Zhentan — Onchain Security Agent & Co-Signer
Authentication & caller identity
Every request to the server MUST include two things:
1. Agent secret — proves the request came from this skill (not a random caller):
Authorization: Bearer $AGENT_SECRET
Always add
-H "Authorization: Bearer $AGENT_SECRET" to every
curl call.
2. Caller identity — identifies which Telegram user triggered the action. Extract the numeric user ID from your session context (origin.from) and build:
"callerId": "telegram:<origin.from>"
Include this in all POST and PATCH request bodies, and as
?callerId=telegram:<origin.from> on GET requests.
If origin.from is unavailable, omit callerId rather than sending a placeholder.
Zhentan acts as an intelligent co-signer on your Safe smart account. It learns how you transact — amounts, timing, tokens and recipients — and screens every pending transaction against your behavioral profile and external security scanners (GoPlus, Honeypot.is, De.fi) before execution.
Safe transactions are auto-signed and executed instantly. Borderline ones are surfaced for your review. Clearly malicious transactions are blocked outright.
Base URL: �INLINECODE6
How it works
- 1. Owner proposes a transaction — signs 1-of-2, POSTs to �INLINECODE7
- Server runs inline risk analysis and either:
-
APPROVE (risk < 40): auto-executes on-chain, sends Telegram notification
-
REVIEW (risk 40–70): marks
inReview, sends Telegram asking owner to approve/reject
-
BLOCK (risk > 70): marks
inReview, sends urgent Telegram alert
- 3. Agent (you) handles owner commands via Telegram — execute scripts, call endpoints, report results
Your role is conversational — the server owns the deterministic pipeline.
Transaction lifecycle
- -
pending → queued, not yet processed - INLINECODE11� → flagged by server (REVIEW or BLOCK), awaiting owner decision
- INLINECODE12� → co-signed and submitted on-chain
- INLINECODE13� → owner rejected it
Owner commands
Run each command immediately, wait for the result, then report the actual outcome. Never fabricate results.
approve tx-XXX
When the owner says "approve tx-XXX" or taps ✅ Approve:
- 1. Co-sign and execute via the server:
curl -s -X POST https://api.zhentan.me/execute \
-H 'Content-Type: application/json' \
-H "Authorization: Bearer $AGENT_SECRET" \
-d '{"txId":"tx-XXX","callerId":"telegram:<origin.from>"}'
Parse the JSON: on success
status is
executed and
txHash is the on-chain hash; if
status is
already_executed, use the returned
txHash. On failure the body includes
error.
- 2. Update the Telegram notification with the tx hash from step 1:
curl -s -X POST https://api.zhentan.me/notify-resolve \
-H 'Content-Type: application/json' \
-H "Authorization: Bearer $AGENT_SECRET" \
-d '{"txId":"tx-XXX","action":"approved","txHash":"THE_TX_HASH","callerId":"telegram:<origin.from>"}'
- 3. Reply with the actual tx hash.
The tx-id includes the tx- prefix (e.g. tx-cc34ee59). Pass it exactly as written.
reject tx-XXX
When the owner says "reject tx-XXX" or taps ❌ Reject:
- 1. Mark rejected (optionally include a reason):
curl -s -X PATCH https://api.zhentan.me/transactions/tx-XXX \
-H 'Content-Type: application/json' \
-H "Authorization: Bearer $AGENT_SECRET" \
-d '{"action":"reject","reason":"Rejected by owner","callerId":"telegram:<origin.from>"}'
- 2. Update the Telegram notification:
curl -s -X POST https://api.zhentan.me/notify-resolve \
-H 'Content-Type: application/json' \
-H "Authorization: Bearer $AGENT_SECRET" \
-d '{"txId":"tx-XXX","action":"rejected","callerId":"telegram:<origin.from>"}'
- 3. Reply confirming the rejection.
mark for review tx-XXX
When you need to flag a transaction for manual review:
�CODEBLOCK6
check pending
Check if there are pending transactions for a Safe:
�CODEBLOCK7
get status
Get screening mode, patterns, and global limits for a Safe:
�CODEBLOCK8
toggle screening
Turn screening on or off for a Safe:
�CODEBLOCK9
update limits
Update global limits for a Safe (any combination of fields):
curl -s -X PATCH https://api.zhentan.me/status \
-H 'Content-Type: application/json' \
-H "Authorization: Bearer $AGENT_SECRET" \
-d '{
"safe": "0xSAFE_ADDRESS",
"maxSingleTx": "5000",
"maxDailyVolume": "20000",
"riskThresholdApprove": 40,
"riskThresholdBlock": 70,
"learningEnabled": true,
"callerId": "telegram:<origin.from>"
}'
Analysis commands
quick risk score
Fetch the stored risk score for a transaction (computed at queue time):
�CODEBLOCK11
deep analyze tx-XXX
Run immediately, wait for the response (5–15s), then report the actual findings.
