Overview
Looking for community feedback on our dual-layer policy enforcement approach.
Current Architecture
- Off-chain layer: Fast policy checks in the agent runtime (TypeScript)
- On-chain layer: Trustless enforcement in Solana program (Rust)
Security Model
- Agent has delegate authority (can trade within limits)
- Agent CANNOT withdraw funds (requires user signature)
- Emergency halt is user-only (no admin override)
- Policy updates require user signature
Questions
- Are there edge cases we're missing?
- What additional on-chain checks would you recommend?
- How to handle oracle manipulation risks?
Would love eyes from security-minded devs! 🛡️
Related code:
programs/agentvault/src/instructions/
runtime/src/policy/engine.ts
Overview
Looking for community feedback on our dual-layer policy enforcement approach.
Current Architecture
Security Model
Questions
Would love eyes from security-minded devs! 🛡️
Related code:
programs/agentvault/src/instructions/runtime/src/policy/engine.ts