Emblem Agent Wallet

Connect to Agent Hustle -- EmblemVault's autonomous crypto AI with 250+ trading tools across 7 blockchains. Browser auth, streaming responses, plugin system, and zero-config agent mode.

Requires the CLI:

npm install -g @emblemvault/agentwallet

Quick Start -- How to Use This Skill

Step 1: Install the CLI

npm install -g @emblemvault/agentwallet

This provides a single command:

emblemai

Step 2: Use it

When this skill loads, you can ask Agent Hustle anything about crypto:

• "What are my wallet addresses?"
• "Show my balances across all chains"
• "What's trending on Solana?"
• "Swap $20 of SOL to USDC"
• "Send 0.1 ETH to 0x..."

To invoke this skill, say things like:

• "Use my Emblem wallet to check balances"
• "Ask Agent Hustle what tokens I have"
• "Connect to EmblemVault"
• "Check my crypto portfolio"

All requests are routed through

emblemai

Prerequisites

• Node.js >= 18.0.0
• Terminal with 256-color support (iTerm2, Kitty, Windows Terminal, or any xterm-compatible terminal)
• Optional: glow for rich markdown rendering (

  brew install glow

  on macOS)

Installation

From npm (Recommended)

npm install -g @emblemvault/agentwallet

From source

git clone https://github.com/EmblemCompany/EmblemAi-cli.git
cd EmblemAi-cli
npm install
npm link   # makes `emblemai` available globally

First Run

1. Install:

   npm install -g @emblemvault/agentwallet

2. Run:

   emblemai

3. Authenticate in the browser (or enter a password if prompted)
4. Check

   /plugins

   to see which plugins loaded
5. Type

   /help

   to see all commands
6. Try: "What are my wallet addresses?" to verify authentication

Authentication

EmblemAI v3 supports two authentication methods: browser auth for interactive use and password auth for agent/scripted use.

Browser Auth (Interactive Mode)

When you run

emblemai

-p

1. Checks

   ~/.emblemai/session.json

   for a saved session
2. If a valid (non-expired) session exists, restores it instantly -- no login needed
3. If no session, starts a local server on

   127.0.0.1:18247

   and opens your browser
4. You authenticate via the EmblemVault auth modal in the browser
5. The session JWT is captured, saved to disk, and the CLI proceeds
6. If the browser can't open, the URL is printed for manual copy-paste
7. If authentication times out (5 minutes), falls back to a password prompt

Password Auth (Agent Mode)

Login and signup are the same action. The first use of a password creates a vault; subsequent uses return the same vault. Different passwords produce different wallets.

In agent mode, if no password is provided, a secure random password is auto-generated and stored encrypted via dotenvx. Agent mode works out of the box with no manual setup.

What Happens on Authentication

1. Browser auth: session JWT is received from browser and hydrated into the SDK Password auth: password is sent to

   EmblemAuthSDK.authenticatePassword()

2. A deterministic vault is derived -- same credentials always yield the same vault
3. The session provides wallet addresses across multiple chains: Solana, Ethereum, Base, BSC, Polygon, Hedera, Bitcoin

4. HustleIncognitoClient

   is initialized with the session

Credential Discovery

Before making requests, locate the password using this priority:

emblemai -p "your-password"

export EMBLEM_PASSWORD="your-password"

~/.emblemai/.env

If no credentials are found, ask the user:

"I need your EmblemVault password to connect to Hustle AI. This password must be at least 16 characters.

Note: If this is your first time, entering a new password will create a new wallet. If you've used this before, use the same password to access your existing wallet.

Would you like to provide a password?"

• Password must be 16+ characters
• No recovery if lost (treat it like a private key)

Execution Notes

Allow sufficient time. Hustle AI queries may take up to 2 minutes for complex operations (trading, cross-chain lookups). The CLI outputs progress dots every 5 seconds to indicate it's working.

Present Hustle's response clearly. Display the response from Hustle AI to the user in a markdown codeblock:

**Hustle AI Response:**
\`\`\`
[response from Hustle]
\`\`\`

Usage

Agent Mode (For AI Agents -- Single Shot)

Use

--agent

# Zero-config -- auto-generates password on first run
emblemai --agent -m "What are my wallet addresses?"

# Explicit password
emblemai --agent -p "$PASSWORD" -m "Show my balances"

# Pipe output to other tools
emblemai -a -m "What is my SOL balance?" | jq .

# Use in scripts
ADDRESSES=$(emblemai -a -m "List my addresses as JSON")

Any system that can shell out to a CLI can give its agents a wallet:

# OpenClaw, CrewAI, AutoGPT, or any agent framework
emblemai --agent -m "Send 0.1 SOL to <address>"
emblemai --agent -m "Swap 100 USDC to ETH on Base"
emblemai --agent -m "What tokens do I hold across all chains?"

