Twelve stages. Zero shortcuts.
Intent parsing
PASSNatural language to structured JSON. Only LLM step.
Protocol research
PASSHack DB, news feeds, team, on-chain admin checks.
Calldata assembly
PASSRecipe-based, deterministic. No LLM.
Parameter validation
PASSBLOCK rules: balance, approvals, contracts.
Simulation
PASSAnvil fork execution. Full state diff computed.
State diff review
PASSEvery balance change shown before signing.
Risk assessment
HALTFLAG rules: large amount, high gas, duplicates.
User approval
PASSYou review. You decide. Not the agent.
Signing
PASSYour device, your keys. Offline hardware wallet.
Post-sign verification
PASSDecode signed TX. Compare every field to plan.
Broadcast
PASSOnly after double verification passes.
Confirmation & logging
PASSTX hash logged immediately. Evidence trail.
Stage failed. Pipeline halted.
Better to stop than to guess.
Defense in depth.
Halt over Guess
On uncertainty, halt with a reason code. Never proceed with uncertain data. The pipeline stops and tells you exactly why.
Determinism Ratchet
Proven patterns get hardened into code. Capabilities migrate from agent to deterministic scripts. One direction only.
Evidence Trail
Every decision logged with full calldata, simulation results, and outcome. Nothing is ephemeral. Everything is auditable.
Minimal AI. Maximum determinism.
Target: 1-2 LLM calls per transaction. Every additional call is architectural debt.
Free text to JSON (unavoidable NLU)
SQL query on tx.db
Deterministic from recipe
Code checks
cast send on fork
Balance diff calculation