STEP 01

Sign Intent

Owner signs a human-readable intent off-chain. The chain only sees a verified instruction.

WHAT IT IS
Typed-data signature (EIP-712) over intent fields (target/value/data/deadline/nonce).
WHY IT MATTERS
No “blind sign”. Wallet shows what is being approved, reducing phishing surface.
WHAT YOU GET
Deterministic authorization: replay-protected, time-bounded, policy-scoped.
SIGN INTENT — operator notes
Back Spec
INTENT FIELDS
  • • policyId — which policy is used
  • • target/value/data — the actual call
  • • deadline — time window
  • • nonce — single-use replay protection
BEST PRACTICES
  • • keep deadline short
  • • never reuse nonce
  • • hash calldata, don’t “approve unlimited”
  • • bind domain to chain + contract
Read Spec View GitHub CI Logs