@agentlayer.tech/wallet 0.1.30 → 0.1.32

package/agent-wallet/README.md

@@ -89,18 +89,11 @@ Current safe tools:
 - `stake_sol_native`
 - `transfer_spl_token`
 - `swap_solana_tokens` - Solana Jupiter swaps; prefer `intent_preview` -> chat confirmation -> `intent_execute` so execution refreshes the quote inside approved limits.
-- `swap_solana_privately` - Houdini-backed private Solana payout flow for same-token `SOL->SOL` or `USDC->USDC` transfers to a destination wallet.
-- `get_solana_private_swap_status`
-- `get_jupiter_earn_tokens`
-- `get_jupiter_earn_positions`
-- `get_jupiter_earn_earnings`
 - `get_kamino_lend_markets`
 - `get_kamino_lend_market_reserves`
 - `get_kamino_lend_user_obligations`
 - `get_kamino_lend_user_rewards`
 - `get_kamino_open_positions`
-- `jupiter_earn_deposit`
-- `jupiter_earn_withdraw`
 - `kamino_lend_deposit`
 - `kamino_lend_withdraw`
 - `kamino_lend_borrow`
@@ -122,8 +115,6 @@ Temporarily disabled but kept in the codebase for later re-enable:
 The signing tool still requires explicit `user_confirmed=true`.
 Transfer, native staking, swap, and Aave position-management tools support `preview`, `prepare`, and `execute` modes. The safe operational path is still preview-first. `prepare` now returns an execution plan only and never exposes signed transaction bytes to the agent. `execute` works only when the backend has a signer and `sign_only=false`.
 
-Exception: `swap_solana_privately` is intentionally optimized for `preview -> execute`. Hosts should not insert a separate `prepare` step for Houdini private payouts because it adds no execution value and only burns additional provider quota.
-
 Policy defaults:
 
 - read-only tools are always allowed
@@ -194,38 +185,12 @@ For production `mainnet`, prefer a dedicated RPC instead of the public Solana en
 
 Production recommendation: treat RPC as deployment-owned config, not wallet logic. Runtime env wins over `openclaw.json` plugin config, so keep `Alchemy/Helius/QuickNode` endpoints in deployment secrets or service env and use plugin `rpcUrl` / `rpcUrls` only as local fallback.
 
-For Houdini-backed private Solana payouts, also provide:
-
-- `HOUDINI_API_KEY`
-- `HOUDINI_API_SECRET`
-- `HOUDINI_USER_IP`
-- optional `HOUDINI_USER_AGENT`
-- optional `HOUDINI_USER_TIMEZONE`
-
-The current MVP intentionally keeps the scope narrow:
-
-- supported private routes are same-token Solana payouts only
-- `SOL -> SOL`
-- `USDC -> USDC`
-- execution binds to the approved Houdini `quoteId`, creates a single private exchange, and sends the exact Solana deposit locally from the wallet
-
-This is a private payout flow expressed in Houdini's swap terminology. Cross-token private swaps can be added later without changing the OpenClaw/Hermes approval model.
-
-For production, the cleaner setup is to place Houdini partner secrets on `provider-gateway` and let `agent-wallet` consume the narrow gateway endpoints through `PROVIDER_GATEWAY_URL` and optional `PROVIDER_GATEWAY_BEARER_TOKEN`. In that mode:
-
-- the gateway owns `HOUDINI_API_KEY` / `HOUDINI_API_SECRET`
-- the gateway derives the authoritative user IP from ingress
-- `agent-wallet` still performs preview/prepare/execute, local transaction verification, signing, and broadcast
-- direct Houdini env vars can be omitted from the wallet runtime
-
 For OpenClaw onboarding, `agent-wallet` now ships with a hosted default provider gateway:
 
 - `https://agent-layer-production.up.railway.app`
 
 So users do not need to enter `PROVIDER_GATEWAY_URL` manually for the default Bags launch/fees flows or shared mainnet RPC path. You only need to set `PROVIDER_GATEWAY_URL` yourself if you want to override that hosted default with your own deployment.
 
