JSPM

  • ESM via JSPM
  • ES Module Entrypoint
  • Export Map
  • Keywords
  • License
  • Repository URL
  • TypeScript Types
  • README
  • Created
  • Published
  • Downloads 160
  • Score
    100M100P100Q105228F
  • License MIT

MOVED: This package has moved to @agenteconomy/wallet

Package Exports

  • agentwallet-sdk
  • agentwallet-sdk/index.js

This package does not declare an exports field, so the exports above have been automatically detected and optimized by JSPM instead. If any package subpath is missing, it is recommended to post an issue to the original package (agentwallet-sdk) to support the "exports" field. If that is not possible, create a JSPM override to customize the exports field for this package.

Readme

AgentWallet SDK

v6.0.0 · MIT · Patent Pending

USPTO Provisional filed March 2026: "Non-Custodial Multi-Chain Financial Infrastructure System for Autonomous AI Agents"

Your AI agent needs to pay for things. Giving it your credit card is insane.

The actual problem: your agent is in a loop, it hits a paid API, and it needs to pay. The naive solution (raw wallet + private key) means one prompt injection or runaway loop drains everything. AgentWallet SDK gives your agent a wallet with hard on-chain spending limits, human approval by default, and no custody of your keys.

Agent wants to spend $0.50  → ✅ Auto-approved (under your $1/tx threshold)
Agent wants to spend $50    → ⏳ Queued — you get notified to approve or reject
Agent spent $9.50 today     → 🛑 Next tx blocked ($10/day cap hit)

The caps are enforced by smart contract. Application code — including the agent itself — cannot override them.

Why Not Just Give the Agent a Wallet?

Approach Problem
Raw EOA wallet One prompt injection or loop bug = everything drained
Multisig (Safe) Every transaction needs manual signatures — kills the point of automation
Custodial API Centralized, KYC friction, not crypto-native
AgentWallet SDK On-chain limits + human approval threshold + non-custodial. Agent spends within bounds; everything else queues.

Quick Start

npm install agentwallet-sdk viem

Set Up a Wallet with Spend Caps

import { createWallet, setSpendPolicy, NATIVE_TOKEN } from 'agentwallet-sdk';
import { createWalletClient, http } from 'viem';
import { privateKeyToAccount } from 'viem/accounts';
import { base } from 'viem/chains';

const account = privateKeyToAccount(process.env.AGENT_PRIVATE_KEY as `0x${string}`);
const walletClient = createWalletClient({ account, chain: base, transport: http() });

const wallet = createWallet({
  accountAddress: process.env.AGENT_WALLET_ADDRESS as `0x${string}`,
  chain: 'base',
  walletClient,
});

// Spend policy — lives on-chain, not in your app code
// Agent cannot spend more than this even if instructed to
await setSpendPolicy(wallet, {
  token: '0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913', // USDC on Base
  perTxLimit: 5_000_000n,    // $5 max per transaction
  periodLimit: 50_000_000n,  // $50/day hard cap
  periodLength: 86400,       // resets every 24 hours
});

Pay for an API (the 402 Flow)

import { createX402Client } from 'agentwallet-sdk';

const x402 = createX402Client(wallet, {
  supportedNetworks: ['base:8453'],
  globalDailyLimit: 50_000_000n,    // matches spend policy
  globalPerRequestMax: 5_000_000n,  // $5 max per request
  requireApproval: true,            // human-in-the-loop (default)
});

// Agent hits a premium API and gets 402 — SDK handles it
const response = await x402.fetch('https://api.example.com/premium-report');
const data = await response.json();
// Cost: $0.50 USDC, auto-approved (under $5 threshold)
// Every payment: tx hash on Base, auditable on basescan.org

The Trust Layer

This is what makes supervised payments different from autonomous payments.

