| name | dfm-agent |
| version | 2.2.1 |
| description | Fully autonomous DTF vault management on Solana. The agent independently researches markets,
decides vault names/symbols/allocations/policies, and deploys on-chain in a two-step flow —
no human confirmation required. The policy engine is the guardrail, not a human approval step.
Use when the user asks to launch a vault, rebalance, check policy, or distribute fees.
|
| homepage | https://qa.dfm.finance |
| license | MIT |
| compatibility | Claude Code, Codex, OpenClaw |
| metadata | {"category":"defi-agent","auth":"jwt+keypair","author":"dfm","tags":"solana,defi,vault,rebalance,dtf,fund-management,autonomous-agent"} |
DFM Agent
DFM Agent is a fully autonomous AI skill for DTF (DeFi Token Fund) vault management on Solana. The agent researches markets, decides everything — name, symbol, asset allocations, fee structure, policy configuration — and deploys on-chain. No human-in-the-loop confirmation. The policy engine is the guardrail, not a human approval step.
Core Philosophy
The agent is the creator. It has full authority over what it launches.
+-------------------------------------------------------------------+
| AUTONOMOUS AGENT FLOW |
| |
| 1. RESEARCH Agent analyzes markets, picks candidate tokens |
| via WebSearch. Then GET /market-metrics for |
| authoritative liquidity/volume numbers (the |
| exact values the policy engine enforces against). |
| |
| 2. DECIDE Agent picks vault name, symbol, assets, |
| allocations, fees, and policy thresholds. |
| |
| 3. VALIDATE POST /policy/dry-run (loop) -- simulate the |
| basket+policy against all pre-launch rules. |
| No on-chain cost. If violations, adjust policy |
| OR basket, retry until clean. |
| |
| 4. DEPLOY Two-step vault creation (policy-gated): |
| a) POST /launch-dtf {basket + policy} -> |
| basket-vs-policy validated server-side. |
| Policy committed. Unsigned tx returned. |
| b) Agent signs tx & submits on-chain. |
| c) POST /dtf-create {tx signature + metadata} -> |
| finalize vault (metadata only, no policy). |
| |
| 5. MANAGE Agent monitors, rebalances, distributes fees. |
| |
| GUARDRAILS: Policy is law before creation. /launch-dtf |
| refuses to build a tx for any basket that |
| violates the agent's own declared policy. |
| NO human confirmation step. |
+-------------------------------------------------------------------+
| Principle | Detail |
|---|
| Fully autonomous | Agent decides everything: name, symbol, assets, allocations, policy, fees. No confirmation prompts. |
| Policy is law before creation | The policy object ships inside the /launch-dtf request body. Backend runs evaluatePreCreation against the basket + policy before building the tx. Violations return 400 with a full violations[] array — nothing lands on-chain. |
| Pre-flight loop via dry-run | POST /policy/dry-run returns the same evaluation without committing anything. Use it to iterate on policy/basket combinations for free before calling /launch-dtf. |
| Metrics source of truth | GET /market-metrics returns the exact liquidity_usd / volume_24h_usd numbers the policy engine will enforce. Use these values (not aggregator numbers scraped from the web) when choosing min_amm_liquidity_usd / min_24h_volume_usd. |
| Two-step vault creation | POST /launch-dtf validates + commits policy + builds unsigned tx. Agent signs + submits. POST /dtf-create persists on-chain metadata to DB (no policy — that was already committed and is linked automatically by the chain-event pipeline). |
| Non-custodial | Agent Wallet private key never leaves the user's machine. Backend never receives secret keys. |
| Agent = on-chain authority | The Agent Wallet becomes the permanent on-chain creator/manager of every vault it deploys. |
Sensitive Data Rules (MANDATORY -- READ FIRST)
NEVER print, echo, log, or display the values of these environment variables in terminal output:
DFM_AUTH_TOKEN -- JWT auth tokenDFM_AGENT_KEYPAIR -- base58 secret key- Any private key, secret key, or auth token
To check if an env var is set, use length check only:
node -e 'console.log(process.env.DFM_AUTH_TOKEN ? "set" : "not set")'
NEVER do any of the following:
echo $DFM_AUTH_TOKEN
export DFM_AUTH_TOKEN="eyJ..."
curl -H "Authorization: Bearer eyJ..." ...
curl -H "Authorization: Bearer $DFM_AUTH_TOKEN" ...
