Policy-bound x402 payments for autonomous AI agents. One signed ERC-7710 covenant sets budget, allowed services & purpose; a firewall approves, asks, or blocks each payment before any USDC moves.
Covenant — policy-bound x402 payments for autonomous AI agents.
AI agents can now hold a wallet and pay for services on their own — but giving one unbounded spending power is dangerous. Covenant adds the missing boundary.
A user signs a single ERC-7710 delegation from their MetaMask Smart Account — a "covenant" defining budget, duration, allowed services, max-per-request, and purpose. The budget cap and expiry are enforced on-chain as caveats. An off-chain policy firewall then checks every x402 payment before redemption, with three outcomes: approve, ask the human, or block.
The agent (powered by Claude) plans a task, hits a paid x402 endpoint, receives an HTTP 402, and the firewall validates it against the covenant. Approved payments redeem the delegation to pay USDC; the x402 server verifies the transfer on-chain. Every action is fully audited.
Built entirely on MetaMask's audited contracts — no custom Solidity — on Base Sepolia.
Highlights: real x402 envelope + on-chain USDC verification · real ERC-7710 delegation & EIP-712 signature · three-decision policy firewall · full audit trail.
Live: https://covenant-bay.vercel.app Code: https://github.com/Im-A-Nuel/covenant Docs: https://covenant-3.gitbook.io/covenant-docs