Simulation Mode

Before any real payment, run in simulation to see exactly what would happen:

const x402 = createX402Client(wallet, {
  supportedNetworks: ['base:8453'],
  globalDailyLimit: 50_000_000n,
  globalPerRequestMax: 5_000_000n,
  dryRun: true,  // no funds move
});

const response = await x402.fetch('https://api.example.com/premium-report');
// Response: { simulated: true, wouldHavePaid: '0.50 USDC', withinLimits: true, dailyTotal: '2.00 USDC' }

Human Approval for High-Value Payments

import { createWallet, agentExecute } from 'agentwallet-sdk';

// Transactions above your per-tx limit queue for approval
const result = await agentExecute(wallet, {
  to: '0xRecipient',
  value: 50_000_000_000_000_000n, // 0.05 ETH (~$130)
});

if (result.executed) {
  console.log('Sent:', result.txHash);
} else {
  console.log('Queued for approval — tx ID:', result.queueId);
  // Your approval system gets notified; agent waits or continues other work
}

Explainability — Agent Must Show Its Work

Before any payment above your threshold, the agent surfaces:

  • What it's paying for
  • What the expected outcome is
  • What it will do if the payment fails
const paymentIntent = {
  url: 'https://api.example.com/market-data',
  amount: '2.00 USDC',
  reason: 'Fetching historical price data for AAPL 2023-2024',
  expectedOutcome: 'CSV with daily OHLCV data, ~500 rows',
  fallback: 'Use cached data from 2024-01-15 (3 months old)',
};

// Human sees this before approving anything above threshold
const approved = await requestHumanApproval(paymentIntent);
if (!approved) {
  return useFallback(paymentIntent.fallback);
}

Safe Abort

When a payment fails or is rejected, the agent handles it gracefully — not by retrying indefinitely:

const result = await x402.fetch('https://api.example.com/premium-data');

if (!result.ok) {
  switch (result.status) {
    case 402:
      // Payment rejected or limit hit — fall back to free alternative
      return await fetchFreeAlternative();
    case 'limit-exceeded':
      // Daily cap hit — log it, stop trying today
      console.log('Daily spend cap reached. Resuming tomorrow.');
      return null;
    case 'approval-rejected':
      // Human said no — respect that
      console.log('Payment rejected by human. Using cached data.');
      return getCachedResult();
  }
}

Production-Ready: Failure Handling, Retries, Fallbacks

Real agent deployments fail. Here's how to handle it.

Retry with Backoff

import { createX402Client } from 'agentwallet-sdk';

async function fetchWithRetry(
  x402: ReturnType<typeof createX402Client>,
  url: string,
  maxAttempts = 3,
): Promise<Response> {
  for (let attempt = 1; attempt <= maxAttempts; attempt++) {
    try {
      const response = await x402.fetch(url);
      if (response.ok) return response;

      // Don't retry on rejected payments or limit hits
      if (['limit-exceeded', 'approval-rejected'].includes(response.status as string)) {
        throw new Error(`Payment stopped: ${response.status}`);
      }
    } catch (err) {
      if (attempt === maxAttempts) throw err;
      // Exponential backoff: 1s, 2s, 4s
      await new Promise(resolve => setTimeout(resolve, 1000 * 2 ** (attempt - 1)));
    }
  }
  throw new Error('Max retries exceeded');
}

Fallback to Free Data Sources

async function getMarketData(symbol: string): Promise<MarketData> {
  // Try paid source first (better data quality)
  try {
    const response = await fetchWithRetry(x402, `https://paid-api.com/data/${symbol}`);
    return await response.json();
  } catch (err) {
    console.warn(`Paid API unavailable: ${err.message}. Falling back to free source.`);
    // Fall back to free source (rate-limited, less complete)
    const fallback = await fetch(`https://free-api.com/data/${symbol}`);
    return await fallback.json();
  }
}

Budget Guard — Stop Before You Hit the Cap

import { getRemainingBudget } from 'agentwallet-sdk';

async function checkBudgetBeforeLoop(wallet: Wallet, estimatedCostPerCall: bigint, callCount: number) {
  const remaining = await getRemainingBudget(wallet, '0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913');
  const estimatedTotal = estimatedCostPerCall * BigInt(callCount);

  if (estimatedTotal > remaining) {
    const maxCalls = Number(remaining / estimatedCostPerCall);
    console.warn(`Budget allows ${maxCalls} of ${callCount} planned calls. Adjusting.`);
    return maxCalls;
  }
  return callCount;
}

Non-Custodial Architecture

Your private key never leaves your infrastructure. The SDK interacts with on-chain contracts; no third party holds or validates your keys.