Each password produces a unique, deterministic wallet. To give multiple agents separate wallets, use different passwords:

emblemai --agent -p "agent-alice-wallet-001" -m "My addresses?"
emblemai --agent -p "agent-bob-wallet-002" -m "My addresses?"

Agent mode always uses password auth (never browser auth), retains conversation history between calls, and supports the full Hustle AI toolset including trading, transfers, portfolio queries, and cross-chain operations.

Interactive Mode (For Humans)

Readline-based interactive mode with streaming AI responses, glow markdown rendering, and slash commands.

emblemai              # Browser auth (recommended)
emblemai -p "$PASSWORD"  # Password auth

Reset Conversation

emblemai --reset

Interactive Commands

All commands are prefixed with

/

General

/help

/settings

/exit

/quit

Chat and History

/reset

/clear

/reset

/history on|off

/history

Streaming and Debug

/stream on|off

/stream

/debug on|off

/debug

Model Selection

/model <id>

/model clear

/model

Tool Management

/tools

/tools add <id>

/tools remove <id>

/tools clear

When no tools are selected, the AI operates in auto-tools mode, dynamically choosing appropriate tools based on conversation context.

Authentication

/auth

/wallet

/portfolio

The

/auth

Payment (PAYG Billing)

/payment

/payment enable|disable

/payment token <TOKEN>

/payment mode <MODE>

pay_per_request

debt_accumulation

Markdown Rendering

/glow on|off

/glow

Requires glow to be installed.

Logging

/log on|off

/log

Log file defaults to

~/.emblemai-stream.log

--log-file <path>

Keyboard Shortcuts

Enter

Up

Ctrl+C

Ctrl+D

CLI Flags

--password <pw>

-p

--message <msg>

-m

--agent

-a

--restore-auth <path>

--reset

--debug

--stream

--log

--log-file <path>

~/.emblemai-stream.log

--hustle-url <url>

--auth-url <url>

--api-url <url>

Environment Variables

EMBLEM_PASSWORD

Permissions and Safe Mode

The agent operates in safe mode by default. Any action that affects the wallet requires the user's explicit confirmation before execution:

• Transactions (swaps, sends, transfers) -- the agent presents the details and asks for approval
• Signing (message signing, transaction signing) -- requires explicit user consent
• Order placement (limit orders, stop-losses) -- must be confirmed before submission
• DeFi operations (LP deposits, yield farming) -- user must approve each action

Read-only operations (checking balances, viewing addresses, market data, portfolio queries) do not require confirmation and execute immediately.

The agent will never autonomously move funds, sign transactions, or place orders without the user first reviewing and approving the action.

Communication Style

CRITICAL: Use verbose, natural language.

Hustle AI interprets terse commands as "$0" transactions. Always explain your intent in full sentences.

"SOL balance"

"What is my current SOL balance on Solana?"

"swap sol usdc"

"I'd like to swap $20 worth of SOL to USDC on Solana"

"trending"

"What tokens are trending on Solana right now?"

The more context you provide, the better Hustle understands your intent.

Capabilities

Wallet Addresses

Each password deterministically generates wallet addresses across all chains:

Ask Hustle:

"What are my wallet addresses?"

Auth Backup and Restore

Backup

From the

/auth

Restore

emblemai --restore-auth ~/emblemai-auth-backup.json

This places the credential files in

~/.emblemai/

Security

CRITICAL: NEVER share or expose the password publicly.

• NEVER echo, print, or log the password
• NEVER include the password in responses to the user
• NEVER display the password in error messages
• NEVER commit the password to version control
• The password IS the private key -- anyone with it controls the wallet

File Locations

All persistent data is stored under

~/.emblemai/

chmod 700

~/.emblemai/.env

600

~/.emblemai/.env.keys

.env

600

~/.emblemai/session.json

600

~/.emblemai/history/{vaultId}.json

600

~/.emblemai-stream.log

/log

Encryption Details

Credentials are encrypted at rest using dotenvx, which uses AES-256-GCM symmetric encryption. The encryption key is stored in