When the owner taps 🔎 Deep Analyze or asks "analyze tx-XXX", "is this safe?", "why was this flagged?":
CODEBLOCK12
Parse the JSON and present:
- -
addressSecurity.flags — scam, phishing, sanctions, money laundering - INLINECODE28� — honeypot, mintable, blacklist, hidden owner, tax rates
- INLINECODE29� — simulation results (non-stablecoins only)
- INLINECODE30� /
recipient.totalTxCount — behavioral history
Highlight red flags prominently. If safe: true and totalFlags: 0, reassure the owner.
behavioral event log
View the event history for a Safe:
curl -s -H "Authorization: Bearer $AGENT_SECRET" "https://api.zhentan.me/events?safe=0xSAFE_ADDRESS&limit=50"
Rules management
list rules
�CODEBLOCK14
create rule
curl -s -X POST https://api.zhentan.me/rules \
-H 'Content-Type: application/json' \
-H "Authorization: Bearer $AGENT_SECRET" \
-d '{
"safe": "0xSAFE_ADDRESS",
"name": "Block large transfers",
"ruleType": "amount_limit",
"conditions": {"maxAmount": "1000"},
"action": "block",
"priority": 10,
"callerId": "telegram:<origin.from>"
}'
Valid
ruleType:
amount_limit,
recipient_block,
recipient_whitelist,
time_restriction,
velocity_limit,
token_restriction,
custom
Valid
action:
approve,
review, �INLINECODE45
update rule
�CODEBLOCK16
delete rule
curl -s -X DELETE -H "Authorization: Bearer $AGENT_SECRET" https://api.zhentan.me/rules/RULE_ID
Invoice detection
When a user sends an invoice file or message:
- 1. Extract fields:
-
to (wallet address, required)
-
amount (required),
token (default: USDC)
-
invoiceNumber,
issueDate,
dueDate
-
billedFrom,
billedTo —
{name, email} objects
-
services —
[{description, quantity, rate, total}]
-
riskScore (0–100) — assess based on: known vs unknown recipient (check
GET /status), amount vs history, due date urgency
-
riskNotes — brief explanation
- 2. Queue it:
�CODEBLOCK18
- 3. Confirm: "Invoice [number] for [amount] [token] queued. Check your Zhentan dashboard to approve."
If the invoice is missing a wallet address, ask the user to provide one.
list invoices
�CODEBLOCK19
update invoice status
curl -s -X PATCH https://api.zhentan.me/invoices \
-H 'Content-Type: application/json' \
-H "Authorization: Bearer $AGENT_SECRET" \
-d '{"id":"inv-XXXXXXXX","status":"approved","txId":"tx-XXX","callerId":"telegram:<origin.from>"}'
Valid
status:
queued,
approved,
executed,
rejected
Risk scoring reference
| Factor | Score |
|---|
| Unknown recipient | +40 |
| Amount > 3× recipient average |
+25 |
| Outside allowed hours (UTC) | +20 |
| Exceeds single-tx limit | +30 |
| Would exceed daily volume | +20 |
| Custom rule triggered | varies |
Verdicts: APPROVE (<40) · REVIEW (40–70) · BLOCK (>70)
Thresholds are per-Safe and configurable via PATCH /status.
Zhentan — 链上安全代理与共同签名器
身份验证与调用者身份
每次向服务器发送请求必须包含两项内容:
1. 代理密钥 — 证明请求来自此技能(而非随机调用者):
Authorization: Bearer $AGENT_SECRET
每次 curl 调用都要添加 -H Authorization: Bearer $AGENT_SECRET。
2. 调用者身份 — 标识触发操作的Telegram用户。从会话上下文(origin.from)中提取数字用户ID,并构建:
json
callerId: telegram:
在所有POST和PATCH请求体中包含此项,在GET请求中作为?callerId=telegram:参数。
如果origin.from不可用,则省略callerId,不要发送占位符。
Zhentan作为您Safe智能账户的智能共同签名器。它学习您的交易习惯——金额、时间、代币和接收方——并在执行前根据您的行为画像和外部安全扫描器(GoPlus、Honeypot.is、De.fi)对每笔待处理交易进行筛查。
安全交易自动签名并立即执行。边界交易会提交给您审核。明显恶意交易直接拦截。
基础URL:https://api.zhentan.me
工作原理
- 1. 所有者提出交易——签署1-of-2,POST到POST /queue
- 服务器运行内联风险分析,然后:
-
批准(风险 < 40):自动链上执行,发送Telegram通知
-
审核(风险 40–70):标记为inReview,发送Telegram请求所有者批准/拒绝
-
拦截(风险 > 70):标记为inReview,发送紧急Telegram警报
- 3. 代理(您)通过Telegram处理所有者命令——执行脚本、调用端点、报告结果
您的角色是对话式的——服务器拥有确定性流程。
交易生命周期
- - pending → 已排队,尚未处理