Your Infrastructure          On-Chain
─────────────────────        ────────────────────────────────────
  Agent process              AgentAccountV2 contract
  ├── private key (local)    ├── SpendingPolicy (your limits)
  ├── agentwallet-sdk        ├── Tx queue (over-limit txs)
  └── signs transactions     └── Audit log (immutable)
        │                          ▲
        └──── broadcasts ──────────┘

What this means: If you stop using AgentWallet SDK tomorrow, your wallets, keys, and on-chain limits continue to work with any Ethereum-compatible tool. No vendor lock-in.

Token Registry

80+ verified token addresses across 11 EVM chains + Solana. No hard-coded contract addresses.

import { getGlobalRegistry } from 'agentwallet-sdk';

const registry = getGlobalRegistry();

const usdc = registry.getToken('USDC', 8453); // Base chain ID
console.log(usdc?.address); // 0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913

const baseTokens = registry.listTokens(8453);
// ['USDC', 'USDT', 'DAI', 'WETH', 'WBTC', 'LINK', 'UNI', 'AAVE', ...]

Multi-Token Transfers

import { sendToken, sendNative, getTokenBalance, getBalances } from 'agentwallet-sdk';

// Send 100 USDC — no manual decimal math
const txHash = await sendToken(wallet, {
  symbol: 'USDC',
  to: '0xRecipient',
  amount: '100',  // → internally 100_000_000 (6 decimals)
});

// Check balances
const usdcBalance = await getTokenBalance(wallet, 'USDC');
console.log(usdcBalance); // "250.00"

const allBalances = await getBalances(wallet);
// [{ symbol: 'USDC', balance: '250.00', raw: 250000000n }, ...]

Multi-Chain Support

// Same API across chains — just change 'chain'
const wallet = createWallet({
  accountAddress: '0x...',
  chain: 'arbitrum',  // or 'base', 'polygon', 'optimism', etc.
  walletClient,
});
Chain x402 Bridge Swap
Base (recommended)
Arbitrum
Optimism
Polygon
Ethereum
Avalanche
Unichain, Linea, Sonic, Worldchain
Base Sepolia (testnet)

Uniswap V3 Swaps

import { attachSwap } from 'agentwallet-sdk/swap';
import { BASE_TOKENS } from 'agentwallet-sdk';

const swap = attachSwap(wallet, { chain: 'base' });

const result = await swap.swap(BASE_TOKENS.USDC, BASE_TOKENS.WETH, 100_000_000n, {
  slippageBps: 50, // 0.5% slippage
});
console.log('Swap tx:', result.txHash);

CCTP V2 Bridging

import { createBridge } from 'agentwallet-sdk';

const bridge = createBridge(walletClient, 'base');

// Bridge 100 USDC Base → Arbitrum (~12 seconds)
const result = await bridge.bridge(100_000_000n, 'arbitrum', {
  minFinalityThreshold: 0, // FAST attestation
});
console.log('Completed in', result.elapsedMs, 'ms');
// Verified mainnet: Base → Arbitrum 0.50 USDC
// Burn: 0xfedbfaa4b3a9fbadd36668c50c2ee7fc7e32072e2bd409e00c46020a35329129

Solana SPL Support

npm install @solana/web3.js @solana/spl-token
import { SolanaWallet } from 'agentwallet-sdk/tokens/solana';

const solWallet = new SolanaWallet({
  privateKeyBase58: process.env.SOLANA_PRIVATE_KEY!,
});

const { sol } = await solWallet.getSolBalance();
const sig = await solWallet.sendSol('RecipientBase58Address', 0.1);

