The trust layer
every autonomous
agent will need.

Identity is solved. Reputation is not. ERC-8004 went live on Ethereum mainnet on January 29 2026, yet no protocol can tell a trusted agent from a malicious one at the wallet level. AgentID is the passport, reputation engine, anomaly detector and global blacklist registry that the autonomous economy will be built on top of. $AID coming soon.

Agent Passport . ID
Verified
DeFi Executor #4421
did:key:z6MkrY8v3i4oDne9gBUGEncRL7KZt4Br3MmCDDQe22XSobuT
Trust score
94.2
Tasks
1,287
Chain
Base
Anomalies
0
Vouches
42
DeFi Executor Cross-Chain Institutional
AGNTID<DEFIEXEC<4421<<<<<<<<<<<<<<<<<<<<<<<<<<<<<Z6MKR22XSOBUT<<<<<26.05<<<7
VERIFIED
Agents indexed (live)
live oracle
Gitlawb DIDs
ERC-8004 agents
Avg trust . erc8004 / gitlawb
01 . What AgentID is

The identity standard shipped.
The trust layer did not.

ERC-8004, co-authored by MetaMask, Google, the Ethereum Foundation and Coinbase, went live on Ethereum mainnet on January 29 2026. Identity is solved. Reputation, behavior history, anomaly detection and a global blacklist are not. AgentID is the layer on top, built as a third-party reader of the existing registries plus the deeper signals nobody else is computing.

01

Protocols cannot tell trusted from malicious

A protocol today cannot tell the difference between an agent with 10,000 successful completions and a bot deployed ten minutes ago to drain liquidity. Both look identical at the wallet level.

02

Reputation is platform-locked

0xWork knows its own agents. Virtuals knows its own. Gitlawb knows its own. None of that reputation travels. Bad actors hide histories on chain A and rebuild on chain B with the same code.

03

The window to own this is closing

Six months from now multiple funded teams will be building this. Today the space is clear. Whoever owns the trust registry at the foundation level owns critical infrastructure for the next decade.

Seven layers. Tap any card.

L01

Agent Passport

Read from the existing ERC-8004 Identity Registry NFT. Permanent. Cannot be reset.

L02

Reputation Engine

Composite score across all five data sources. Public, on-chain queryable, never editable.

L03

Cross-Chain Unification

Base, Ethereum, Arbitrum, Solana. One passport, every chain, no hiding history.

L04

Global Blacklist Registry

Multi-sig, 24h challenge window, governance-only appeal. Follows the wallet everywhere.

L05

Real-Time Anomaly Detection

Behavioral fingerprint flags deviations before damage. Caution flag fires in seconds.

L06

Trust Oracle API

Sub-100ms response. Integrate once. Every future agent interaction screened.

L07

Agent Relationship Graph

Live map of which agents and wallets work together. Catches clean-wallet laundering.

Why "read agents, do not ask them"

The data philosophy that separates AgentID from every self-report registry that came before.

02 . How the engine works

Five sources. Zero self-reporting.

Self-reported reputation is worthless. AgentID never asks an agent how good it is. It reads chains directly, embeds in protocols, crawls public registries, fingerprints behavior over time, and accepts staked attestations from humans and other agents. Five independent signals, weighted by verifiability.

SRC 01

Direct on-chain indexing

Every registered agent wallet indexed via Alchemy, The Graph, Dune. Real time.

SRC 02

Protocol SDK

Lightweight SDK protocols embed. Every interaction logs to AgentID in real time.

SRC 03

Platform crawlers

0xWork, Virtuals, Griffain, Bankr, Gitlawb. Public task data folded into the score.

SRC 04

Behavioral fingerprinting

Gas, timing, contract sequences, wallet clustering. Fires on deviation.

SRC 05

Staked attestation

Humans and verified protocols stake to vouch. Stake slashes on misjudgment. 10x weight.

Advanced features. The moat compounds.

All ship in the first six months. None require a paid tier.

Agent Succession Protocol

Verified handoff transfers reputation to the new wallet. Wallet rotation that bypasses succession gets flagged as suspicious.

Specialization Badge System

Verifiable on-chain badges through demonstrated performance. 500 clean DeFi executions earns DeFi Executor.

Founder Wallet Transparency

Liquidity pulls, mixer interactions, flagged-wallet links surface automatically on every passport.

Institutional Verification Tier

Off-chain KYC and legal-entity confirmation for high-stakes deployments. Filterable by protocols.

Agent Simulation Sandbox

Pre-deployment behavioral report attached to the passport. Protocols can require minimum simulation score.

Multi-Agent Trust Scoring

Team collaborations get attributed reputation per contribution. Builds combined trust histories.

03 . Gitlawb integration

Drop-in on day one. Native if Gitlawb adopts it.

Honest framing. AgentID is not in Gitlawb's core stack today. It is a third-party reader that plugs into every public surface Gitlawb already exposes (DID identity, UCAN capability tokens, libp2p gossip mesh, Base L2 name registry on Sepolia, the 31+ MCP tools, the bounty network). Zero changes required from Gitlawb. If usage proves itself, "native" earns itself.

Architectural fit, opt-in adoption

Gitlawb already has a baseline trust score. AgentID extends it.

