Open security protocol for AI agent wallets
3-layer transaction validation · ERC-4337 smart accounts · Non-custodial
Website · Documentation · Deploy Wallet · API Status
Sigil Protocol provides a security layer for AI agents that manage crypto wallets. Every transaction your agent attempts passes through a 3-layer validation pipeline before the Guardian co-signs:
- Deterministic Rules — Spending limits, target whitelists, function selectors, velocity checks
- Transaction Simulation — Full dry-run to detect reverts, unexpected state changes, drain attacks
- AI Risk Scoring — LLM analyzes context, history, and target reputation (scores 0–100)
If all three layers pass, the Guardian co-signs. If any layer flags the transaction, it's blocked with guidance on why and how to fix it.
| Chain | Chain ID | Factory Address |
|---|---|---|
| Ethereum | 1 | 0x20f926bd5f416c875a7ec538f499d21d62850f35 |
| Polygon | 137 | 0x483D6e4e203771485aC75f183b56D5F5cDcbe679 |
| Avalanche C-Chain | 43114 | 0x86e85de25473b432dabf1b9e8e8ce5145059b85b |
| Base | 8453 | 0x5729291ed4c69936f5b5ace04dee454c6838fd50 |
| Arbitrum One | 42161 | 0x2f4dd6db7affcf1f34c4d70998983528d834b8f6 |
| 0G Mainnet | 16661 | 0x8bAD12A489338B533BCA3B19138Cd61caA17405F |
Guardian Co-Signer: 0xD06fBe90c06703C4b705571113740AfB104e3C67
EntryPoint (ERC-4337 v0.7): 0x0000000071727De22E5E9d8BAf0edAc6f37da032
┌──────────────────────────────────────────────┐
│ AI Agent │
│ Uses session key to submit transactions │
└────────────────┬─────────────────────────────┘
│ UserOperation
▼
┌──────────────────────────────────────────────┐
│ Sigil API │
│ SIWE auth · Rate limiting · Audit logging │
└────────────────┬─────────────────────────────┘
│
▼
┌──────────────────────────────────────────────┐
│ Guardian Service │
│ Layer 1: Rules → Layer 2: Simulation │
│ Layer 3: AI Risk Scoring │
│ ─────────────────────── │
│ APPROVE → co-sign REJECT → guidance │
└────────────────┬─────────────────────────────┘
│
▼
┌──────────────────────────────────────────────┐
│ SigilAccount (ERC-4337) │
│ Owner · Agent Key · Guardian · Session Keys │
│ Policy Engine · Social Recovery · Upgrades │
└──────────────────────────────────────────────┘
| Package | Description |
|---|---|
packages/dashboard |
Next.js dashboard + landing page (sigil.codes) |
packages/api |
Fastify REST API with SIWE auth |
packages/guardian |
3-layer transaction validation service |
packages/sdk |
TypeScript SDK for agents |
packages/eliza-plugin |
Eliza AI framework plugin (13 actions) |
packages/mcp |
MCP (Model Context Protocol) server |
packages/contracts |
Solidity smart contracts (deployed) |
packages/skill |
OpenClaw agent skill — install via ClawdHub |
- Visit sigil.codes/onboarding
- Connect wallet → Sign In with Ethereum
- Choose strategy template (Conservative / Moderate / Aggressive / DeFi Agent / NFT Agent)
- Select chain → Generate agent key → Deploy
- Fund your Sigil account with native tokens
import { SigilSDK } from '@sigil-protocol/sdk';
const sigil = new SigilSDK({
apiUrl: 'https://api.sigil.codes',
accountAddress: '0xYourSigilAccount',
agentSigner: '0xYourAgentSigner',
chainId: 43114,
});
const result = await sigil.evaluateTransaction({
to: '0xTarget',
value: '100000000000000000',
data: '0x',
});
if (result.verdict === 'APPROVED') {
console.log('Guardian approved:', result.guardianSignature);
}Install the Sigil skill from ClawdHub:
clawdhub install sigil-securityYour OpenClaw agent instantly gets secure wallet management — deploy accounts, evaluate transactions, manage session keys, freeze/unfreeze, and more. All through the 3-layer Guardian pipeline.
import { sigilPlugin } from '@sigil-protocol/eliza';
const plugin = sigilPlugin({
apiUrl: 'https://api.sigil.codes',
accountAddress: '0xYourSigilAccount',
rpcUrl: 'https://api.avax.network/ext/bc/C/rpc',
});SIGIL_API_KEY=sgil_... SIGIL_ACCOUNT_ADDRESS=0x... npx sigil-mcpBase URL: https://api.sigil.codes/v1
| Method | Endpoint | Description |
|---|---|---|
GET |
/v1/auth/nonce |
Get SIWE nonce |
POST |
/v1/auth/siwe |
SIWE sign-in |
POST |
/v1/accounts |
Register account |
GET |
/v1/accounts/:addr |
Get account info |
POST |
/v1/evaluate |
Evaluate transaction |
PUT |
/v1/accounts/:addr/policy |
Update policy |
POST |
/v1/accounts/:addr/freeze |
Freeze account |
GET |
/v1/transactions |
List transactions |
GET |
/v1/audit |
Audit log |
GET |
/v1/bundles |
DeFi whitelist bundles |
See full API documentation for complete reference.
- Non-custodial — Your keys never touch our servers
- Guardian validates, never initiates — Cannot move funds or act alone
- Owner override — Emergency freeze, withdraw, key rotation all work without Sigil servers
- 11+ audit rounds — Internal security audits covering contracts, API, auth, rate limiting
- Infrastructure hardened — UFW firewall, localhost binding, Caddy with security headers, Redis-backed rate limiting
One-time deployment fee per chain. No subscriptions.
| Chain | Deploy Fee | Token |
|---|---|---|
| Ethereum | 0.003 ETH | ETH |
| Polygon | 10 POL | POL |
| Avalanche | 0.5 AVAX | AVAX |
| Base | 0.003 ETH | ETH |
| Arbitrum | 0.003 ETH | ETH |
| 0G Mainnet | 1 A0GI | A0GI |
Transaction validation (~$0.003/tx) is absorbed by the protocol.
# Install dependencies
pnpm install
# Build all packages
pnpm build
# Run development
pnpm devsigil-protocol/
├── packages/
│ ├── dashboard/ # Next.js frontend (Vercel)
│ ├── api/ # Fastify REST API
│ ├── guardian/ # Transaction validation service
│ ├── sdk/ # TypeScript SDK
│ ├── eliza-plugin/ # Eliza framework plugin
│ ├── mcp/ # MCP server
│ ├── contracts/ # Solidity smart contracts
│ └── skill/ # Agent skill definition
├── docs/ # Internal documentation
└── brand-assets/ # Logo, colors, fonts
Proprietary — Arven Digital
Built by Arven Digital