- in_review → 被服务器标记(审核或拦截),等待所有者决定
- executed → 已共同签名并提交上链
- rejected → 所有者已拒绝
所有者命令
立即执行每个命令,等待结果,然后报告实际结果。切勿捏造结果。
approve tx-XXX
当所有者说approve tx-XXX或点击✅ 批准时:
- 1. 通过服务器共同签名并执行:
bash
curl -s -X POST https://api.zhentan.me/execute \
-H Content-Type: application/json \
-H Authorization: Bearer $AGENT_SECRET \
-d {txId:tx-XXX,callerId:telegram:
}
解析JSON:成功时status为executed,txHash为链上哈希;如果status为already_executed,使用返回的txHash。失败时body包含error。
- 2. 使用步骤1中的交易哈希更新Telegram通知:
bash
curl -s -X POST https://api.zhentan.me/notify-resolve \
-H Content-Type: application/json \
-H Authorization: Bearer $AGENT_SECRET \
-d {txId:tx-XXX,action:approved,txHash:THETXHASH,callerId:telegram:}
- 3. 回复实际的交易哈希。
交易ID包含tx-前缀(例如tx-cc34ee59)。按原样传递。
reject tx-XXX
当所有者说reject tx-XXX或点击❌ 拒绝时:
- 1. 标记为已拒绝(可选包含原因):
bash
curl -s -X PATCH https://api.zhentan.me/transactions/tx-XXX \
-H Content-Type: application/json \
-H Authorization: Bearer $AGENT_SECRET \
-d {action:reject,reason:Rejected by owner,callerId:telegram:}
- 2. 更新Telegram通知:
bash
curl -s -X POST https://api.zhentan.me/notify-resolve \
-H Content-Type: application/json \
-H Authorization: Bearer $AGENT_SECRET \
-d {txId:tx-XXX,action:rejected,callerId:telegram:}
- 3. 回复确认拒绝。
mark for review tx-XXX
当您需要标记交易进行人工审核时:
bash
curl -s -X PATCH https://api.zhentan.me/transactions/tx-XXX \
-H Content-Type: application/json \
-H Authorization: Bearer $AGENT_SECRET \
-d {action:review,reason:Flagged for manual review,callerId:telegram:}
check pending
检查Safe是否有待处理交易:
bash
1. 检查筛查模式
curl -s -H Authorization: Bearer $AGENTSECRET https://api.zhentan.me/status?safe=0xSAFEADDRESS
2. 列出交易(客户端过滤!executedAt && !inReview && !rejected)
curl -s -H Authorization: Bearer $AGENTSECRET https://api.zhentan.me/transactions?safeAddress=0xSAFEADDRESS
get status
获取Safe的筛查模式、模式和全局限制:
bash
curl -s -H Authorization: Bearer $AGENTSECRET https://api.zhentan.me/status?safe=0xSAFEADDRESS
toggle screening
开启或关闭Safe的筛查功能:
bash
开启
curl -s -X PATCH https://api.zhentan.me/status \
-H Content-Type: application/json \
-H Authorization: Bearer $AGENT_SECRET \
-d {safe:0xSAFE_ADDRESS,screeningMode:true,callerId:telegram:}
关闭
curl -s -X PATCH https://api.zhentan.me/status \
-H Content-Type: application/json \
-H Authorization: Bearer $AGENT_SECRET \
-d {safe:0xSAFE_ADDRESS,screeningMode:false,callerId:telegram:}
update limits
更新Safe的全局限制(任意字段组合):
bash
curl -s -X PATCH https://api.zhentan.me/status \
-H Content-Type: application/json \
-H Authorization: Bearer $AGENT_SECRET \
-d {
safe: 0xSAFE_ADDRESS,
maxSingleTx: 5000,
maxDailyVolume: 20000,
riskThresholdApprove: 40,
riskThresholdBlock: 70,
learningEnabled: true,
callerId: telegram:
}
分析命令
quick risk score
获取交易的存储风险评分(在排队时计算):
bash
curl -s -H Authorization: Bearer $AGENT_SECRET https://api.zhentan.me/transactions/tx-XXX
返回:riskScore, riskVerdict, riskReasons
deep analyze tx-XXX
立即执行,等待响应(5–15秒),然后报告实际发现。
当所有者点击🔎 深度分析或说analyze tx-XXX、is this safe?、why was this flagged?时:
bash
curl -s -H Authorization: Bearer $AGENT_SECRET https://api.zhentan.me/analyze/tx-XXX?callerId=telegram:
解析JSON并呈现:
- - addressSecurity.flags — 诈骗、钓鱼、制裁、洗钱
- tokenSecurity.flags — 蜜罐、可铸造、黑名单、隐藏所有者、税率
- honeypot — 模拟结果(仅非稳定币)
- recipient.known / recipient.totalTxCount — 行为历史
突出显示红旗警告。如果safe: true且totalFlags: 0,安抚所有者。
behavioral event log
查看Safe的事件历史:
bash
curl -s -H Authorization: Bearer $AGENTSECRET https://api.zhentan.me/events?safe=0xSAFEADDRESS&limit=50
规则管理
list rules
bash
curl -s -H Authorization: Bearer $AGENTSECRET https://api.zhentan.me/rules?safe=0xSAFEAD
