi-agent workflows.

Because both protocols are now under the same governance body, they'll evolve to fit together. The risk of fragmentation between the two is essentially gone.

Who's Actually Running MCP in Production

The adoption numbers are real and accelerating.

97M

Monthly SDK downloads

10,000+

Active MCP servers

70%

Of large SaaS brands have remote MCP servers

7,000

Engineering hours saved/month at Pinterest

Pinterest published the most detailed public case study. Their engineering team deployed a full MCP ecosystem — domain-specific servers, a central registry, and human-in-the-loop approval for sensitive operations. By January 2025 (their internal launch), it was recording 66,000 monthly tool invocations from 844 active users.

The SaaS adoption list is no longer just early adopters. Slack, GitHub, Salesforce, Stripe, HubSpot, Shopify, Notion, Linear, Figma, and Cloudflare all have official or widely-used remote MCP servers. First-class client support now spans Claude, ChatGPT, Cursor, Gemini, Microsoft Copilot, and VS Code.

The MCP Registry — the "npm for agents"

The official MCP Registry launched in September 2025 as the canonical index for publishing and discovering MCP servers. Instead of hunting GitHub for "MCP server for X," you search one place — same pattern as npm or PyPI. Servers are versioned, metadata-tagged, and searchable by capability.

Client vendors (Claude Desktop, Cursor, etc.) are wiring the registry in directly, so installing a server becomes a single click rather than a JSON edit. This is the distribution layer MCP was missing for its first year — and its existence is why "70% of large SaaS brands have remote MCP servers" happened as fast as it did.

You can browse the registry or test any server in the browser with MCP Playground before wiring it into your client.

This is no longer a promising early-stage protocol. It's infrastructure.

Over 8,000 MCP servers still have no authentication

A February 2026 scan found thousands of publicly exposed servers. Scan yours in seconds.

Scan your MCP server →

What Developers Should Be Building Right Now

Given where the roadmap points, here's where to put your time.

Build remote MCP servers, not local ones. The ecosystem is converging on remote, OAuth-secured servers. Local stdio servers are fine for personal tooling but won't scale to real products. Set up Streamable HTTP with OAuth 2.1 PKCE now — it's what the spec prioritizes.

Rethink what a good tool response looks like. MCP Apps means your tools can return interactive UI, not just structured data. If your server powers a dashboard, analytics workflow, or any data-heavy task, interactive responses are now part of the spec.

Design for stateless operation from day one. The roadmap will fix Streamable HTTP session stickiness — but don't wait for the spec fix. Build your server to store session state externally so multiple instances can serve the same client.

Add auth before you go public. With 10,000+ servers in the registry and a growing scan that found over 8,000 unauthenticated servers, this is a live problem — not a future one. A Bearer token check takes under an hour to add. OAuth 2.1 takes a day. Neither is optional for anything customer-facing.

Start watching A2A. You don't need to build with it today, but understanding where it fits — agent-to-agent coordination on top of MCP's agent-to-tool layer — will shape how you architect multi-agent systems in the next 12 months.

Is Your MCP Server 2026-Ready? (Checklist)

Eight things to verify before you ship an MCP server to real users in 2026. If you can tick every box, you're aligned with the roadmap and the current spec. Screenshot-friendly for your next team review:

MCP Server 2026 Readiness Checklist

Remote, not stdio-only

Stdio is fine for personal tooling; remote is required for anything multi-user or multi-client.

Streamable HTTP transport

Primary transport in the 2026 spec. SSE-only servers should migrate — SSE is being deprecated.

OAuth 2.1 with PKCE

Bearer-token auth is the minimum. OAuth 2.1 + PKCE is the spec default for public servers.

Stateless / externalized session state

State in Redis, Postgres, or DynamoDB — not in-memory. Enables horizontal scale.

.well-known MCP Server Card published

Machine-readable capability metadata — future-proofs you for discovery crawlers and client UIs.

Audit logs on every tool call

Who called what, with what args, at what time. Required for any enterprise conversation.

Rate limiting + scope-based policy enforcement

Per-user, per-tool caps. Scope checks before sensitive operations.

MCP Apps-capable where it makes sense

If your server powers dashboards, analytics, or multi-step forms, return interactive UI, not JSON blobs.

Can tick all 8? You're ahead of 90% of what's currently in the MCP Registry. Missing a few? Prioritize OAuth and Streamable HTTP first — the rest can follow.

