agentwallet-sdk 3.4.0 → 3.4.2

package/README.md

@@ -1,5 +1,25 @@
 # 🤖 Agent Wallet SDK
 
+## The only non-custodial agent wallet SDK. You keep the keys.
+
+> **Coinbase Agentic Wallets** store private keys in Coinbase infrastructure.
+> **MoonPay Agents** require KYC before your agent can transact.
+> **agentwallet-sdk**: your agent holds its own keys. Always. No custodian. No KYC. No freeze risk.
+
+![AP2](https://img.shields.io/badge/AP2-compatible-blue?style=flat-square)
+![x402](https://img.shields.io/badge/x402-native-green?style=flat-square)
+![MCP](https://img.shields.io/badge/MCP-ready-purple?style=flat-square)
+![Etherlink](https://img.shields.io/badge/Etherlink-supported-orange?style=flat-square)
+![CCTP V2](https://img.shields.io/badge/CCTP_V2-cross--chain-red?style=flat-square)
+![npm](https://img.shields.io/npm/v/agentwallet-sdk?style=flat-square)
+![License](https://img.shields.io/badge/license-MIT-brightgreen?style=flat-square)
+
+```bash
+npm i agentwallet-sdk
+```
+
+---
+
 **Let your AI agent spend crypto. Stay in control.**
 
 Agent Wallet gives AI agents autonomous spending power with hard on-chain limits. No more choosing between "agent can drain everything" and "every transaction needs manual approval."
@@ -190,6 +210,7 @@ for (const entry of history) {
 | **Ethereum** | ✅ | High-value operations |
 | **Arbitrum** | ✅ | DeFi agents |
 | **Polygon** | ✅ | Micropayments |
+| **Etherlink** | ✅ x402 | Tezos rollup, near-zero fees |
 
 ## x402 Protocol Support
 
@@ -283,6 +304,105 @@ Server verifies payment → returns 200 + data
 
 Your agent's keys never leave the non-custodial wallet. All payments respect on-chain spend limits set by the wallet owner.
 
+## Why agent-wallet-sdk?
+
+Every major AI company launched an agent wallet in early 2026. Coinbase Agentic Wallets went live February 13. MoonPay Agents launched March 4. Stripe added x402 on February 11. The problem: every single one of them holds your agent's keys.
+
+Here's the direct comparison:
+
+| | Coinbase Agentic Wallets | MoonPay Agents | agent-wallet-sdk |
+|---|---|---|---|
+| **Key custody** | Coinbase servers | MoonPay servers | Your environment only |
+| **Spend limits** | Session caps (off-chain API) | None | Per-tx + daily, on-chain contract |
+| **x402 support** | Yes (Base/USDC) | No | Yes (Base/USDC, full spec) |
+| **Cross-chain** | Base only | Limited | 5 chains via CCTP |
+| **Freeze risk** | Yes (KYC, compliance) | Yes | None -- contract on-chain |
+| **Audit trail** | API logs (centralized) | API logs | On-chain events, self-queryable |
+| **Open source** | No | No | Yes (MIT) |
+
+**The three questions that matter:**
+
+**1. Who holds the key?** With Coinbase and MoonPay, their infrastructure holds your agent's private key. That means they can freeze it, they get hacked and your key goes with it, and they can shut down the product. agent-wallet-sdk generates keys locally and they never leave your environment.
+
+**2. Where are spend limits enforced?** Coinbase uses session caps enforced at the API layer -- those can change. MoonPay has no per-transaction limits at all. agent-wallet-sdk enforces limits inside an EVM contract. A `perTxLimit` of 25 USDC means the contract will physically not execute a transaction over 25 USDC. No API to call, no policy to change.
+
+**3. What happens when the platform shuts down?** Custodial wallets disappear with the platform. Your agent's wallet contract is deployed on-chain. It exists as long as the EVM exists.
+
+```typescript
+// Your keys stay in your environment -- not on Coinbase, not on MoonPay
+const wallet = createWallet({
+  accountAddress: '0xYOUR_CONTRACT',
+  walletClient: createWalletClient({
+    account: privateKeyToAccount(process.env.AGENT_KEY), // never transmitted
+    transport: http('https://mainnet.base.org'),
+  }),
+  chain: 'base',
+});
+```
+
+If you need a quick integration and you're already in the Coinbase ecosystem: their product works for demos and low-stakes use cases. But if you're building agents that handle real funds, run autonomously for weeks, or need to survive beyond a single platform's product lifecycle -- you want the keys under your own control.
+
+---
+
+## Why Non-Custodial Beats Exchange Wallets
+
+OKX OnchainOS supports 60+ chains. Coinbase Agentic Wallets are backed by a trillion-dollar exchange. Both look impressive on paper. Here's the problem: **they hold your agent's keys.**
+
+That's not a minor implementation detail. It's the entire trust model.
+
+### What custody actually means
+
+When you use an exchange-based agent wallet, your agent's private key lives on their servers. Every transaction your agent signs goes through their infrastructure. They can:
+- Freeze your agent's wallet for any reason (KYC, compliance, a bad week)
+- Be subpoenaed for your agent's transaction history
+- Get hacked — and your agent's keys go with it
+- Change their API, deprecate their SDK, sunset the product
+
+This isn't theoretical. Exchange platforms shut down products, freeze accounts, and go dark. It's happened before. It'll happen again.
+
+### The non-custodial difference
+
+With `agentwallet-sdk`:
+- Your agent's private key is generated locally and **never transmitted anywhere**
+- The wallet contract lives on-chain — no server to shut down
+- Spend limits are enforced by EVM bytecode, not an API policy
+- You can self-host, self-audit, and self-custody everything
+
+```typescript
+// Your keys stay in your environment
+const wallet = createWallet({
+  accountAddress: '0xYOUR_CONTRACT',
+  walletClient: createWalletClient({
+    account: privateKeyToAccount(process.env.AGENT_KEY), // lives here, not on OKX
+    transport: http('https://mainnet.base.org'),
+  }),
+  chain: 'base',
+});
+```
+
+The spend limits (`$25/tx`, `$500/day`) are enforced by the contract itself — not by an exchange API that can change its terms. An agent running over-limit? The contract queues it. No custodian involved.
+
+### When exchange wallets make sense
+
+If you're building a quick demo, need zero infrastructure setup, or are already deep in the Coinbase or OKX ecosystem — their hosted products are fast to integrate. No judgment.
+
+But if you're building production agents that handle real funds, run autonomously, or need to survive beyond a single platform's product lifecycle, you want the keys under your own control.
+
+That's what this SDK is for.
+
+### x402 without custody
+
+The x402 protocol is becoming the standard for AI agent payments. Stripe validated it in February 2026. Coinbase built it into Base. Abstract launched their delegated facilitator model this week.
+
+Every x402 implementation in `agentwallet-sdk` is non-custodial by design:
+- Solana x402: direct signing from your local keypair
+- Base x402: USDC transfer via your on-chain contract
+- Abstract x402: EIP-712 delegated permit, signed locally — the facilitator executes it, but your key authorizes it
+
+OKX OnchainOS supports x402 too — through their custody layer. Your call which model you trust.
+
+---
+
 ## How It Works
 