-That same provider gateway path can now also cover Jupiter Earn reads and transaction-building. Ordinary Jupiter swap routing remains direct.
-
 For a self-hosted install where each operator brings their own RPC key, a minimal Solana setup can be just:
 
 ```bash

package/agent-wallet/agent_wallet/btc_user_wallets.py

@@ -6,7 +6,12 @@ import json
 from pathlib import Path
 from typing import Any
 
-from agent_wallet.config import normalize_btc_network, resolve_openclaw_home, settings
+from agent_wallet.config import (
+    normalize_btc_network,
+    resolve_boot_key,
+    resolve_openclaw_home,
+    settings,
+)
 from agent_wallet.providers.wdk_btc_local import WdkBtcLocalClient
 from agent_wallet.user_wallets import normalize_user_id
 from agent_wallet.wallet_layer.base import WalletBackendError
@@ -16,6 +21,28 @@ def _normalize_btc_network(value: str | None) -> str:
     return normalize_btc_network(value)
 
 
+def _maybe_store_btc_wallet_password(password: str) -> bool:
+    """Seal the BTC vault password so signing can decrypt-on-demand without re-entry.
+
+    Mirrors the EVM flow: once sealed under the boot key, the local BTC client
+    injects it automatically on each signing request.
+    """
+    value = str(password or "").strip()
+    if not value:
+        return False
+    boot_key = resolve_boot_key()
+    if not boot_key:
+        return False
+    from agent_wallet.sealed_keys import resolve_sealed_keys_path, seal_keys, unseal_keys
+
+    sealed_path = resolve_sealed_keys_path()
+    existing = unseal_keys(boot_key) if sealed_path.exists() else {}
+    if existing.get("wdk_btc_wallet_password") == value:
+        return False
+    seal_keys(boot_key, {**existing, "wdk_btc_wallet_password": value})
+    return True
+
+
 def _resolve_service_url(service_url: str | None = None) -> str:
     effective = (service_url or settings.wdk_btc_service_url).strip()
     if not effective:
@@ -72,6 +99,7 @@ def create_user_btc_wallet(
             "walletId": created["walletId"],
             "accountIndex": effective_account_index,
             "network": effective_network,
+            "password": password,
         },
     )
     binding = {
@@ -87,6 +115,7 @@ def create_user_btc_wallet(
         "updated_at": created.get("updatedAt"),
     }
     _write_wallet_binding(resolve_user_btc_wallet_path(user_id, effective_network), binding)
+    _maybe_store_btc_wallet_password(password)
     return {
         **binding,
         "unlocked": bool(created.get("unlocked", True)),
@@ -123,6 +152,7 @@ def import_user_btc_wallet(
             "walletId": created["walletId"],
             "accountIndex": effective_account_index,
             "network": effective_network,
+            "password": password,
         },
     )
     binding = {
@@ -162,6 +192,7 @@ def unlock_user_btc_wallet(
             "timeoutSeconds": 0,
         },
     )
+    _maybe_store_btc_wallet_password(password)
     return {
         **binding,
         "unlocked": bool(payload.get("unlocked", True)),

package/agent-wallet/agent_wallet/config.py

@@ -49,18 +49,11 @@ class Settings(BaseSettings):
     jupiter_ultra_api_base_url: str = "https://lite-api.jup.ag/ultra/v1"
     jupiter_price_api_base_url: str = "https://lite-api.jup.ag/price/v3"
     jupiter_portfolio_api_base_url: str = "https://api.jup.ag/portfolio/v1"
-    jupiter_lend_api_base_url: str = "https://api.jup.ag/lend/v1"
     jupiter_api_key: str = ""
     lifi_api_base_url: str = "https://li.quest/v1"
     lifi_api_key: str = ""
     lifi_integrator: str = "openclaw"
     lifi_default_deny_bridges: str = "mayan"
-    houdini_api_base_url: str = "https://api-partner.houdiniswap.com/v2"
-    houdini_api_key: str = ""
-    houdini_api_secret: str = ""
-    houdini_user_ip: str = ""
-    houdini_user_agent: str = "AgentLayer/0.1.12"
-    houdini_user_timezone: str = "UTC"
     flash_api_base_url: str = ""
     flash_sdk_bridge_command: str = ""
     flash_sdk_bridge_mode: str = "mock"
@@ -457,6 +450,17 @@ def resolve_evm_wallet_password() -> str:
     )
 
 
+def resolve_btc_wallet_password() -> str:
+    """Resolve the local BTC vault password from env or the sealed secret store."""
+    direct = os.getenv("WDK_BTC_WALLET_PASSWORD", "").strip()
+    if direct:
+        return direct
+    return _resolve_sealed_secret(
+        "wdk_btc_wallet_password",
+        "btc_wallet_password",
+    )
+
+
 def use_encrypted_user_wallets() -> bool:
     """Per-user wallet files are always encrypted in the hardened runtime."""
     return True

package/agent-wallet/agent_wallet/evm_user_wallets.py

@@ -529,6 +529,7 @@ def create_user_evm_wallet(
             "walletId": created["walletId"],
             "accountIndex": effective_account_index,
             "network": effective_network,
+            "password": password,
         },
     )
     binding = {
@@ -581,6 +582,7 @@ def import_user_evm_wallet(
             "walletId": created["walletId"],
             "accountIndex": effective_account_index,
             "network": effective_network,
+            "password": password,
         },
     )
     binding = {