What is Coinbase AgentKit?
AgentKit is Coinbase Developer Platform's open-source toolkit that gives AI agents crypto wallets and onchain interaction capabilities. It's framework-agnostic (works with LangChain, OpenAI, Vercel AI SDK) and wallet-agnostic (supports CDP, Privy, Viem wallets).
Key Components
π CDP Wallets
Non-custodial infrastructure for agent-controlled wallets with programmatic access
π‘οΈ KYT Screening
Built-in Know Your Transaction compliance that blocks high-risk interactions
π³ x402 Protocol
Machine-to-machine payment protocol enabling fee-free stablecoin transfers
β‘ 50+ Actions
Pre-built financial operations including swaps, transfers, staking, and DeFi interactions
Regulatory Landscape by Jurisdiction
| Jurisdiction | Regulator | AI Agent Status | Key Requirements |
|---|---|---|---|
| ππ° Hong Kong | SFC / HKMA | Evolving | VATP license if retail-facing; AML/CFT compliance |
| πΈπ¬ Singapore | MAS | Under Review | DPT license consideration; accountability requirements |
| π―π΅ Japan | FSA / JFSA | Strict | Human oversight mandatory; fund transfer registration |
| π¦πΊ Australia | ASIC | Developing | AI-specific guidance pending; standard AFS obligations |
| π°π· South Korea | FSC / FIU | Cautious | VASP registration; DABA compliance from 2024 |
Hong Kong SFC Compliance
Hong Kong's Securities and Futures Commission (SFC) has not issued specific guidance on AI agents but applies existing virtual asset frameworks:
- VATP Licensing: Platforms offering trading services to Hong Kong retail users must be SFC-licensed
- AML/CFT: AgentKit's KYT screening supports but doesn't replace full AML obligations
- Custody: Client asset segregation requirements apply to agent-held funds
- Disclosure: Users must be informed they're interacting with an AI agent
Singapore MAS Guidelines
The Monetary Authority of Singapore emphasizes technology neutrality but maintains strict accountability standards:
- Payment Services Act 2019: AI agents facilitating DPT transactions may require licensing
- Accountability: A licensed entity must be accountable for AI agent actions
- Risk Management: Technology Risk Management Guidelines apply to AI systems
- Consumer Protection: Clear disclosure of AI involvement in transactions
MAS AI Governance Framework
Singapore's AI governance principles (FEAT - Fairness, Ethics, Accountability, Transparency) require:
- Explainability of AI decision-making processes
- Human oversight mechanisms for high-risk transactions
- Audit trails for all agent-initiated actions
- Regular model validation and testing
Japan FSA Requirements
- Fund Transfer Act: Crypto-asset exchange service registration required
- Human-in-the-Loop: Mandatory for transaction approval above thresholds
- Cold Wallet Requirements: 95% of crypto assets in cold storage
- Record Keeping: 10-year transaction record retention
AgentKit Built-in Compliance Features
| Feature | What It Does | Regulatory Coverage |
|---|---|---|
| KYT Screening | Blocks high-risk wallet interactions | Supports AML/CFT compliance |
| Transaction Monitoring | Real-time tracking of all agent actions | Audit trail requirements |
| Non-custodial Wallets | Users control private keys | Reduces custody obligations |
| Framework Extensions | Works with existing compliance tools | Integration flexibility |
Implementation Best Practices
1. Jurisdictional Assessment
Before deploying AgentKit agents, conduct a thorough regulatory assessment:
- Identify target user jurisdictions
- Map applicable licensing requirements
- Assess AML/CFT obligations
- Review data protection requirements (PDPA, etc.)
2. Human Oversight Controls
Implement tiered approval mechanisms:
- Low-value: Automated with monitoring
- Medium-value: Automated with post-trade review
- High-value: Require human approval
- Suspicious: Automatic halt and escalation
3. Documentation & Disclosure
- Clear terms of service disclosing AI agent involvement
- Risk warnings about autonomous transaction execution
- Comprehensive audit logs for regulatory examination
Frequently Asked Questions
Is Coinbase AgentKit compliant with Hong Kong SFC regulations?
AgentKit includes built-in KYT (Know Your Transaction) screening which aligns with SFC's AML/CFT requirements. However, operators deploying AgentKit-based agents handling Hong Kong retail users must ensure the underlying platform holds a valid VATP license from the SFC.
Do AI agents using AgentKit need a license in Singapore?
Under MAS guidelines, AI agents autonomously executing financial transactions may require DPT license consideration. AgentKit's compliance screening helps but doesn't replace licensing requirements. Operators should assess under Payment Services Act 2019.
What is KYT screening in AgentKit?
KYT (Know Your Transaction) is AgentKit's built-in compliance feature that automatically screens transactions and blocks high-risk interactions. It monitors wallet addresses, transaction patterns, and counterparty risk in real-time.
How does the x402 protocol affect regulatory compliance?
The x402 protocol enables machine-to-machine payments for AI agents. Regulatory treatment varies by jurisdiction: Japan treats it under fund transfer rules, Singapore may classify it as DPT service, while Hong Kong's stance remains under consultation.
Can AgentKit agents operate autonomously under APAC regulations?
Autonomous AI agent operations face regulatory scrutiny across APAC. Japan's FSA requires human oversight for financial services. Singapore's MAS emphasizes accountability. Australia's ASIC is developing AI-specific guidance. Operators must implement human-in-the-loop controls.
What compliance features does Coinbase AgentKit provide?
AgentKit includes: (1) KYT screening for high-risk address blocking, (2) Non-custodial CDP wallets, (3) Transaction monitoring, (4) Framework-agnostic compliance tools. However, operators remain responsible for jurisdiction-specific licensing and AML/CFT obligations.
Need Compliance Intelligence for Your AI Agents?
APAC FINSTAB provides regulatory intelligence APIs for AI agent compliance across 12+ APAC jurisdictions.
Explore Our API β