aegis-security
✓Verified·Scanned 2/18/2026
This skill provides a blockchain security API for agents to scan tokens, simulate transactions, and check addresses via https://aegis402.xyz/v1. It instructs agents to call those endpoints and to read env vars AEGIS_FINGERPRINT, EVM_PRIVATE_KEY, and SVM_PRIVATE_KEY for payer signing; these behaviors are purpose-aligned.
from clawhub.ai·v1.1.1·10.1 KB·0 installs
Scanned from 1.1.1 at 0bab855 · Transparency log ↗
$ vett add clawhub.ai/swiftadviser/aegis-security
Aegis402 Shield Protocol
Blockchain security API for AI agents.
Free tier: 100 checks/day, then pay-per-request with USDC on Base or Solana.
Agent Quickstart (Scan Before Transact)
Default policy for agents and wallets:
- Set
X-Client-Fingerprint: <stable_agent_or_user_id>for predictable free-tier accounting. - Before sending any transaction, run in parallel:
GET /v1/check-address/:toPOST /v1/simulate-tx- (Optional)
GET /v1/check-token/:tokenfor tokens involved (swaps/approvals)
- Block and ask for confirmation if any result indicates
HIGH/CRITICAL,isSafe=false, or recipient is poisoned/flagged. - Otherwise allow, but still show the review summary + raw JSON.
Notes:
- Free tier is best-effort abuse-limited, not a security mechanism. Rotating fingerprints can bypass free-tier buckets.
- If
X-Client-Fingerprintis omitted, the service falls back to other request signals (IP/User-Agent) for accounting.
What To Do (Agent Mode, From Zero)
When a user is about to send a transaction:
- Ask for missing intent:
from,to,value,data(or "native transfer"),chain_id
- Check free tier (always free):
GET /v1/usage
- Run the scan-before-transact checks (parallel):
GET /v1/check-address/:toPOST /v1/simulate-tx- (Optional)
GET /v1/check-token/:token
- Reply using templates below (summary first, then raw JSON).
How To Reply (Templates)
SAFE (LOW)
🛡️ Scan Complete
Risk: LOW (SAFE)
Summary: No critical warnings detected.
✅ OK to proceed.
CAUTION (MEDIUM)
🛡️ Scan Complete
Risk: MEDIUM (CAUTION)
Summary: Some warnings detected.
⚠️ Review recommended before proceeding. Want me to explain the top 3 risks?
DANGEROUS (HIGH)
🛡️ Scan Complete
Risk: HIGH (DANGEROUS)
Summary: Significant risks detected.
🚫 Not recommended.
BLOCKED (CRITICAL)
🛡️ Scan Complete
Risk: CRITICAL (BLOCKED)
Summary: Do not proceed.
🚫 Stop. This transaction/recipient appears malicious or unsafe.
402 Payment Required
I tried to run a paid check but payment isn't set up (or the wallet has insufficient USDC).
To enable paid checks:
1. Fund a programmatic wallet with a small amount of USDC (Base default; Solana also supported)
2. Install an x402 client (@x402/fetch + chain package)
3. Configure your payer wallet signer (private key or mnemonic)
Reference
Skill Files
| File | URL |
|---|---|
| SKILL.md (this file) | https://aegis402.xyz/skill.md |
| package.json (metadata) | https://aegis402.xyz/skill.json |
Base URL: https://aegis402.xyz/v1
Pricing
| Endpoint | Price | Use Case |
|---|---|---|
POST /simulate-tx | $0.05 | Transaction simulation, DeFi safety |
GET /check-token/:address | $0.01 | Token honeypot detection |
GET /check-address/:address | $0.005 | Address reputation check |
Free tier: 100 checks/day. Track usage via GET /v1/usage.
Usage (Free)
curl "https://aegis402.xyz/v1/usage"
Example response:
{
"freeTier": {
"enabled": true,
"dailyLimit": 100,
"usedToday": 2,
"remainingChecks": 98,
"nextResetAt": "2026-02-11T00:00:00.000Z",
"resetTimezone": "UTC"
},
"_meta": {
"requestId": "uuid",
"tier": "free",
"eventType": "free_tier_call",
"latencyMs": 4
}
}
check-address
curl "https://aegis402.xyz/v1/check-address/0x742d35Cc6634C0532925a3b844Bc454e4438f44e?chain_id=8453"
simulate-tx
Request body fields:
from(required): sender addressto(required): recipient or contractvalue(required): amount in wei (string)data(optional): calldata hex (0x...)chain_id(optional): chain being simulated (default: Base 8453 is a common choice for payments, but simulation chain is up to you)
curl -X POST "https://aegis402.xyz/v1/simulate-tx" \
-H "Content-Type: application/json" \
-d '{
"from": "0xYourWallet...",
"to": "0xContract...",
"value": "0",
"data": "0x",
"chain_id": 8453
}'
check-token
chain_id is the chain you want to scan (Ethereum=1, Base=8453, etc). Payment rail is driven by the 402 challenge (default: USDC on Base).
