Alpha — the agentic surface is in early access. Endpoints marked Alpha in the API reference follow the same stability and breaking-change policy as the rest of the API.
The trust model
The defining property of the system is that the agent has no spending authority of its own:- The agent only drafts. A conversation produces proposals — a structured series of actions (create a payee, create a mandate, schedule payments). Nothing is created until your application submits them as instructions.
- Nothing fires without a customer-signed mandate. A mandate is a signed spending authorization with hard caps. It is approved by a second recognized signer — never by the agent itself (dual control).
- Every payment is re-checked at fire time. When a scheduled payment comes due, the mandate gate re-evaluates the payment against the mandate’s caps at that moment. A revoked agent, an expired mandate, or an exhausted cap means the payment fails safely — it never falls through to a send.
Objects
The flow at a glance
Drafting through conversation is optional — an application that already knows what it wants canPOST /instructions with a hand-built action series, or use the direct POST /mandates and POST /scheduled-payments endpoints, and only the signing step remains.
What the agent can and cannot do
Where to go next
- Quickstart — agent → wallet access → draft → sign → first payment, end to end
- Examples — one-off, recurring, standing authorization, cross-chain, bank offramp
- Mandate signing — the canonical payload and the dual-control rules
- Webhooks —
scheduled_payment.failedand the success path - Account Insights — the deterministic report + advisory chat
- Limits — caps, windows, and the support matrix

