onyx-actions

The security & trust layer for the agentic web. Signed, pre-transaction security checks over x402: recipient firewall, contract audit, ERC-8004 agent reputation, AML/sanctions, and a one-call secure-payment clearance. Every verdict Ed25519-signed.

Skills

• Agent Audit Trail
  Full payment + action audit trail for any agent wallet on Base. Returns every USDC outflow with resolved x402 destination, tool name where known, timestamp, tx hash, cumulative spend, velocity, and behavioral risk flags. The audit log every
  securityverificationtrustx402ed25519-signed
• Agent Reputation
  Vet another AI agent before you trust it — via the live ERC-8004 registries on Base. Give an agent's ERC-8004 id; get its on-chain identity (is it registered? owner), its verified receiving wallet, its AgentCard URI, and its reputation summ
  securityverificationtrustx402ed25519-signed
• Aml Screen
  KYC/AML sanctions + risk screen for any EVM address. Returns OFAC sanctions hit (via Chainalysis on-chain oracle), 0-100 risk score, verdict (sanctioned/safe/caution/high_risk/blocked), and ranked risk_factors (address age, transaction thro
  securityverificationtrustx402ed25519-signed
• Attestation Verify
  Verify an Onyx-signed security verdict. Paste back any result from an Onyx tool (the full JSON including its onyx_attestation block); get a cryptographic verdict: is the Ed25519 signature valid, was it signed by Onyx (kid), and has any fiel
  securityverificationtrustx402ed25519-signed
• Base Contract Verify
  Contract verification + ABI metadata for any Base address. Returns is_verified, contract name, compiler version, language, optimization, ABI entry count, license, source code size. Auto-detects EIP-1967/OZ/UUPS proxies and resolves to the i
  securityverificationtrustx402ed25519-signed
• Base Token Risk Scan
  Risk-scan any ERC-20 token on Base mainnet. Returns ownership status (renounced or active owner address), mint authority (still mintable?), top-1 / top-10 holder concentration via balanceOf probes, contract age in days, basic honeypot signa
  securityverificationtrustx402ed25519-signed
• Browser Screenshot
  Capture a PNG screenshot of the current CDP-controlled Chrome page and return it as base64. Use to feed a vision-LLM (Claude / GPT-4V) for screen-understanding agents, or to archive an action's visual result. Returns also the page title, UR
  securityverificationtrustx402ed25519-signed
• Contract Audit
  Full smart-contract security audit for any Base address — source + DEPLOYED reality + AI, SIGNED. Fetches verified source, runs curated static vuln detectors (tx.origin auth, delegatecall, selfdestruct, unchecked calls, unprotected init, ow
  securityverificationtrustx402ed25519-signed
• Fact Check
  Fact-check any claim by fetching real-time web evidence. Returns supporting sources, contradicting sources, a 0-100 confidence score, and a short summary. Use for prediction-market resolvers, news-fact agents, journalist-bot pipelines, or a
  securityverificationtrustx402ed25519-signed
• Mcp Oauth Audit
  OAuth 2.1 + RFC 7591 DCR compliance audit for any MCP server. Probes the 5 standard discovery + registration + token endpoints, validates each against the relevant RFC, returns a composite 0-100 score and remediation list. Free tier — usefu
  securityverificationtrustx402ed25519-signed
• Kya Verify
  Verify an Onyx Protocol KYA (Know Your Agent) credential. Pass a credential id (e.g. 'kya_01KSHZ...'); returns ok + scope + spend cap + issuer + revocation status. Use to gate paid tool access, audit agent operations, or compose with x402 s
  securityverificationtrustx402ed25519-signed
• Secure Payment
  Secure-transaction RAIL: one signed clearance before an agent sends funds. Give recipient + amount (and optionally a contract address or counterparty ERC-8004 agent id); Onyx runs the full security stack — recipient firewall, contract audit
  securityverificationtrustx402ed25519-signed
• Solana Token Risk Scan
  Rug-vector risk scan for any SPL token on Solana mainnet. Checks mint authority (active = can mint unlimited supply), freeze authority (active = can freeze any holder's wallet), top-10 holder concentration (whale risk), supply rationality,
  securityverificationtrustx402ed25519-signed
• Tx Guard
  Pre-payment security firewall. Give the recipient address your agent is about to pay (Base); get a SIGNED ALLOW/REVIEW/BLOCK verdict + risk score from real on-chain checks: EOA-vs-contract, contract code/verification, account age (tx count)
  securityverificationtrustx402ed25519-signed
• Verify Explain
  Diagnose a failing x402 v2 /verify. Decodes a captured X-PAYMENT header, runs 10 rules (decode, schema, network/asset/payTo match, value sufficiency, EIP-3009 timing, signature shape, scheme) against expected paymentRequirements, and return
  securityverificationtrustx402ed25519-signed
• X402 Receipt Verify
  Verify an x402 USDC settlement on Base or Base Sepolia. Given a tx hash, decodes the USDC Transfer log and confirms (or refutes) a claim of the form: 'tx X moved $Y USDC from A to B'. Returns success status, actual decoded values, and a cle
  securityverificationtrustx402ed25519-signed

How to call

https://onyx-actions.onrender.com