curl "https://aegis402.xyz/v1/check-token/0xA0b86991c6218b36c1d19D4a2e9Eb0cE3606eB48?chain_id=1"
Payments (x402)
You can use the API for free until your fingerprint uses 100 checks/day. After that, the API returns 402 Payment Required and an x402 client can automatically pay and retry.
Minimal Node Client (Base/EVM payer)
npm install @x402/fetch @x402/evm viem
import { x402Client, wrapFetchWithPayment } from '@x402/fetch';
import { registerExactEvmScheme } from '@x402/evm/exact/client';
import { privateKeyToAccount } from 'viem/accounts';
const fingerprint = process.env.AEGIS_FINGERPRINT || 'agent-default';
const signer = privateKeyToAccount(process.env.EVM_PRIVATE_KEY as `0x${string}`);
const client = new x402Client();
registerExactEvmScheme(client, { signer });
const fetch402 = wrapFetchWithPayment(fetch, client);
const res = await fetch402('https://aegis402.xyz/v1/usage', {
headers: { 'X-Client-Fingerprint': fingerprint },
});
console.log(await res.json());
Solana Payer (optional)
npm install @x402/fetch @x402/svm @solana/kit @scure/base
import { createSvmClient } from '@x402/svm/client';
import { toClientSvmSigner } from '@x402/svm';
import { wrapFetchWithPayment } from '@x402/fetch';
import { createKeyPairSignerFromBytes } from '@solana/kit';
import { base58 } from '@scure/base';
const keypair = await createKeyPairSignerFromBytes(base58.decode(process.env.SVM_PRIVATE_KEY!));
const signer = toClientSvmSigner(keypair);
const client = createSvmClient({ signer });
const fetch402 = wrapFetchWithPayment(fetch, client);
Appendix
Risk Levels
| Level | Meaning | Agent Default |
|---|---|---|
LOW | Minor concerns, generally safe | allow |
MEDIUM | Some risks | show review; consider confirm |
HIGH | Significant risks | block + confirm |
CRITICAL | Unsafe/malicious | block |
Errors and What To Do
| Status | Meaning | What the agent should do |
|---|---|---|
| 400 | Invalid parameters | ask user for missing/invalid fields and retry |
| 402 | Payment required | configure payer wallet (x402 client) or wait for next free-tier reset |
| 500 | Service/upstream error | retry once; if persistent, show error + requestId |
Tips:
- Every response includes
_meta.requestId. The server also setsx-request-idheader; include it in bug reports. - Upgrade hints may be present in headers:
x-aegis-skill-latest-versionx-aegis-skill-urlx-aegis-skill-upgrade
What Is New In v1.1.1
- Free tier: 100 checks/day (
GET /v1/usagefor live balance). - Response
_metafields for transparency (tier,remainingChecks,usedToday,dailyLimit,nextResetAt,latencyMs). - Upgrade hints in API headers for old clients.
Migration Notes (v1.0.x -> v1.1.x)
- Send your installed skill version in request header:
x-aegis-skill-version. - Read
GET /v1/usagebefore paid checks to consume free credits first. - Keep existing paid x402 flow unchanged for post-limit requests.
Health Check (Free)
curl https://aegis402.xyz/health
Supported Chains
chain_id is the chain being scanned (not the payment rail).
| Chain | ID | check-token | check-address | simulate-tx |
|---|---|---|---|---|
| Ethereum | 1 | ✅ | ✅ | ✅ |
| Base | 8453 | ✅ | ✅ | ✅ |
| Polygon | 137 | ✅ | ✅ | ✅ |
| Arbitrum | 42161 | ✅ | ✅ | ✅ |
| Optimism | 10 | ✅ | ✅ | ✅ |
| BSC | 56 | ✅ | ✅ | ✅ |
| Avalanche | 43114 | ✅ | ✅ | ✅ |
Links
- Website: https://aegis402.xyz
- API Docs: https://aegis402.xyz/api.html
- Demo: https://aegis402.xyz/demo.html
- x402 Protocol: https://docs.x402.org
Socials
🛡️ Built for the Agentic Economy. Powered by x402 Protocol.