Seashail

Agent-native trading infrastructure

for crypto

A self-hosted binary that lets AI agents trade across DeFi without ever seeing your private keys.

$curl -fsSL https://seashail.dev/install | sh

01

The Key Problem

When you give an AI agent your private key, you give it unlimited access to every asset in your wallet. One prompt injection, one compromised plugin, one hallucination — and your funds are gone.

The OpenClaw incident proved it: 341 malicious skills discovered stealing private keys, prompt injection attacks draining wallets, and a single CVE enabling remote code execution with operator-level access.

The core failure was architectural. Agents held keys in plaintext with no permission boundaries.

A security boundary, not a wrapper

Seashail sits between the agent and your keys. The agent talks MCP. The binary handles everything else.

01.Shamir secret sharing

Keys split into 2-of-3 shares at creation. No single point of compromise. Key bio shares stored separately.

02.Policy engine

Every transaction passes through configurable rules before signing. Per-transaction limits, daily caps, allowlists.

03.MCP protocol

Agents connect through stdio only. Structured, auditable tool calls. No raw key access, ever.

04.Zeroize on use

Key material decrypted only during signing, then immediately zeroed. No key data persists in memory.

How it works

One binary. No servers. No HTTP. No external dependencies. Everything runs locally on your machine.

AI Agent

Claude Code, Cursor, OpenClaw, any MCP client

MCP Server (stdio)

Structured tool calls, auditable traffic

Policy Engine

Rules, limits, approvals before signing

Encrypted Wallet

Shamir shares, zeroize, AES-256-GCM

Transaction Signer

Sign and broadcast, nothing else

DeFi Protocols

Jupiter, Hyperliquid, 1inch, and more

Full DeFi surface area

One binary, every major protocol. No API keys. No exchange accounts. No KYC.

Spot Trading

Jupiter, 1inch, Uniswap

Swap any token via DEX aggregators.

Perpetuals

Hyperliquid, Jupiter Perps, dYdX, GMX

Leveraged longs and shorts on crypto.

NFTs

Magic Eden, Tensor, Blur

Buy, sell, bid, and manage collections.

Predictions

Polymarket, Drift BET

Trade on real-world event outcomes.

Lending

Aave, Compound, Drift

Supply, borrow, and manage collateral.

Yield

Meteora, Kamino, Pendle

Farm and manage yield positions.

Works with your agent

Seashail exposes an MCP server over stdio. Any agent that speaks MCP can trade.

Claude Code

OpenClaw

Cursor

GitHub Copilot

Windsurf

Cline

Any MCP Client

Security model

Seashail allows rules to protect and what is shared. Read the code. Verify it.

01Encrypted at rest

AES-256-GCM via libsodium. Keys/shares encrypted before touching disk.

02Shamir 2-of-3

No single storage location holds a complete key. Machine, backup, and recovery shares.

03Zeroize

Key material erased from memory immediately after signing. Uses the zeroize crate.

04Policy engine

Per-transaction limits, daily caps, address allowlists. Configurable per wallet.

05Tiered approval

Auto-approve low-risk transactions. Human confirmation above thresholds.

06Session expiry

Passphrase sessions expire automatically. Configurable timeout.

07No secrets in logs

Private keys, shares, and passphrases never appear in logs. Verified by E2E tests.

08Single binary

No dependencies, no sidecars, no runtime extensions. One auditable binary.

Open source. Verifiable.

Apache 2.0

//Full source code on GitHub
//Reproducible builds from source
//Signed release binaries with SHA256
//Open cryptography: no proprietary algorithms
//Community contributions welcome

Start trading in 5 minutes

Install the binary, fund a wallet, connect your agent. That is all it takes.

$curl -fsSL https://seashail.dev/install | sh

https://github.com/seashail/seashail