Agent Wallet

Use this skill to safely create a wallet the agent can use for transfers, swaps, and any EVM chain transaction without ever exposing private keys to the agent. Create a wallet, set spending policies, and your agent can transfer tokens, do swaps, and interact with smart contracts within the boundaries you define.

The agent never sees the private key. All transactions are executed server-side through a smart account. The wallet owner controls what the agent can do via configurable policies.

Configuration

• - Base API URL: Use the SAFESKILLS_API_URL environment variable if set, otherwise default to INLINECODE1
• Frontend URL: Use the SAFESKILLS_FRONTEND_URL environment variable if set, otherwise default to INLINECODE3

All API requests require a Bearer token (the API key returned when creating a wallet).

CODEBLOCK0

Quick Start

1. Create a Wallet

Create a new smart account wallet for your agent. This generates a private key server-side (you never see it), creates a ZeroDev smart account, and returns an API key for the agent plus a claim URL for the wallet owner.

CODEBLOCK1

Response includes:

• - apiKey -- store this securely; use it as the Bearer token for all future requests
• INLINECODE5 -- share this with the user so they can claim the wallet and set policies
• INLINECODE6 -- the smart account address

After creating, tell the user:

"Here is your wallet claim URL: <claimUrl>. Use this to claim ownership, set spending policies, and monitor your agent's wallet activity."

2. Get Wallet Address

CODEBLOCK2

3. Check Balances

CODEBLOCK3

4. Transfer ETH or Tokens

CODEBLOCK4

5. Swap Tokens

Swap one token for another using DEX liquidity (powered by 0x).

CODEBLOCK5

• - sellToken / buyToken: Token contract addresses. Use 0xEeeeeEeeeEeEeeEeEeEeeEEEeeeeEeeeeeeeEEeE for native ETH.
• INLINECODE11: Human-readable amount to sell (e.g. "0.1" for 0.1 ETH).
• INLINECODE13: The chain to swap on (1 = Ethereum, 137 = Polygon, 42161 = Arbitrum, 10 = Optimism, 8453 = Base, etc.).
• INLINECODE14: Optional slippage tolerance in basis points (100 = 1%). Defaults to 100.

The preview endpoint returns expected buy amount, route info, and fees without executing. The execute endpoint performs the actual swap through the smart account, handling ERC20 approvals automatically.

6. Send Arbitrary Transaction

Interact with any smart contract by sending custom calldata.

CODEBLOCK6

Policies

The wallet owner controls what the agent can do by setting policies via the claim URL. If a transaction violates a policy, the API will reject it or require human approval via Telegram.

Policy	What it does
Address allowlist	Only allow transfers/calls to specific addresses
Token allowlist

Only allow transfers of specific ERC-20 tokens |
| Function allowlist | Only allow calling specific contract functions (by 4-byte selector) |
| Spending limit (per tx) | Max USD value per transaction |
| Spending limit (daily) | Max USD value per rolling 24 hours |
| Spending limit (weekly) | Max USD value per rolling 7 days |
| Require approval | Every transaction needs human approval via Telegram |
| Approval threshold | Transactions above a USD amount need human approval |

If no policies are set, all actions are allowed by default. Once the owner claims the wallet and adds policies, the agent operates within those boundaries.

Important Notes

• - Never try to access raw secret values. The private key stays server-side -- that's the whole point.
• Always store the API key from wallet creation -- it's the only way to authenticate.
• Always share the claim URL with the user after creating a wallet.
• The default chain ID is 84532 (Base Sepolia testnet). Adjust as needed.
• If a transaction is rejected, it may be blocked by a policy. Tell the user to check their policy settings via the claim URL.
• If a transaction requires approval, it will return status: "pending_approval". The wallet owner will receive a Telegram notification to approve or deny.