Structured risk assessment of an ERC-20 approve(spender, amount) before signing. Catches unlimited approvals to fresh contracts, EOA spenders, copycat tokens, and known-malicious contracts. Built for AI agents that handle wallets and need a programmatic gate before any token approval.
curl -X POST https://app.heinrichstech.com/v1/cdp/approval-safety \
-H 'content-type: application/json' \
-d '{}'
# 1. Server returns 402 with a WWW-Authenticate: X402 challenge.
# 2. Pay 0.05 USDC to 0xDa2F35d283c42dd60B965322394bc658a5c1769F on Base mainnet
# (your x402 client signs the EIP-712 authorization).
# 3. Retry the same request with the X-PAYMENT header. The Coinbase CDP
# Facilitator verifies and settles, then the response unlocks.
import { x402Fetch } from '@bitbooth/x402-client';
const res = await x402Fetch('https://app.heinrichstech.com/v1/cdp/approval-safety', {
method: 'POST',
body: JSON.stringify({}),
wallet: process.env.AGENT_PRIVATE_KEY, // signs X-PAYMENT EIP-712
network: 'eip155:8453', // Base mainnet
});
const data = await res.json();
Every x402 client and ecosystem indexer can discover this endpoint without scraping. Hit the JSON feeds below or read the OpenAPI spec directly.