The MCP Dev Summit — April 2–3, 2026, NYC

Hosted by the AAIF under the Linux Foundation — 170+ members, vendors, and practitioners with speakers from Anthropic, AWS, Microsoft, OpenAI, GitHub, Uber, and PwC. Sessions covered horizontal HTTP scaling, conformance testing, OCI/Docker distribution, authorization threat modeling, and the path to SDK V2. The full schedule is published at events.linuxfoundation.org.

What This All Means

MCP went from an Anthropic experiment to a Linux Foundation standard in under 18 months. The 2026 roadmap is focused on making it hold up in real production: stateless transport, agent-to-agent coordination, enterprise governance, and interactive tool responses.

The developers who get ahead are building remote, authenticated, MCP-Apps-ready servers now — before the spec finalizes these patterns and everyone else catches up.

Ready to test your MCP server against the 2026 spec?

Connect any remote MCP server and inspect its tools, responses, and behaviour — free, no sign-up.

Test MCP Server Free →

🤖 See how the 2026 spec actually behaves with different models

Paste your MCP server URL into MCP Agent Studio and run a real agent conversation against it — with 30+ models (Claude Opus 4.6, GPT-5.4, Gemini 3.1 Pro, Grok 4.20, Qwen, DeepSeek, and more). Watch every tool call live, compare how models handle tool calling, and see which ones best exercise your Streamable HTTP + OAuth setup. Free credits on sign-up.

Frequently Asked Questions

When did Anthropic donate MCP to the Linux Foundation?

On December 9, 2025, Anthropic donated the Model Context Protocol to the Agentic AI Foundation (AAIF), a directed fund under the Linux Foundation. The announcement was co-signed by Anthropic, Block, and OpenAI as AAIF co-founders, with Google, Microsoft, AWS, Cloudflare, and Bloomberg joining as platinum members.

What is the Agentic AI Foundation (AAIF)?

The AAIF is a neutral, vendor-independent governance body hosted by the Linux Foundation that oversees the development of agentic AI standards. Its three founding projects are MCP (Anthropic), goose (Block), and AGENTS.md (OpenAI). It replaces single-vendor control of these protocols with community-driven working groups and formal review processes.

When did MCP Apps launch and what can they do?

MCP Apps shipped on January 26, 2026 as the first official extension to the MCP spec (package: @modelcontextprotocol/ext-apps). Tools can return rich HTML interfaces that render in sandboxed iframes inside chat, with bidirectional JSON-RPC between the host and the UI. Day-one launch partners included Amplitude, Asana, Box, Canva, Clay, Figma, Hex, monday.com, and Slack. Works in Claude, ChatGPT, Goose, and VS Code.

Do I need to migrate from SSE to Streamable HTTP?

Yes — eventually. Streamable HTTP is the primary transport in the 2026 spec and the focus of the roadmap's scalability work. SSE is being deprecated, and the 2026 roadmap explicitly states no new official transports will be added this cycle. New servers should start on Streamable HTTP. Existing SSE-only servers should plan a migration, but SSE still works in most clients for now.

Is MCP still controlled by Anthropic?

No. Since December 9, 2025, MCP is governed by the Agentic AI Foundation (AAIF) under the Linux Foundation. Anthropic is one of three co-founders, alongside Block and OpenAI, plus platinum members Google, Microsoft, AWS, Cloudflare, and Bloomberg. Changes to the spec now go through community-driven working groups, not Anthropic's internal roadmap.

How does MCP differ from Google's A2A protocol?

MCP defines how an agent talks to tools, databases, and APIs (agent-to-tool). A2A defines how agents talk to each other (agent-to-agent) — discovery, delegation, and coordination of sub-tasks. They're complementary, not competing. Google released A2A in April 2025 and donated it to the Linux Foundation in June 2025, so both protocols now sit under the same AAIF governance and are designed to interoperate.

What are MCP Server Cards?

A standard metadata format served at a .well-known URL that lets clients, registries, and crawlers discover a server's capabilities (tools, resources, auth method, supported transports) without opening a live session. Defined in the 2026 roadmap by the Server Card Working Group. Think of it like robots.txt or .well-known/openid-configuration — a small file that unlocks an entire discovery ecosystem.

Should I still build local (stdio) MCP servers?

Yes, for personal tooling, experimentation, or anything tied to your local machine (filesystem, local Git, local DBs). For anything customer-facing or multi-user, build remote servers with Streamable HTTP + OAuth 2.1 + PKCE. That's where the roadmap, the registry, and the big-name SaaS adopters are all pointing.