Vultisig SDK Skill (agent-first)

What this Skill is for

• - Creating and managing self-custodial crypto vaults (Fast Vault for agents, Secure Vault for multi-device)
• Sending transactions across 36+ blockchains (Bitcoin, Ethereum, Solana, Cosmos, and more)
• Swapping tokens cross-chain via THORChain, MayaChain, 1inch, LiFi, KyberSwap
• Querying balances and gas fees across all supported chains
• Importing/exporting vault backups (.vult files)
• Importing existing wallets via BIP39 seedphrase
• Building automated strategies: DCA, rebalancing, conditional swaps, agent-to-agent payments

Default stack decisions

1) Fast Vault (2-of-2) for all agent use cases
- Agent holds one key share, VultiServer holds the other
- VultiServer auto-co-signs based on policy rules — no human in the loop
- Use Secure Vault only when multi-device human approval is required

2) TypeScript SDK (@vultisig/sdk) as primary interface
- npm install @vultisig/sdk
- Source: github.com/vultisig/vultisig-sdk
- SDK Users Guide: docs/SDK-USERS-GUIDE.md

3) MemoryStorage for ephemeral agents, implement Storage interface for persistent agents
- MemoryStorage is the only storage exported from the SDK
- For persistent vaults, implement the Storage interface backed by your preferred store

4) 3-step transaction flow: prepare → sign → broadcast
- Never skip steps. Always prepare the keysign payload first, then sign, then broadcast.
- Fast Vault signing is automatic (VultiServer co-signs). Secure Vault requires device coordination.

5) Amounts as bigint (smallest unit) for sends, number (human-readable) for swaps
- prepareSendTx takes amount: bigint (e.g., BigInt('100000000000000000') for 0.1 ETH)
- getSwapQuote takes amount: number (e.g., 0.1 for 0.1 ETH)

Operating procedure

1. Initialize SDK

CODEBLOCK0

Source: Vultisig.ts

2. Create a Fast Vault

Two-step process: create (triggers email verification) then verify.

CODEBLOCK1

Risk notes:

• - The password encrypts the vault share. If lost, the vault cannot be recovered.
• The email verification code is required — agents must have email access or an email relay.

2b. Create a Secure Vault (human co-signing)

When agents need human approval before executing transactions (high-value transfers, treasury ops, compliance flows), use a Secure Vault. The agent holds one share, the human holds the other. The human co-signs via the Vultisig mobile app by scanning a QR code — the transaction only executes when both parties agree.

CODEBLOCK2

Signing requires the human to participate:

CODEBLOCK3

Source: SecureVault.ts

When to use Secure Vault over Fast Vault:

• - Transactions above a risk threshold that need human sign-off
• Treasury or DAO operations requiring human approval
• Compliance workflows where an agent should not act unilaterally

3. Get addresses

CODEBLOCK4

Source: VaultBase.ts

Chain identifiers use PascalCase strings matching the Chain enum: 'Bitcoin', 'Ethereum', 'Solana', 'THORChain', 'Cosmos', 'Polygon', 'Arbitrum', 'Base', 'Optimism', 'Avalanche', 'BSC', etc.

Full chain list: Chain.ts

4. Check balances

CODEBLOCK5

Token balances (ERC-20, SPL, etc.)

CODEBLOCK6

Risk notes:

• - Native balance and token balances are separate queries. vault.balance('Ethereum') returns only ETH, not ERC-20s.
• Token balances require the contract address as the tokenId parameter.

5. Estimate gas

CODEBLOCK7

Source: VaultBase.ts — INLINECODE34

6. Send a transaction

3-step flow: prepareSendTx → sign → INLINECODE37

CODEBLOCK8

Source: VaultBase.prepareSendTx(), FastVault.sign()

Risk notes:

• - amount is in the chain's smallest unit (wei for ETH, satoshi for BTC). Miscalculating decimals will send wrong amounts.
• Always verify the receiver address. Transactions are irreversible.
• Check gas estimation before sending to avoid stuck transactions.

