🛡️ PermaGuard

Autonomous On-Chain Privacy Shield Powered by MetaMask Advanced Permissions

Overview

PermaGuard is an autonomous, agent-based privacy protection system for Web3 wallets.
It acts as a user’s personal on-chain privacy sentinel, continuously monitoring wallet activity and proactively defending against privacy leaks—without requiring repeated user approvals.

Using MetaMask Advanced Permissions (ERC-7715) and Smart Accounts, PermaGuard can securely execute pre-approved privacy actions (such as obfuscation swaps, controlled fund routing, or address rotation) on behalf of the user, strictly within user-defined limits.

Think of PermaGuard as a “VPN for your wallet”—but fully on-chain, transparent, revocable, and user-controlled.

Problem

Web3 users unintentionally leak sensitive information every day:

Address linking through repeated swaps and transfers
Transaction pattern fingerprinting
Public exposure of balances and behavioral data
Manual privacy tools that are reactive, complex, and error-prone

Current solutions require constant user intervention, deep technical knowledge, or unsafe unlimited approvals.

Solution

PermaGuard introduces proactive, permissioned, agent-driven privacy protection.

Instead of reacting after exposure, users pre-authorize bounded actions using MetaMask Advanced Permissions, allowing PermaGuard to defend privacy automatically in real time—without ever exceeding consented limits.

How PermaGuard Works

1. Permission-First Onboarding (ERC-7715)

The user connects MetaMask and grants PermaGuard a fine-grained Advanced Permission, such as:

“Allow up to 50 USDC per week for privacy-preserving actions for the next 30 days.”

These permissions are:

Time-bound
Amount-limited
Fully revocable
Enforced on-chain via Smart Accounts

No unlimited approvals. No hidden access.

2. Agentic Architecture (Core Innovation)

PermaGuard uses a hierarchical agent swarm:

🔹 Master Guardian Agent

Holds the user’s primary permission
Enforces global limits and safety policies

🔹 Scout Agent

Monitors wallet activity and exposure signals
Uses indexed on-chain data (via Envio) to detect privacy risks

🔹 Shield Agents (A2A Delegation)

When risk is detected, the Scout Agent re-delegates micro-permissions to specialized agents:

Obfuscation Agent – breaks transaction linkability
Routing Agent – changes fund flow patterns
Rotation Agent – moves assets to ephemeral addresses

This agent-to-agent (A2A) permission flow demonstrates a real-world use of Advanced Permissions beyond simple automation, directly aligning with hackathon goals.

3. Autonomous Privacy Actions (No Re-Signing)

Once permissions are granted:

PermaGuard executes defensive transactions automatically
No repeated wallet pop-ups
No user intervention mid-flow
Every action remains auditable and constrained

Example:

A burst of swaps risks address fingerprinting → PermaGuard performs a small obfuscation swap within allowed limits.

4. Transparency & Control

The user dashboard shows:

Active permissions and remaining allowance
All executed actions (on-chain)
Real-time privacy status
One-click revoke / emergency stop

Revoking permissions immediately halts all activity.

Envio Integration (Best Use of Envio)

PermaGuard uses Envio HyperSync to index and query:

User transaction events
Permission grants, redemptions, and revocations
Agent-executed transactions
Balance and exposure patterns

Envio enables:

Real-time risk detection
Fast GraphQL queries for the UI
A transparent, auditable action timeline for users and judges

The demo explicitly shows Envio queries powering risk detection and monitoring.

Why PermaGuard Is Unique

Proactive, not reactive privacy protection
First agent-based privacy mesh using ERC-7715
Real A2A permission re-delegation
Strong focus on user consent, safety, and revocability
Combines Account Abstraction + Privacy + Agentic Systems

Most Web3 automation focuses on yield or trading.
PermaGuard focuses on protecting the user.

PermaGuard

视频

技术栈

描述