WaaP vs Coinbase Agentic Wallets

WaaP and Coinbase Agentic Wallets are both purpose-built for AI agents that transact on-chain. The difference is in what happens when your agent needs guardrails.

Coinbase built for full autonomy — agents operate independently with session caps and transaction limits. No human in the loop. WaaP built for supervised autonomy — agents operate independently for routine tasks, but humans stay in the loop for high-risk operations via one-tap Telegram approval. And WaaP uses 2-Party Computation: key shares live in separate enclaves and are never combined. No single entity can move funds alone.

Why Agent Developers Choose WaaP over Coinbase

	WaaP (waap-cli)	Coinbase Agentic Wallets
No single point of failure	Key shares live in separate enclaves and are never reconstructed in the same place. Even if WaaP’s infrastructure is breached, funds can’t move without the operator’s key share.	All key material in Coinbase’s TEE. Single-provider trust. If the TEE is compromised, all wallets are exposed.
Human-in-the-loop	Agent proposes → operator gets a Telegram/email notification → taps “approve” or “deny.” Auto-approve below thresholds. Permission Tokens for scoped autonomy.	Fully autonomous. “No approval needed — set permissions and controls.” Session caps and per-transaction limits only. No notification flow.
Multi-chain	Any EVM chain at runtime, plus Sui and Stellar. Agents transact wherever the opportunity is.	Base-optimized. Gasless trading is Base-only. USDC-native.
Security granularity	Daily spend limits + 2FA thresholds + auto-approve rules + Permission Tokens (address-scoped, chain-specific, time-bounded).	Session spending caps + per-transaction limits. Coarser-grained controls.
Universal accounts	One wallet identity across all dApps and chains.	Per-agent wallets scoped to CDP.
Migration tooling	Account Pregeneration API — bulk-generate agent wallets before switching.	No inbound migration tooling.

Install waap-cli and deploy an agent wallet with the quickstart guide →

How the Architecture Differs

Coinbase: single-provider TEE, fully autonomous


┌─────────────────────────────────┐
│      Coinbase Infrastructure    │
│                                 │
│  ┌───────────────────────────┐  │
│  │     TEE (all key material)│  │
│  │                           │  │
│  │  Agent authenticates      │  │
│  │  → session cap checked    │  │
│  │  → signs autonomously     │  │
│  └───────────────────────────┘  │
│                                 │
│  "No approval needed —          │
│   set permissions and controls" │
└─────────────────────────────────┘

All key material lives within Coinbase’s TEE. The agent authenticates via session keys and transacts autonomously within session caps. No human is notified about individual transactions.

WaaP: split custody, supervised autonomy


┌──────────────────┐    ┌──────────────────┐
│ Operator's Device│    │ WaaP Infrastructure│
│                  │    │                    │
│ ┌──────────────┐ │    │  ┌──────────────┐ │
│ │  Sovereign   │ │    │  │   Security   │ │
│ │    Share     │ │    │  │    Share     │ │
│ │ (auth-gated) │ │    │  │   (in TEE)   │ │
│ └──────────────┘ │    │  └──────────────┘ │
└──────────────────┘    └──────────────────┘
         │                        │
         └───── 2PC sign ────────┘
      (cooperate without combining)

  Agent proposes → operator approves
  on Telegram → protocol enforces

One key share is on the operator’s device. The other is in WaaP’s TEE. They cooperate to produce a signature without the full key ever existing in one place. For high-value transactions, the operator gets a notification and taps to approve. For a full breakdown, see Architecture & Security Model.

Planned upgrade: WaaP’s Security Share will be distributed across the Ika Network (decentralized validator set), further reducing the trust assumption on any single piece of infrastructure.

Autonomy vs. Supervised Autonomy

This is the fundamental design choice that separates the two products.

Coinbase: full autonomy

Coinbase built Agentic Wallets for agents that operate without human intervention. From their launch: “Your agent detects a better yield opportunity at 3am? It rebalances automatically, no approval needed because you’ve already set permissions and controls.”

This is a feature for developers who want maximum agent speed and zero human latency. The trade-off: when something goes wrong — a compromised prompt, a manipulated data feed, an adversarial smart contract — there is no human checkpoint before the transaction executes.

WaaP: supervised autonomy

WaaP is built around the idea that agents should be independent for routine tasks, but humans should stay in the loop for high-risk operations.

Low-risk operations (below daily spend limit, whitelisted addresses): auto-approve, no human needed.
High-risk operations (above threshold, new address, large transaction): one-tap Telegram/email approval.
Permission Tokens: scoped, time-bounded (max 2 hours) autonomy for specific operations.