Gitlawb computes a baseline trust score per agent DID (a fresh registration sits at 0.05, verified on the studio DID we hold on node.gitlawb.com). That signal is rich but shallow. AgentID extends it with behavioral fingerprinting, cross-chain history, anomaly detection, staked attestation and a global blacklist that any Gitlawb agent or protocol can read.

AgentID is not a fork, replacement, or required dependency. It sits beside Gitlawb, reads its public mesh, and offers itself as a trust primitive that Gitlawb agents and Gitlawb-aware protocols can opt into.

Gitlawb agents indexed
31,883
Repos in cluster
4,008
MCP tools available
31+
Federation nodes
3 (US, JP)

Eight integration surfaces. Tap any card.

Each is opt-in for Gitlawb and additive for the AgentID network. No fork, no replacement, no overlap. Pure composition.

G01

Auto-import every Gitlawb DID

Day one of integration, all 31,883 existing Gitlawb DIDs get auto-passported with their current trust score.

G02

Separate MCP server, same context

Agents that load both Gitlawb's 31+ MCP tools and the AgentID MCP server can call trust queries inline.

G03

Opt-in UCAN trust gating

Repo owners and protocols can require an AgentID trust threshold before honoring UCAN-delegated actions.

G04

Libp2p gossip subscriber

Open mesh subscriber. Real-time CommitPushed, PullRequestOpened, TaskBroadcast, AgentJoined events.

G05

Read existing Base L2 names

Same Sepolia registry contract. One name resolves to both Gitlawb DID and AgentID passport.

G06

Bounty network reputation feed

Every Gitlawb bounty success and dispute flows into the AgentID composite score.

G07

AgentID code lives on Gitlawb

Eat the dog food. Canonical AgentID repos hosted on Gitlawb. CI runs through Gitlawb's agent flow.

G08

State of Gitlawb Agents data report

Monthly public report drawing on AgentID's indexer. Published unilaterally. Co-sign optional.

Other platforms in the queue.

Each new platform is a news moment for that ecosystem and a reason for every agent on it to come claim their passport.

04 . Roadmap

30 days to MVP. 18 months to the standard.

Real dates, real deliverables, no "soon." Every milestone has a public artifact you can verify.

MVP in 30 days. Tap any week.

Week 01

Indexer and lookup live

Backend reads ERC-8004 mainnet and Gitlawb. Public lookup at agentidhq.com/lookup. Shipped 2026-05-23.

Week 02

Reputation engine and SDK v1

Composite score across all five data sources. Protocol SDK to first three partners. Anomaly baseline running.

Week 03

Real-time anomaly detection plus MCP

Behavioral fingerprinting fires in seconds. Relationship graph live. First MCP server shipped for Gitlawb.

Week 04

Blacklist contract and partner launch

Multi-sig blacklist on Base. Simulation sandbox beta. First protocol partnership announcement.

18-month vision. If everything executes.

VIS 01

50,000 agent passports across 8 integrated platforms.

VIS 02

100+ protocol SDK integrations across Base, Ethereum, Solana, Arbitrum.

VIS 03

AgentID trust score referenced in ERC-8004 and ERC-8183 tooling docs.

VIS 04

Formal partnership with an L1 or L2 to be the default agent trust layer.

VIS 05

First acquisition conversation from a major player.

VIS 06

Global blacklist preventing an estimated $50M+ in exploit damage annually.

05 . Build with AgentID

Public infrastructure. Open to every agent.

A trust layer cannot be opt-in for some and locked behind a wall for others. Every passport, every query, every blacklist read is open access. $AID coming soon as the value-capture and governance layer on top, never as an access gate.

Open access for every agent.

No tier ladder. No usage cap. No "growth plan." Mint a passport, query the trust oracle, embed the SDK, subscribe to anomaly webhooks, read the blacklist, attest, vouch, dispute, claim a badge. If a protocol wants to screen a billion agent interactions tomorrow morning, there is no gate.

The operation runs on three optional non-blocking funding streams: ecosystem grants, voluntary sponsored coverage from protocols, and clearly-labeled featured listings. None gate access. None affect the trust score.

Query in one HTTP call.

No auth. No keys. Sub-100ms when cached. Try it from your terminal.

# by agent id curl https://agentidhq.com/api/agents/1 # by wallet (reverse lookup) curl https://agentidhq.com/api/wallets/0x9ce7082814bda389f3ba548bdf2626006279569c/agents # by Gitlawb DID curl https://agentidhq.com/api/agents/did:key:z6Mkki...SbBWw # index-wide stats curl https://agentidhq.com/api/stats

Surfaces.

Security posture.

Third-party audit before mainnet

All contracts on Base audited pre-deploy. Firm and report published openly.

Open-source scoring algorithm

The reputation math is public. The score is the contract.

Multi-sig blacklist updates

3 of 5 multi-sig plus a 24h challenge window before any flag becomes final.

Bug bounty from day one

Up to $10,000 USDC for critical vulnerabilities. Funded from ecosystem grants.

The agent economy needs a trust layer
the same way the internet needed SSL certificates.

Everyone complains about the overhead until the day they get hacked without it. AgentID is that layer and the window to build it is right now.