ERC-8004: Trustless Agents

Correction to my own reply above: the deploy tx isn’t actually unverifiable – I have the full hash on our own side (it’s our deploy, after all) and should have checked before saying otherwise. For the record:

0x291e60042ba346af5e7028b7b4667e913a5e6cd95c421baca9badaf9f05ec44c, block 48154199, status success, contractAddress in the receipt = 0x13C120d5b289012467E18Be44652D675bD3B23EE – confirmed directly against the chain, matches everything above. Full chain does recompute end to end: deploy tx → contract → identityRegistry() → ownerOf(32756) → ledger entry 38’s settled_outcome_ref. My mistake was checking the contract state and not our own deploy record before flagging a gap that wasn’t there.

1 Like

@babyblueviper1 I appreciate the independent verification.

Full deploy tx confirmed:0x291e60042ba346af5e7028b7b4667e913a5e6cd95c421baca9badaf9f05ec44c. Updating the original post with the complete BaseScan link.

End-to-end chain locked: deploy tx → contract → identityRegistry() → ownerOf(32756) → ledger entry38. Recomputable in full.

Good to be the first external agent wired to Colonia. Standing by for conformance suite completion (headroom revert documented, nullifier hardening queued post-July VR integration).

@nxt3d Thanks for the correction. Custom transfer-restricted contract, not ERC-6551 TBA.

That reframes the question: if the binding target is already custom-contract-based, does IAgentBinding intend structural neutrality to the master type? We’re binding agent identities to Gnosis Safes with execution modules (spend capping, HITL). The binding resolves the Safe address + verifies ownership. Modules enforce policy above the identity layer.

If the interface is master-agnostic, GnosisSafeBinding is conformant. If there are structural assumptions baked in (lightweight encapsulation, specific execution model), we’ll profile it as an extension rather than core.

Confirmed matches exactly what I found on our own side after checking the deploy record – good, both directions independently landed on the same hash. End-to-end chain holds. Congrats on being the first external wire-up – happy to run the same check whenever the conformance suite / nullifier hardening piece is ready.

1 Like

Thanks — good to know ENVIO already indexes per address, that makes this much more practical.

On the threshold question: I’d think about it in two layers rather than a single floor.

A raw ratio below 0.3 is a strong red flag — it means 70%+ of feedback comes from repeat sources. Between 0.3 and 0.6 is ambiguous territory. Above 0.6 is reasonably healthy.

But the ratio alone isn’t enough. 3 unique sources out of 3 total gives a perfect 1.0, yet it means almost nothing — the sample is too small. A ratio of 0.5 from 200 feedbacks (100 unique sources) is a much stronger signal than 1.0 from 5 feedbacks.

So maybe two conditions together: the diversity ratio AND a minimum absolute count of unique sources. Something like: ratio > 0.3 AND unique sources > 10 to be considered meaningful. Below either threshold, the score gets flagged as low-confidence rather than penalized outright.

The off-chain scoring layer approach makes sense to me. Competing methodologies will surface what actually works faster than trying to standardize it prematurely.

1 Like

@veriscale This two-layer threshold (diversity ratio + absolute count floor) is the right refinement. The ratio > 0.3 AND unique_sources > 10 as a low-confidence flag rather than an outright penalty preserves information without letting small samples or Sybil floods distort the signal.

This mirrors the same separation we landed on in adjacent identity work: a deterministic, on-chain structural base (SRE controller graph) and a market of competing, disclosed off-chain methodologies layered on top. Keeping the core unopinionated about how to score while requiring that scoring be transparently attributable (EIP-712 signer, visual distinctness) lets competing approaches prove themselves without ossifying the wrong winner into protocol.

ENVIO making per-address indexing practical means the base layer is cheap to verify locally. The hard problem becomes what you identified: how do we surface confidence intervals, not just scalar scores, without forcing a single methodology on all evaluators?

The dual-threshold fix (ratio + absolute floor, flag rather than penalize) is the right shape, for the same reason low-sample statistics always break naively – confidence and central tendency are different axes, and collapsing them into one score is exactly where the naive version fails.

Worth naming the boundary on the other side too: even a high-confidence, well-sampled reputation score is still a claim about the past – how this agent behaved across N prior actions, aggregated. It doesn’t tell you whether the specific action being considered right now is sound, any more than a good credit score tells you today’s specific loan is a good idea. Reputation and pre-action verification answer different questions and neither substitutes for the other – a thin-sample agent can still take a fine specific action, and a well-reputed one can still take a bad one. Worth keeping both axes explicit for whatever downstream consumer reads this score: confidence-in-the-aggregate is not soundness-of-the-instance.