 1. **Deploy** an AgentAccountV2 (ERC-6551 token-bound account tied to an NFT)

package/dist/x402/types.d.ts

@@ -87,5 +87,5 @@ export interface X402ClientConfig {
 /** USDC contract addresses by network */
 export declare const USDC_ADDRESSES: Record<string, Address>;
 /** Default supported networks */
-export declare const DEFAULT_SUPPORTED_NETWORKS: readonly ["base:8453"];
+export declare const DEFAULT_SUPPORTED_NETWORKS: readonly ["base:8453", "etherlink:42793"];
 //# sourceMappingURL=types.d.ts.map

package/dist/x402/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/x402/types.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAI1C,sDAAsD;AACtD,MAAM,WAAW,gBAAgB;IAC/B,GAAG,EAAE,MAAM,CAAC;IACZ,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,4EAA4E;AAC5E,MAAM,WAAW,uBAAuB;IACtC,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;IACd,iBAAiB,EAAE,MAAM,CAAC;IAC1B,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAChC;AAED,8EAA8E;AAC9E,MAAM,WAAW,mBAAmB;IAClC,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,gBAAgB,CAAC;IAC3B,OAAO,EAAE,uBAAuB,EAAE,CAAC;IACnC,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACtC;AAED,8DAA8D;AAC9D,MAAM,WAAW,kBAAkB;IACjC,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,gBAAgB,CAAC;IAC3B,QAAQ,EAAE,uBAAuB,CAAC;IAClC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACtC;AAED,8DAA8D;AAC9D,MAAM,WAAW,sBAAsB;IACrC,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAID,6CAA6C;AAC7C,MAAM,WAAW,iBAAiB;IAChC,4DAA4D;IAC5D,OAAO,EAAE,MAAM,CAAC;IAChB,uDAAuD;IACvD,aAAa,EAAE,MAAM,CAAC;IACtB,kDAAkD;IAClD,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,8CAA8C;AAC9C,MAAM,WAAW,kBAAkB;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,OAAO,CAAC;IACf,SAAS,EAAE,OAAO,CAAC;IACnB,MAAM,EAAE,IAAI,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,wCAAwC;AACxC,MAAM,WAAW,gBAAgB;IAC/B,oCAAoC;IACpC,cAAc,CAAC,EAAE,iBAAiB,EAAE,CAAC;IACrC,yEAAyE;IACzE,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,oEAAoE;IACpE,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,kDAAkD;IAClD,iBAAiB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC7B,0DAA0D;IAC1D,eAAe,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC;IAC5C,6CAA6C;IAC7C,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,2DAA2D;IAC3D,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,wDAAwD;IACxD,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,uDAAuD;IACvD,eAAe,CAAC,EAAE,CAAC,GAAG,EAAE,uBAAuB,EAAE,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC,OAAO,CAAC,GAAG,OAAO,CAAC;IAC5F,6BAA6B;IAC7B,iBAAiB,CAAC,EAAE,CAAC,GAAG,EAAE,kBAAkB,KAAK,IAAI,CAAC;CACvD;AAID,yCAAyC;AACzC,eAAO,MAAM,cAAc,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAGzC,CAAC;AAEX,iCAAiC;AACjC,eAAO,MAAM,0BAA0B,wBAAyB,CAAC"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/x402/types.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAI1C,sDAAsD;AACtD,MAAM,WAAW,gBAAgB;IAC/B,GAAG,EAAE,MAAM,CAAC;IACZ,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,4EAA4E;AAC5E,MAAM,WAAW,uBAAuB;IACtC,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;IACd,iBAAiB,EAAE,MAAM,CAAC;IAC1B,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAChC;AAED,8EAA8E;AAC9E,MAAM,WAAW,mBAAmB;IAClC,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,gBAAgB,CAAC;IAC3B,OAAO,EAAE,uBAAuB,EAAE,CAAC;IACnC,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACtC;AAED,8DAA8D;AAC9D,MAAM,WAAW,kBAAkB;IACjC,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,gBAAgB,CAAC;IAC3B,QAAQ,EAAE,uBAAuB,CAAC;IAClC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACtC;AAED,8DAA8D;AAC9D,MAAM,WAAW,sBAAsB;IACrC,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAID,6CAA6C;AAC7C,MAAM,WAAW,iBAAiB;IAChC,4DAA4D;IAC5D,OAAO,EAAE,MAAM,CAAC;IAChB,uDAAuD;IACvD,aAAa,EAAE,MAAM,CAAC;IACtB,kDAAkD;IAClD,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,8CAA8C;AAC9C,MAAM,WAAW,kBAAkB;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,OAAO,CAAC;IACf,SAAS,EAAE,OAAO,CAAC;IACnB,MAAM,EAAE,IAAI,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,wCAAwC;AACxC,MAAM,WAAW,gBAAgB;IAC/B,oCAAoC;IACpC,cAAc,CAAC,EAAE,iBAAiB,EAAE,CAAC;IACrC,yEAAyE;IACzE,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,oEAAoE;IACpE,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,kDAAkD;IAClD,iBAAiB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC7B,0DAA0D;IAC1D,eAAe,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC;IAC5C,6CAA6C;IAC7C,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,2DAA2D;IAC3D,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,wDAAwD;IACxD,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,uDAAuD;IACvD,eAAe,CAAC,EAAE,CAAC,GAAG,EAAE,uBAAuB,EAAE,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC,OAAO,CAAC,GAAG,OAAO,CAAC;IAC5F,6BAA6B;IAC7B,iBAAiB,CAAC,EAAE,CAAC,GAAG,EAAE,kBAAkB,KAAK,IAAI,CAAC;CACvD;AAID,yCAAyC;AACzC,eAAO,MAAM,cAAc,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAKzC,CAAC;AAEX,iCAAiC;AACjC,eAAO,MAAM,0BAA0B,2CAA4C,CAAC"}

package/dist/x402/types.js

@@ -3,7 +3,9 @@
 export const USDC_ADDRESSES = {
     'base:8453': '0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913',
     'base-sepolia:84532': '0x036CbD53842c5426634e7929541eC2318f3dCF7e',
+    // Etherlink — x402 compatible as of March 2026
+    'etherlink:42793': '0x796Ea11Fa2dD751eD01b53C372fFDB4AAa8f00F9',
 };
 /** Default supported networks */
-export const DEFAULT_SUPPORTED_NETWORKS = ['base:8453'];
+export const DEFAULT_SUPPORTED_NETWORKS = ['base:8453', 'etherlink:42793'];
 //# sourceMappingURL=types.js.map

package/dist/x402/types.js.map

@@ -1 +1 @@
-{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/x402/types.ts"],"names":[],"mappings":"AAoGA,4BAA4B;AAE5B,yCAAyC;AACzC,MAAM,CAAC,MAAM,cAAc,GAA4B;IACrD,WAAW,EAAE,4CAA4C;IACzD,oBAAoB,EAAE,4CAA4C;CAC1D,CAAC;AAEX,iCAAiC;AACjC,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC,WAAW,CAAU,CAAC"}
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/x402/types.ts"],"names":[],"mappings":"AAoGA,4BAA4B;AAE5B,yCAAyC;AACzC,MAAM,CAAC,MAAM,cAAc,GAA4B;IACrD,WAAW,EAAE,4CAA4C;IACzD,oBAAoB,EAAE,4CAA4C;IAClE,+CAA+C;IAC/C,iBAAiB,EAAE,4CAA4C;CACvD,CAAC;AAEX,iCAAiC;AACjC,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC,WAAW,EAAE,iBAAiB,CAAU,CAAC"}

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "agentwallet-sdk",
-  "version": "3.4.0",
-  "description": "Non-custodial TypeScript SDK for AI agent wallets \u2014 x402 payments (Solana, Base, Abstract, Polygon), CCTP cross-chain, token swaps. Private keys never leave your environment.",
+  "version": "3.4.2",
+  "description": "Non-custodial TypeScript SDK for AI agent wallets — x402 payments (Solana, Base, Abstract, Polygon), CCTP cross-chain, token swaps. Private keys never leave your environment.",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "files": [