Use this page when an agent, wallet UI, MCP tool, or Flowise node is about to sign typed data, approve a spender, send calldata, or pay an x402 quote and needs one allow/manual-review/deny packet before value moves.
node examples/wallet-signing-safety-pack/check-wallet-signing-safety-pack.mjs
ROUTE_ID=wallet-signing-safety-pack MAX_USDC=0.02 node first-payment-client.mjs
Quote-only mode does not use private keys, sign, pay, broadcast, register, or do KYC.
Expected quote:
$0.01818000 atomic USDCeip155:84530x1f0130669ca6fd02e025a984cc038f139df19a2fAfter a real buyer-owned x402 payment, the paid JSON includes decision, riskLevel, riskFlags, paymentPolicyDecision, paymentPolicyInputs, agentEnforcementPayload, receiptEvidence, buyerActionChecklist, purchaseResultCard, and repeatPurchaseContract.
agentEnforcementPayload is the reusable part: copy it into MCP, Flowise, or wallet runtime guard examples before the next sign/pay action.
git clone https://github.com/go165/gpt55-x402-gateway.git && cd gpt55-x402-gateway
npm install
npm run first-payment:root
ROUTE_ID=wallet-signing-safety-pack MAX_USDC=0.02 node first-payment-client.mjs
PAY_REAL_X402=1 ROUTE_ID=wallet-signing-safety-pack MAX_USDC=0.02 EVM_PRIVATE_KEY=0x... node first-payment-client.mjs
The service never receives a private key. The buyer client creates X-PAYMENT locally only after amount, network, payTo, and spend-cap checks pass.
Buy again for new typed data, a new spender, a new Permit or Permit2 request, a new calldata approval, a new wallet runtime policy, or a changed x402 prepay policy.