Getting Started

What is Enclave

Programmable spending infrastructure for autonomous AI agents.

Enclave gives every AI agent its own onchain identity — a real Ethereum wallet backed by TEE key storage, governed by a Policy Engine that approves or rejects every spend before it hits the chain.

Unlike traditional wallets, Enclave is designed for non-human signers. Agents do not carry private keys — keys live in a Trusted Execution Environment. Agents carry session tokens with time-bound authority and explicit spending rules.

Isolated identity

Each agent gets a unique wallet address. Sub-accounts are isolated — no pooled funds, no shared liability.

Policy-enforced

Every outgoing transaction passes a 5-check policy gate. Rules are set by you, enforced by the contract.

Session-scoped

Agents sign via time-limited session keys. Revoke access instantly with aw freeze.

Verifiable

All keys and policy states are attested by TEE. Proof published onchain, verifiable by anyone.

Core guarantee

A policy configured in Enclave cannot be bypassed — not by the agent, not by the operator, not by the network. Rules live in Solana programs and execute without a server in the loop.

How it fits together

Agent Request

→

Policy Engine (5 checks)

→

TEE Signing

→

Solana Broadcast

→

Receipt

What Enclave is not

Enclave is not a custodial wallet, a payment processor, or a hot wallet with server-side key management. There is no Enclave server that holds your keys. The CLI runs locally. Keys never leave your machine.