Signet is a sign-only wallet for EVM and Solana. Let AI agents operate on-chain through MCP — every transaction human-approved or rule-guarded.
Signet sits between your AI agent and the blockchain. The agent constructs transactions — Signet signs them only after your approval, then hands the signed tx back to the agent to broadcast.
Your AI agent constructs the unsigned transaction
Parsed details shown with protocol, amounts, recipients
Manual approval or auto-approved via guardrail rules
Signed tx returned to agent for on-chain submission
Built for the AI agent era — secure key management, flexible guardrails, and seamless MCP integration.
One command to connect Claude, Gemini, Cursor, or any MCP-compatible agent. Five tools: authenticate, wallet, sign, protocols, quote.
Fine-grained auto-approve rules with protocol filters, chain/wallet selection, recipient allowlists, and spending limits.
Transactions are decoded and displayed in human-readable format. Mismatched calldata is flagged as unverified.
EVM chains (Ethereum, Polygon, BSC, Base, Arbitrum) and Solana. Wallets are paired by alias for easy identification.
Agents must identify themselves before accessing tools. Approve or revoke any agent token from the dashboard.
Generate guardrail rules directly from your recent signing history. Pick transactions and auto-fill rule parameters.
Export wallets and rules as an encrypted JSON file. Restore on another device — same password or a fresh backup password.
One-click MCP server toggle. Cut off agent access instantly without restarting the service or losing your session.
Sync wallets, rules, and history between devices on your local network. Private IPs only — no DNS rebinding risk.
Neural Mesh design — dark, focused, built for power users.
Generate new wallets or import existing private keys. All keys are encrypted with AES-256-GCM and stored locally — never sent anywhere.
Configure exactly which transactions can be auto-signed. Filter by protocol, chain, wallet, recipient, and set per-transaction and daily spending limits.
Every signed transaction is logged with parsed protocol details, chain badges, timestamps, and raw data access. Filter by transaction type.
Every AI agent must identify itself and request access. You see the agent name and token, then decide to approve or reject — in real time via WebSocket.
Don't write rules from scratch. Pick transactions from your recent signing history and the wizard automatically extracts protocols, chains, wallets, and recipients into a ready-to-use rule.
Your keys never leave your machine. Every layer is designed with defense in depth.
Keys encrypted with PBKDF2-SHA256 (100K iterations), unique salt + IV per wallet
Configurable timeout (1min–24hr) with auto-lock on expiry
5 failed attempts trigger a 60-second lockout
All rule changes and auto-signed transactions are permanently logged
Wallet never broadcasts — no RPC access, no network exposure
Declared protocol must match actual tx calldata
Per-rule daily spending tracked with BigInt precision
All data stored locally in ~/.aawallet/ — nothing leaves your machine
Clone, install, and connect your AI agent.
# Install and run
git clone https://github.com/zkwasm/ai-agent-wallet.git
cd ai-agent-wallet
npm install
npm run dev
# Open http://localhost:3000, set a password
# Go to the MCP tab — copy the one-click command
# for your agent (Claude, Gemini, Cursor, etc.)