A minimal tool for detecting onchain behavioral changes for crypto agents on Base.
Crypto builders, developers, and technically literate operators who integrate or monitor crypto agents (e.g. trading agents, DeFi automation, execution agents) that operate via onchain addresses on Base.
Builders routinely make trust decisions about agent addresses based on stale or fragmented information:
- past experience (“it worked before”)
- GitHub activity
- recent onchain transactions viewed manually in a block explorer
There is no lightweight, consistent way to answer:
“What has changed about this agent’s onchain behavior since the last time anyone looked?”
This tool:
- observes onchain behavior for a given address on Base
- summarizes behavior into a bounded snapshot
- compares the current snapshot to a prior reference snapshot (“baseline”)
- surfaces material behavioral changes between the two
It produces a diff, not a verdict.
- A user can input an address
- The system produces a clear, bounded diff of onchain behavioral changes
- The output is understandable in under 30 seconds
- The tool does not infer intent, risk, or safety
- Base only
- Address-based input
- Snapshot + diff output
- Predefined change categories only
- No alerts, no scores, no recommendations
This project is not:
- a security or risk scoring system
- a trust, reputation, or safety oracle
- a monitoring or alerting service
- a replacement for audits, multisig, sandboxing, or human review
- a full analytics dashboard
- a general-purpose block explorer
- a platform or marketplace
The following are explicitly out of scope for v1:
- automatic safety verdicts (safe / unsafe)
- exploit detection
- malware detection
- intent inference
- continuous monitoring or alerts
- historical deep dives beyond the snapshot window
- offchain activity analysis
- ERC-8004 or identity inference
- multi-chain support
If a feature attempts to answer:
“Is this agent safe or trustworthy?”
It must be rejected.
An agent is any onchain address on Base that:
- submits transactions programmatically
- interacts with smart contracts
- is used as part of an automated or semi-automated system
This tool does not verify whether an address is “actually an AI agent.” Any Base address may be checked.
A snapshot is a summarized representation of observed onchain behavior over a bounded lookback window.
A snapshot captures:
- patterns and categories
- not individual transactions
A diff is a comparison between:
- a previously recorded snapshot (“baseline”)
- a newly generated snapshot (“current”)
The diff surfaces what changed, not why it changed.
A snapshot summarizes:
- the last 30 days of activity
or - the last 1,000 transactions, whichever is fewer
- Contract addresses interacted with
- Token approval events (new / revoked)
- Transaction volume patterns (daily average, trend direction)
- Gas usage patterns (high-level)
- Individual transaction hashes
- Exact timestamps
- Mempool or pending data
- Offchain behavior
- Activity outside the lookback window
- New contract interactions (present in current, not baseline)
- Removed contract interactions (present in baseline, not current)
- Changes in token approval scope
- Transaction volume pattern shifts greater than ±50%
- “No changes detected”
- “Minimal activity (insufficient data for meaningful diff)”
- Raw transaction lists
- Sender / recipient breakdowns
- Exact gas prices
- Optimization or performance metrics
- Speculative or inferred conclusions
A baseline is a reference snapshot, not a declaration of correctness or safety.
It represents:
- previously observed onchain behavior
- within a defined lookback window
- summarized into predefined categories
It does NOT represent:
- a “known good” state
- a trusted or approved state
- a guarantee of safety
- The first time an address is checked, a baseline snapshot is created
- That baseline is global per address
- Subsequent checks compare against the same baseline
- Baselines are immutable once created
- No automatic updates
- No manual reset in v1
- Re-baselining is explicitly out of scope for v1
If a baseline is older than 12 months:
- The diff is still generated normally
- The UI must display:
“Note: Baseline is [X] months old. Changes may reflect normal evolution.”
- No automatic re-baselining occurs
If an address has fewer than 10 transactions at baseline creation:
- System shows: “Insufficient data for baseline”
- Diff remains unavailable until sufficient activity exists
- No partial or misleading diffs are shown
- If Base RPC is unavailable:
- Show: “Data unavailable. Try again later.”
- If diff computation fails:
- Show: “Unable to generate diff.”
- Never show partial or incomplete diffs
This project does not determine whether an agent is safe, trustworthy, or malicious.
It does not:
- assess risk or security
- issue safety verdicts or scores
- determine intent (benign vs malicious)
- replace audits, sandboxing, multisig, or human judgment
- claim to prevent exploits or fund loss
This project only:
- observes onchain behavior for a given address on Base
- summarizes that behavior into a bounded snapshot
- compares the current snapshot to a prior reference snapshot (“baseline”)
- surfaces material behavioral changes between the two
The output is descriptive, not prescriptive.
Any interpretation of whether a change is expected, acceptable, or risky is explicitly left to the user.
A “no changes detected” result means only:
“Observed behavior matches the previously recorded snapshot.”
It does not mean:
“This address is safe.”
- Clarity over completeness
- Signal over speculation
- Change detection over risk interpretation
- Bounded scope over extensibility
If a proposed feature violates these principles, it must not be implemented.
The LLM acts as an executor, not a product designer.
Rules:
- Plan before coding
- Respect all constraints in this file and UX_CONTRACT.md
- If instructions conflict, stop and ask
- Do not infer or add features not explicitly defined
- Do not expand scope “for usefulness”
All constraints in this file are locked for the duration of the build.
Changes require:
- explicit acknowledgment
- deliberate decision
- documentation in the decision log
Silent drift is not allowed.