Guardrail
Built on ERC-8004 Standard

Smart Accounts with Spending Guardrails for AI Agents

Give your bots their own wallets — completely separated from yours — with built-in spending limits enforced on-chain. Generate a dedicated keypair, deploy a smart account, and define exactly what your agent can do. Think AWS IAM + CloudTrail for autonomous crypto agents.

The Problem

AI agents need private keys to sign transactions autonomously. But sharing your personal wallet's private key with a bot means the bot has unlimited access to all your assets. There's no separation, no limits, and no kill switch.

Shared Private Keys

Bots need raw private keys to sign transactions, but using your personal wallet key gives them access to everything you own.

No Spending Limits

Most agents have full access with no per-transaction caps, daily volume limits, or action restrictions.

No Kill Switch

If something goes wrong, there's no easy way to revoke access or stop actions mid-flight.

The Solution

Guardrail gives each bot its own wallet with built-in spending guardrails. Generate a dedicated keypair, deploy a smart account, and set policies that are enforced on-chain. Your personal wallet never touches the bot.

Dedicated Bot Keys

Generate a fresh keypair for each bot. The private key is shown once and never stored. Your personal wallet stays completely separate.

Smart Account Deployment

Each bot gets an ERC-4337 smart account. Fund it with only what the bot needs. Unauthorized transactions are blocked before execution.

Spending Guardrails

Set per-transaction limits, daily volume caps, and action allowlists. Policies are enforced on-chain — bots physically cannot exceed limits.

Complete Audit Trail

Every validation request, policy change, and permission grant is logged. Export to JSON/CSV for compliance and analysis.

How It Works

Integrate Guardrail into your agent's workflow in minutes.

1

Define Policies

Create policies that specify allowed actions, assets, and constraints through our dashboard or API.

2

Validate Actions

Before executing any action, your agent calls our API to check if the action is permitted.

3

Execute Safely

If allowed, proceed with the action. If denied, handle gracefully. Everything is logged for audit.

# Your agent's code
if guardrail.validate(agent_id, action={
    "type": "swap",
    "amount": "1000",
    "token": "USDC"
}):
    # Action is allowed - execute it
    execute_swap(...)
else:
    # Action denied - handle gracefully
    log_denied_action(...)
Wallet Separation

Never Share Your Private Key with a Bot

Guardrail generates a fresh keypair for each bot during agent creation. The bot gets its own private key and its own smart account — completely isolated from your personal wallet. You control the guardrails, the bot operates within them.

  • One-click keypair generation in the browser
  • Private key shown once, never stored on any server
  • Download .env file with all bot connection details
  • Smart account enforces spending limits even if bot is compromised
  • Fund only what the bot needs — your main wallet stays safe

How Bot Signer Generation Works

1

Register Agent

Choose "Secure Account" and "Generate Bot Signer"

2

Generate Keypair

A fresh private key + address is created in your browser

3

Deploy Smart Account

An ERC-4337 account is deployed with the generated address as signer

4

Save & Configure Bot

Download the .env file and give it to your bot

5

Set Guardrails

Create policies with spending limits — enforced on-chain

On-Chain Standard

Built on ERC-8004

Guardrail implements the ERC-8004 standard for AI agent authorization with Guardrail Secure Accounts for guaranteed enforcement. Policies are enforced both off-chain (API validation) and on-chain (Secure Account transaction gating).

  • Standards-compliant agent identity registry
  • On-chain policy storage and enforcement
  • Guardrail Secure Accounts with policy-gated transactions
  • Mintable permission tokens (NFTs)
  • Interoperable with other ERC-8004 systems

Deployed Contracts (Sepolia)

IdentityRegistry

0xc1fa477f991C74Cc665E605fC74f0e2B795b5104

PolicyRegistry

0x92cd41e6a4aA13072CeBCda8830d48f269F058c4

PermissionEnforcer

0xBe1cd378Ec32Feb71851B2EFbb0D9c6635cc22DF

AgentAccountFactory

0xA6F9dA39086CD7142c1494B062D70c8fB7e3896f

PriceOracle

0x052cDddba3C55A63F5e48F9e5bC6b70604Db93b8

Two Enforcement Tiers

Choose the right level of enforcement for your agents. Start with advisory monitoring and upgrade to guaranteed on-chain enforcement when ready.

Advisory Mode

Monitor external wallets with advisory alerts and reconciliation. Guardrail validates actions via API and logs everything, but cannot prevent on-chain execution.

  • Off-chain validation API
  • Monitoring and alerts
  • Full audit trail
  • Quick setup — no smart contract needed

Enforced Mode

Agent operates through a Guardrail Secure Account. Once assets are in a Secure Account, unauthorized transactions cannot execute.

  • On-chain + off-chain enforcement
  • Violating transactions revert automatically
  • Protocol and chain constraints
  • Upgrade from advisory — one-way for security

Use Cases

Guardrail is designed for any AI agent that needs to interact with blockchain.

DeFi Trading Bots

Limit trading to specific pairs, set maximum position sizes, and cap daily trading volume. Perfect for automated trading strategies.

Portfolio Managers

Allow rebalancing within defined parameters. Restrict to approved protocols and set maximum allocation percentages.

Yield Optimizers

Permit staking and unstaking actions while limiting which protocols can be used and setting minimum lock periods.

Ready to Secure Your Agents?

Start managing permissions for your AI agents today. It's free to get started.

Guardrail - Built on ERC-8004 Standard