// USDC on Solana
const usdcMint = 'EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v';
const { amount, decimals } = await solWallet.getSplTokenBalance(usdcMint);

On-Chain Identity (ERC-8004)

import { ERC8004Client, ReputationClient } from 'agentwallet-sdk';

const identity = new ERC8004Client({ chain: 'base' });
const { txHash, agentId } = await identity.registerAgent(walletClient, {
  name: 'MyAgent',
  description: 'Autonomous research agent',
});

const reputation = new ReputationClient({ chain: 'base' });
const rep = await reputation.getAgentReputation(agentId!);
console.log(`Score: ${rep.totalScore} from ${rep.count} reviews`);

Cross-Chain Identity (UAID)

ERC-8004 identities live on EVM chains. For agents on Solana, Hedera, or off-chain frameworks, the UAID (Universal Agent Identifier) resolver bridges identities across all chains via the HOL Registry.

import { UAIDResolver, ERC8004Client } from 'agentwallet-sdk';

const resolver = new UAIDResolver();

// Resolve any agent by UAID — works across all chains
const result = await resolver.resolve(
  'uaid:aid:eip155:8453:0x8004...;uid=42;proto=erc8004'
);
if (result.resolved) {
  console.log(result.identity?.paymentAddress); // Payment address, any chain
  console.log(result.trustScore);               // Trust score (0-100)
}

// Convert your ERC-8004 identity to universal format
const erc8004 = new ERC8004Client({ chain: 'base' });
const identity = await erc8004.lookupAgentIdentity(42n);
const universal = resolver.erc8004ToUniversal(identity, 'base');
console.log(universal.uaid); // Cross-chain discoverable ID

// Verify any agent before transacting (chain-agnostic)
const check = await resolver.verify('uaid:aid:hedera:0.0.5678;uid=x;proto=openconvai');
if (check.verified) { /* safe to transact */ }

// Register for cross-chain discovery (requires HOL API key)
const registrar = new UAIDResolver({ apiKey: process.env.HOL_API_KEY });
const uaid = await registrar.registerERC8004Agent({
  agentId: 42n, chain: 'base',
  name: 'My Agent', description: 'Trading agent with x402 support',
});

See examples/cross-chain-identity.ts for the full walkthrough.

Decimal Helpers

import { toRaw, toHuman, formatBalance } from 'agentwallet-sdk';

const raw = toRaw('100.50', 6);        // → 100_500_000n
const human = toHuman(100_500_000n, 6); // → "100.5"
const display = formatBalance(100_500_000n, 6, 'USDC', 2); // → "100.50 USDC"

Security Model

What the on-chain spend policy enforces:

Even if an agent is compromised (prompt injection, jailbreak, runaway loop), it cannot:

  1. Spend more than the per-transaction limit you set
  2. Exceed the daily/weekly cap you configured
  3. Access funds outside its ERC-6551 token-bound account
  4. Modify its own spend policy (only the owner wallet can do that)

Recommendation: Start with $1/tx, $10/day. Raise caps only after you've watched the agent run for a week and it behaves exactly as expected.

Key management: your private key stays in your infrastructure. Compatible with Vault, AWS Secrets Manager, Azure Key Vault, GCP Secret Manager, or local encrypted storage.

Enterprise Deployment

The SDK runs in your infrastructure — no third-party custody, no shared key management, no data leaving your network.

# Docker deployment
docker run \
  -e WALLET_PRIVATE_KEY_FILE=/secrets/key \
  -e RPC_URL=https://mainnet.base.org \
  -v /path/to/secrets:/secrets:ro \
  agentwallet-sdk:latest

Stateless design — wallet state lives on-chain, not in application memory. Multiple SDK instances can safely share a wallet address. Nonce management handled.

