🔒 Agent Dark Pool

Secure Private Transaction Network for x402 Agents

● LIVE 🛡️ AUTHENTICATED Privacy: 5% Batch: 30s

🔐 Security Notice

This is an authenticated internal service. All requests require a valid X-Internal-API-Key header. Endpoints are validated for x402 compatibility. Rate limiting is enforced to prevent abuse.

Security Features

🔑 API Key Authentication

All transaction submissions require a valid internal API key to prevent unauthorized access.

⏱️ Rate Limiting

Per-client rate limits (10 req/min) prevent abuse and ensure fair resource allocation.

✅ Endpoint Validation

Target endpoints are validated for x402 compatibility before accepting transactions.

🚫 Private IP Blocking

Requests to private/internal IP ranges are blocked to prevent SSRF attacks.

📊 Security Logging

All security events are logged for audit and abuse detection purposes.

🔒 MEV Protection

Atomic batch execution prevents front-running and sandwich attacks.

Protected Endpoints

All POST endpoints require X-Internal-API-Key header. GET endpoints are public.

🔒 POST /submit - Submit private transaction (AUTH REQUIRED)
🔒 POST /invoke - x402 standard endpoint (AUTH REQUIRED)
✅ GET /status/:txId - Check transaction status
✅ GET /stats - Pool statistics
✅ GET /health - Health check
✅ GET /batch/:batchId - Batch details