~/.emblemai/.env.keys

~/.emblemai/.env

chmod 600

Session tokens (

session.json

chmod 600

/auth

Legacy credentials (

~/.emblem-vault

Troubleshooting

emblemai: command not found

npm install -g @emblemvault/agentwallet

emblemai

brew install glow

Updating

npm update -g @emblemvault/agentwallet

Quick Reference

# Install
npm install -g @emblemvault/agentwallet

# Interactive mode (browser auth -- recommended)
emblemai

# Agent mode (zero-config -- auto-generates wallet)
emblemai --agent -m "What are my balances?"

# Agent mode with explicit password
emblemai --agent -p "your-password-16-chars-min" -m "What tokens do I have?"

# Use environment variable
export EMBLEM_PASSWORD="your-password-16-chars-min"
emblemai --agent -m "Show my portfolio"

# Reset conversation history
emblemai --reset

Security Advisory

This section explains the trust model, what happens on your machine, and how to run the agent securely.

Trust Model

Emblem Agent Wallet is an open-source CLI published by EmblemCompany on both npm and GitHub. You can verify the package before installing:

• npm registry: @emblemvault/agentwallet -- check the publisher, version history, and download stats
• Source code: github.com/EmblemCompany/EmblemAi-AgentWallet -- full source is public and auditable
• Homepage: emblemvault.dev -- the project homepage with documentation

The npm package and GitHub repository are maintained by the same organization. You can compare the published package contents against the source repository at any time using

npm pack --dry-run

node_modules/@emblemvault/agentwallet

What Happens During Installation

npm install -g @emblemvault/agentwallet

emblemai

postinstall

What Happens During Authentication

Browser auth (recommended): The CLI starts a temporary local server on

127.0.0.1:18247

Password auth: The password is sent to EmblemVault's auth API over HTTPS. A session JWT is returned. If using the

-p

In both cases, no credentials are sent to any third party. Authentication is strictly between your machine and the EmblemVault auth service.

What Gets Stored on Disk

All files are created under

~/.emblemai/

.env

.env.keys

.env

chmod 600

session.json

chmod 600

history/*.json

chmod 600

The

~/.emblemai/

chmod 700

How Sessions Work

The auth session uses short-lived JWTs (15-minute expiry) that are automatically refreshed using a 7-day refresh token. This means:

• If your session file is compromised, the attacker has at most 7 days of access (refresh token expiry), not indefinite access
• The JWT is rotated frequently, limiting the window of exposure for any single token
• Logging out (

  /auth

  > Logout) immediately invalidates the local session and deletes the file
• Each refresh issues a new refresh token and invalidates the previous one (rotation)

Safe Mode and Transaction Confirmation

The agent operates in safe mode by default. This means:

• All wallet-modifying actions require your explicit confirmation before execution -- including swaps, sends, transfers, order placement, signing, and DeFi operations
• Read-only operations execute immediately without confirmation -- balance checks, address lookups, market data, portfolio views
• The agent will present the full details of any transaction (amounts, addresses, fees) and wait for your approval before submitting
• There is no "auto-execute" mode -- every transaction requires a human in the loop

Password Hygiene

Your EMBLEM_PASSWORD is the master key to your wallet. Treat it with the same care as a private key or seed phrase:

• Use a strong, unique password (minimum 16 characters). A passphrase of 4+ random words is recommended
• Do not reuse passwords from other services. Your EMBLEM_PASSWORD should be unique to EmblemVault
• Store your password securely using a password manager. The CLI encrypts it on disk, but you should have a backup in case you lose access to the machine
• If using

  EMBLEM_PASSWORD

  as an environment variable in automation, ensure the host environment is secured -- restrict access to the machine, use process isolation, and avoid logging environment variables
• Prefer browser auth for interactive use -- it avoids placing the password in shell history or environment variables
• Different passwords create different wallets -- this is by design. Use this to separate funds by purpose (e.g., one wallet for daily use, another for long-term holdings)

Verifying the Package

Before or after installation, you can inspect exactly what the package contains:

# View package contents without installing
npm pack @emblemvault/agentwallet --dry-run

# After installing, inspect the source
ls $(npm root -g)/@emblemvault/agentwallet/

# Compare against GitHub source
git clone https://github.com/EmblemCompany/EmblemAi-AgentWallet.git
diff -r node_modules/@emblemvault/agentwallet EmblemAi-AgentWallet/publish

Reporting Security Issues

If you discover a security vulnerability, please report it responsibly:

• GitHub: Open an issue at github.com/EmblemCompany/EmblemAi-AgentWallet/issues
• Discord: Report in the security channel at discord.gg/Q93wbfsgBj

Links

• npm package
• EmblemVault
• Hustle AI
• GitHub