Sending ERC-20 / tokens

To send tokens instead of native currency, add the id field (contract address) to the coin object:

CODEBLOCK9

Risk notes:

• - The id field is the token contract address. Without it, the SDK treats it as a native transfer.
• Use the token's decimals, not the chain's. USDC = 6, WETH = 18, WBTC = 8.
• The sender still needs native ETH/gas token to pay transaction fees.

7. Swap tokens

4-step flow: getSwapQuote → prepareSwapTx → sign → INLINECODE47

CODEBLOCK10

Swap providers (auto-routed for best rate):

• - THORChain — Native cross-chain (BTC <> ETH, etc.)
• MayaChain — Additional cross-chain pairs
• 1inch — EVM DEX aggregation
• LiFi — Cross-chain + cross-DEX
• KyberSwap — EVM DEX aggregation

Risk notes:

• - Swap amounts use human-readable numbers (0.1), not bigint. The SDK handles decimal conversion.
• Check quote.warnings before executing — may contain slippage or liquidity warnings.
• ERC-20 token swaps may require a separate approval transaction (approvalPayload).
• Cross-chain swaps take longer (minutes, not seconds) and have different failure modes.

8. Export / Import vault

CODEBLOCK11

9. Create vault from seedphrase

CODEBLOCK12

Risk notes:

• - Seedphrase import creates a new TSS vault from the seed — the original seed-based wallet still exists independently.
• Handle seedphrases with extreme care. Never log, store in plaintext, or transmit unencrypted.

10. Vault lifecycle management

CODEBLOCK13

11. Check transaction status

After broadcasting, use the explorer URL or chain-specific methods to confirm transactions:

CODEBLOCK14

For automated strategies that need to confirm completion before the next action, poll the balance or use an external RPC/indexer to check transaction finality. The SDK does not provide a built-in tx status poller — use vault.updateBalance() to force-refresh after a broadcast and compare before/after.

CODEBLOCK15

12. Address book

Manage recurring recipients for automated transfers:

CODEBLOCK16

Source: Vultisig.ts

13. $VULT discount tiers

Holding $VULT tokens reduces swap fees (up to 50%). The SDK can check and update the agent's discount tier:

CODEBLOCK17

Token contract: 0xb788144DF611029C60b859DF47e79B7726C4DEBa (Ethereum)

14. Listen to events

CODEBLOCK18

Source: packages/sdk/src/events/

Supported chains

Source: Chain.ts

Category	Chains	Signature
UTXO	Bitcoin, Litecoin, Dogecoin, Bitcoin Cash, Dash, Zcash	ECDSA
EVM

Ethereum, BSC, Polygon, Avalanche, Arbitrum, Optimism, Base, Blast, Cronos, zkSync, Hyperliquid, Mantle, Sei | ECDSA | | Cosmos/IBC | THORChain, MayaChain, Cosmos Hub, Osmosis, Dydx, Kujira, Noble, Terra, Terra Classic, Akash | ECDSA | | Other | Solana, Sui, Polkadot, TON, Ripple, Tron, Cardano | EdDSA / Mixed |

Security model

• - No seed phrases — vault shares replace 12/24 word seeds
• No single point of failure — no device holds a complete private key
• No on-chain key registration — unlike multi-sig wallets
• DKLS23 protocol — 3-round TSS, co-developed with Silence Laboratories
• Open source and audited
• Docs: Security & Technology

CLI alternative

CODEBLOCK19

Source: clients/cli/

Progressive disclosure

• - SDK Users Guide — Complete API walkthrough
• Architecture — SDK internals, data flow, design patterns
• Agent Integration Guide — Agent-specific patterns and best practices
• Fast Vault Docs — How VultiServer co-signing works
• Marketplace Plugin Guide — Build automation plugins
• llms.txt — Concise link index for web-browsing agents
• llms-full.txt — Extended context with examples