Agents propose, humans approve, protocol enforces.

The trade-off: human-in-the-loop adds latency for high-risk operations. For time-sensitive arbitrage, full autonomy is faster. For most agent operations — trading, farming, rebalancing — a few seconds of approval latency is worth the safety.

Chain Support

Coinbase: Base-optimized

Agentic Wallets are optimized for Base — Coinbase’s L2. Gasless trading is Base-only. USDC-native. If your agent operates primarily on Base, this is an advantage. If your agent needs to transact across chains — Ethereum mainnet, Arbitrum, Optimism, Polygon, Sui — the Base optimization becomes a constraint.

WaaP: multi-chain by default

WaaP works on any EVM chain at runtime (via EIP-3085), plus Sui and Stellar. No chain lock-in. Agents transact wherever the opportunity is.

x402: Coinbase’s Strongest Differentiator

Coinbase’s x402 protocol enables machine-to-machine payments — an agent requests a paid resource, gets an HTTP 402 response with payment instructions, signs a stablecoin payment, and gets the resource back. One round-trip.

The numbers are real: 50M+ transactions, with Stripe, Cloudflare, Google, and AWS in the coalition.

WaaP does not support x402 yet. Here’s how to think about it:

	x402	WaaP
Job	Agent pays for services (APIs, data, other agents)	Agent earns on-chain (trades, farms, rebalances)
Transaction type	Agent-to-service micropayments	Agent-to-chain value transactions

An agent that only earns (trades, farms, rebalances) doesn’t need x402 today. An agent that also needs to pay for API calls, data feeds, or other agent services will benefit from x402 support.

x402 is wallet-agnostic — any wallet that can sign ERC-20 permits can be an x402 client. WaaP with x402 client support would mean your agent earns and pays from one wallet, under one custody model, with one policy engine. We’re evaluating the timeline.

AgentKit: Not a Competitor, an Opportunity

Coinbase AgentKit is an open-source agent framework — and it’s wallet-agnostic. It already supports CDP wallets, Privy, and viem as wallet providers.

WaaP can become a wallet provider within AgentKit. Same AgentKit skills, same framework, same agent code — but with 2PC custody and human-in-the-loop oversight. This integration is planned.

Full Feature Comparison

	WaaP (waap-cli)	Coinbase Agentic Wallets
Pricing	Free now, revenue share later	CDP infrastructure pricing (not fully public)
Custody	2PC — shares in separate enclaves, never reconstructed together	Single-provider TEE
Human oversight	One-tap Telegram/email/SMS approval + auto-approve	Fully autonomous. Session caps and transaction limits only.
Security controls	Daily spend limits, 2FA, auto-approve, Permission Tokens (address/chain/time-scoped)	Session caps, per-transaction limits, KYT/OFAC screening
Chain support	EVM (all chains, runtime-configurable), Sui, Stellar. Solana planned Q2 2026.	Base-optimized. Gasless trading on Base only.
Machine payments	Not yet supported (planned)	x402 protocol. 50M+ transactions.
Wallet scope	Universal accounts across all dApps	Per-agent wallets scoped to CDP
Framework support	Any framework. AgentKit integration planned.	AgentKit (Coinbase’s own framework). 50+ action providers.
Compliance	4 independent security audits	KYT screening, OFAC sanctions blocking built in
Migration tooling	Account Pregeneration API	None

Where Coinbase Is Ahead

We believe in being straightforward:

x402 ecosystem. 50M+ transactions. Stripe, Cloudflare, Google, AWS. Machine-to-machine payments are a job WaaP doesn’t serve yet.
Developer speed. npx awal gets an agent a funded wallet in under 2 minutes. Plug-and-play skills abstract on-chain complexity.
AgentKit distribution. The most popular agent framework. Being the default wallet gives Coinbase built-in distribution.
Compliance built-in. KYT screening and OFAC sanctions blocking out of the box.
Base ecosystem. Gasless trading, USDC-native, tight integration with Coinbase’s broader product suite.
Full autonomy (for some use cases). No human latency. If your agent needs to execute instantly without waiting for approval, Coinbase’s model is faster by design.

Ready to Get Started?

Contact us → for migration planning, revenue share terms, or enterprise support.

Run an agent in 5 minutes — Install waap-cli with the quickstart guide.
Read the docs — Full CLI reference and agent patterns.
Try the Playground — Build a wallet in the Playground in under 5 minutes.