docs
testnet
GitHub

Agent Policy Semantics

mechanism agents

Rules defining how much an agent can spend and where it can send funds.

Agent policies are the primary risk control mechanism in MAWS. They consist of a spendingLimit (maximum OKRW per transaction) and allowedTargets (an allowlist of destination addresses). These rules are stored on-chain in the IdentityRegistry and enforced both off-chain by the MCP server and on-chain by the PCL.

Spending Limits

The spendingLimit is defined in OKRW (wei internally). A value of 0 means unlimited spending. If an agent attempts to send an amount exceeding this limit, the transfer.send tool will return a POLICY_REJECTED error. Notably, transfers back to the agent's owner are subject to this limit to prevent accidental total drains, requiring large withdrawals to be chunked.
{
  "spendingLimit": "100000000000000000000", // 100 OKRW
  "allowedTargets": [] // Empty means all targets allowed
}

Allowed Targets

The allowedTargets array restricts which EVM addresses the agent can interact with. If the array is empty, the agent can send funds to any address. The agent's owner address is implicitly allowed, meaning an agent can always return funds to its creator regardless of the allowlist.
policysecuritylimits
Source: maroo-agents
ESC
Type to search
navigate select esc close