Namera is a programmable wallet infrastructure that lets agents execute onchain transactions within rules you define. Instead of giving full wallet access, you define permissions upfront and let agents operate within those boundaries.

How do agents access wallets?

Agents don't access your wallet directly. They use session keys — secondary keys with limited permissions — that you issue and control.

Are funds safe if agents can execute transactions?

Yes. Agents can only act within the limits you define — like which contracts they can call, how much they can spend, and how often. They never have unrestricted access to your funds.

What are onchain policies?

Policies are rules attached to a session key that define what an agent is allowed to do. They're enforced directly onchain, so they can't be bypassed or modified by the agent.

What happens if an agent is compromised?

Its access is already restricted by policies. You can revoke the session key instantly without affecting your main wallet or other agents.

Do I need to run infrastructure?

No. Namera is local-first and can run directly in your environment via CLI or MCP server. You don't need to manage backend infrastructure to get started.

How do I integrate Namera?

You can use the SDK for full integration, the CLI for local workflows, or connect directly to agents through the MCP server. It's designed to plug into existing developer tools and agent environments.

What is the MCP server?

The MCP server lets AI agents connect to Namera and execute actions safely. It acts as the bridge between your agent and the wallet, enforcing permissions during execution.

Can I use multiple agents with different permissions?

Yes. You can create multiple session keys, each with its own policies, and assign them to different agents or roles.

Which chains does Namera support?

Namera supports multi-chain execution through a unified interface, so you can operate across networks without managing separate wallets.

Sign Typed Data

Typed data signatures follow EIP-712: a structured payload with a domain separator that prevents replay across chains and contracts. With smart accounts, the signature is produced by the account client, but verification must use ERC-1271 on deployed accounts and ERC-6492 for undeployed accounts. The recommended approach is to always verify with ERC-6492 so the same flow works before and after deployment.

Understanding EIP-712 with smart accounts

EIP-712 signs a deterministic hash of { domain, types, primaryType, message }. The domain carries context like chainId and verifyingContract so the signature is only valid for that specific protocol or contract. The types section defines the shape of the message, and primaryType selects the top-level type to encode.

Smart accounts are contracts, not EOAs, so verification is not ecrecover + address match. Use ERC-6492 to verify the signature against the smart account address. If the account is deployed, ERC-6492 behaves like ERC-1271. If it is not deployed yet, ERC-6492 wraps deployment metadata so the signature can still be validated.

Usage

index.ts

import { verifyEIP6492Signature } from "@namera-ai/sdk";
import { hashTypedData } from "viem";
import { publicClient, smartAccountClient } from "./clients";
import { typedData } from "./typed-data";

const signature = await smartAccountClient.signTypedData(typedData);

const isVerified = await verifyEIP6492Signature({
  client: publicClient,
  hash: hashTypedData(typedData),
  signature,
  signer: smartAccountClient.account.address,
});

console.log(isVerified); // true

Examples

Verify a counterfactual account

ERC-6492 allows the verifier to validate a signature even if the account is not deployed yet. Use the smart account address returned by the client and the typed data hash.

const isVerified = await verifyEIP6492Signature({
  client: publicClient,
  hash: hashTypedData(typedData),
  signature,
  signer: smartAccountClient.account.address,
});

Define a protocol-specific typed payload

The domain is where you bind the signature to a chain and contract. The example below is a minimal Permit-style shape that a token contract could verify on-chain.

const permitDomain = {
  chainId: 1,
  name: "USD Coin",
  verifyingContract: "0xA0b86991c6218b36c1d19d4a2e9eb0ce3606eb48",
  version: "2",
} as const;

const permitTypes = {
  Permit: [
    { name: "owner", type: "address" },
    { name: "spender", type: "address" },
    { name: "value", type: "uint256" },
    { name: "nonce", type: "uint256" },
    { name: "deadline", type: "uint256" },
  ],
} as const;

const permitData = {
  domain: permitDomain,
  message: {
    owner: smartAccountClient.account.address,
    spender: "0x1111111254EEB25477B68fb85Ed929f73A960582",
    value: 1n,
    nonce: 0n,
    deadline: 1700000000n,
  },
  primaryType: "Permit",
  types: permitTypes,
} as const;