Key compliance properties

  • All private keys generated and stored locally — no external key management service
  • No telemetry, analytics, or usage data transmitted to any third party
  • Every transaction on-chain with block number, timestamp, and gas cost — immutable audit log
  • SpendingPolicy changes are on-chain events — tamper-proof
  • NFT transfer = instant revocation of all agent permissions — no "forgot to deprovision" risk

Supported Payment Rails — Three-Rail Architecture

AgentWallet SDK routes payments across three independent rails, selecting the optimal one based on amount, session context, autonomy level, and ecosystem preference:

Rail Status Use Case Overhead
x402 (Base, EVM) Live Autonomous micropayments, API access, agent-to-agent commerce 0 bps (no protocol fee)
Stripe MPP Live High-frequency session payments, fiat-connected merchants, dispute resolution ~290 bps
🔜 Google AP2 Roadmap Google-managed identity + payment bundle, enterprise SSO integration ~100 bps (est.)
🔜 Solana x402 Roadmap Q2 Solana-native agent payments via Solana Foundation gateway 0 bps

How the Router Decides

The PaymentRouter evaluates each transaction and selects the rail automatically:

  • Micropayments (< $1) + autonomous agent → x402 (zero overhead, on-chain audit)
  • High-frequency session (5+ txns) → MPP (batching efficiency)
  • Larger amounts or supervised agent → MPP (fiat rails, dispute resolution)
  • Google ecosystem preference → Google AP2 (when live — managed identity + payment)
  • Solana preference → x402-solana (when live)

AgentWallet SDK is the multi-rail abstraction layer — your agent code doesn't change when you add a new payment rail. Write once, pay on any chain or protocol.

import { createX402Client } from 'agentwallet-sdk';

// Same API regardless of underlying rail
const client = createX402Client(wallet, {
  supportedNetworks: ['base:8453'],  // Solana coming soon
  globalDailyLimit: 50_000_000n,
});

Open Wallet Standard (OWS) Compatibility

AgentWallet SDK is designed to work on top of MoonPay's Open Wallet Standard — not compete with it. OWS handles wallet key management (multi-chain signing, hardware-backed vaults, encrypted local storage). AgentWallet SDK handles everything above that: MCP integration, framework abstraction, spend-policy enforcement, payment routing, and human-in-the-loop approval.

The complete stack:

Layer Component Responsibility
Wallet & Key Management Open Wallet Standard (OWS) Multi-chain signing, hardware-backed keys (Ledger), encrypted vault, policy engine
Framework & Integration AgentWallet SDK On-chain spend limits, payment routing (x402/MPP/AP2), human approval, framework adapters
MCP Server agentpay-mcp MCP-native payment tools for any MCP-compatible agent

If your agent framework or wallet provider already implements OWS, AgentWallet SDK plugs in as the payment execution and policy layer. Your agent gets supervised spending, multi-rail routing, and auditable on-chain payments without replacing your existing key management.

Market Context

The agentic AI SDK market is projected to grow from $2.4B (2025) to $16B by 2030 (Mordor Intelligence). AI agents are forecast to drive $262B in bank sales via embedded payments and lending by 2026. x402 alone has processed 140M+ agent payment transactions ($43M) in 9 months, with 98.6% USDC settlement.

AgentWallet SDK is production-validated with NVIDIA NeMo — demonstrating enterprise-grade agent payment integration at scale. NVIDIA reports 88% revenue impact and 87% cost reduction from AI agent deployments.

Patent Notice

Patent Pending — USPTO provisional patent application filed March 2026: "Non-Custodial Multi-Chain Financial Infrastructure System for Autonomous AI Agents."

Our provisional filing is defensive — intended to prevent hostile monopolization of open payment rails and protect builders' ability to use open standards.

Disclaimer

Non-custodial developer tooling. You control your own keys and set your own spending limits. You are responsible for compliance with applicable laws in your jurisdiction. Provided as-is under the MIT license. Nothing here constitutes financial advice, custody services, or money transmission.

License

MIT