⚠ INTERNAL — Operator UX mock · Design preview of V2 development path · demo-wired ≠ production-live · back to dev guide
Organization ABCDE/Bot Library/Security
Polygon · pUSD 10
📓 Developer Guide 📋 Reason Codes 📈 Shadow Mode
JD John Doe · Admin

Security — 9 bots

Wallet, signing, RPC, contract-address safety

← Bot Library

Security bots are cross-cutting guards that wrap every wallet interaction, signing request, RPC call, and contract address lookup. They run before and around the Execution layer — validating EIP-712 domains, previewing signature contents, managing RPC failover, and guarding wallet permissions. Security bots can reject or pause signing but cannot propose trades.

Pipeline position: Cross-cutting — wraps all signing and contract calls  ·  This family does NOT propose or execute trades; only guards signing and wallet operations

Total bots

9

Frozen

9

Demo-wired

0

Production-live

0

Spotlight bots

ContractAddressGuard
sec.contractaddressguard
ContractAddressGuard refuses to allow a signature or on-chain submission against any contract address that is not present on the committed CLOB V2 all
planned Ready to build frozen
SessionKeyManager
sec.sessionkeymanager
Issue, scope, and expire short-lived session keys so strategies can sign without re-prompting on every order.
planned Spec started frozen
WalletPermissionGuard
sec.walletpermissionguard
Enforce that each strategy can only call the wallet methods the user has explicitly granted, scoped per session.
planned Spec started frozen

All Security bots

BotClassAuthorityStatusReadinessWired?Purpose
AllowanceMonitor
sec.allowancemonitor		GuardrailReject, PauseplannedSpec startedTrack ERC-20 allowances per token and contract; alert and shrink to a tight ceiling on idle.
ChainStateVerifier
sec.chainstateverifier		GuardrailReject, PauseplannedSpec startedCross-check every order’s chain-derived inputs (nonce, balance, allowance) against multiple sources before signing.
ContractAddressGuard
sec.contractaddressguard		GuardrailReject, PauseplannedReady to buildContractAddressGuard refuses to allow a signature or on-chain submission against any contract address that is not present on the committed CLOB V2 all
KeyRotationReminder
sec.keyrotationreminder		GuardrailReject, PauseplannedSpec startedNag the user to rotate signing keys on a schedule; prevent key reuse across environments.
RPCFailoverManager
sec.rpcfailovermanager		GuardrailReject, PauseplannedSpec startedProbe RPC providers continuously and fail over before a stale endpoint poisons our chain view.
SessionKeyManager
sec.sessionkeymanager		GuardrailReject, PauseplannedSpec startedIssue, scope, and expire short-lived session keys so strategies can sign without re-prompting on every order.
SignaturePreviewer
sec.signaturepreviewer		GuardrailReject, PauseplannedSpec startedRender a plain-English summary of every EIP-712 signature before the wallet shows the modal.
WalletFundingGuard
sec.wallet_funding_guard		GuardrailRejectplannedSpec readyRejects any OrderIntent whose required pUSD collateral cannot be covered by the funded balance of the assigned wallet, including a configurable buffer
WalletPermissionGuard
sec.walletpermissionguard		GuardrailReject, PauseplannedSpec startedEnforce that each strategy can only call the wallet methods the user has explicitly granted, scoped per session.

Why this matters

Understanding which family a bot belongs to is the first step to understanding what it can and cannot do. Security bots does NOT propose or execute trades; only guards signing and wallet operations — this boundary is enforced in code and visible in every bot's authority chips.
Polytraders Operator UX Mock · INTERNAL · demo-wired ≠ production-live · the plan · reason codes · shadow-mode pipeline
↑↓ navigate open Esc close
⚙ Page Configuration
Current page settings
Loading configuration…
⚙ Global settings