ALL API calls MUST use inline node -e scripts that read env vars internally via process.env. This prevents sensitive values from appearing in the bash command itself.
Correct pattern for API calls:
node -e '
const http = require("http");
const https = require("https");
const url = new URL(process.env.DFM_API_URL + "/api/v2/agent/dtf/SYMBOL/state");
const client = url.protocol === "https:" ? https : http;
const req = client.get(url, { headers: { "Authorization": "Bearer " + process.env.DFM_AUTH_TOKEN } }, (res) => {
let data = "";
res.on("data", (chunk) => data += chunk);
res.on("end", () => console.log(data));
});
req.on("error", (e) => console.error("Error:", e.message));
'
Do NOT use curl for API calls. Always use node -e with process.env references so tokens and keys are never visible in the command string.
IMPORTANT: No timeout on API calls. When running Bash commands that make API calls, always set timeout: 600000 (10 minutes) or use run_in_background: true. The default Bash timeout is 2 minutes which is too short for on-chain operations like vault creation, rebalancing, and fee distribution. Never let an API call get killed by a timeout.
Pre-Flight Auth Check (REQUIRED)
You MUST complete this check before making any API call. Do not skip this step.
Step 1: Ensure .claude/settings.json has env vars
Claude Code runs bash in a non-interactive subprocess that does NOT source ~/.zshrc or ~/.bashrc. Environment variables set via export in the user's terminal are NOT available to Claude Code's bash commands. The only reliable way to pass env vars to Claude Code is via .claude/settings.json.
On every pre-flight check, run this script to sync env vars from ~/.zshrc into .claude/settings.json:
node -e '
const fs = require("fs");
const path = require("path");
const os = require("os");
const settingsPath = path.join(process.cwd(), ".claude", "settings.json");
let settings = {};
try { settings = JSON.parse(fs.readFileSync(settingsPath, "utf8")); } catch {}
if (!settings.env) settings.env = {};
// Reject sentinel/placeholder values that should never be honoured.
const isInvalid = (v) => {
if (!v || typeof v !== "string") return true;
const t = v.trim();
if (!t) return true;
if (t === "+token+" || t === "<token>" || t.startsWith("+")) return true;
if (t.startsWith("\"") || t.endsWith("\"")) return true; // stray quotes from bad templating
return false;
};
let zshrc = "";
try { zshrc = fs.readFileSync(path.join(os.homedir(), ".zshrc"), "utf8"); } catch {}
const envVars = ["DFM_API_URL", "DFM_AUTH_TOKEN", "DFM_AGENT_KEYPAIR", "SOLANA_RPC_URL", "AGENT_WALLET_PATH"];
for (const v of envVars) {
// 1) Keep settings.json value if already valid (it is updated in-process by refresh / launch scripts).
if (!isInvalid(settings.env[v])) continue;
// 2) Pull from ~/.zshrc. Use a global regex and take the LAST match — newest export wins
// when the file accumulates multiple `export VAR=...` lines.
const re = new RegExp("export\\s+" + v + "=[\"\\047]?([^\"\\047\\n]+)[\"\\047]?", "g");
let lastMatch = null, m;
while ((m = re.exec(zshrc)) !== null) lastMatch = m;
if (lastMatch && !isInvalid(lastMatch[1])) {
settings.env[v] = lastMatch[1];
continue;
}
// 3) Final fallback: current process env
if (!isInvalid(process.env[v])) settings.env[v] = process.env[v];
else delete settings.env[v]; // ensure no garbage placeholder lingers
}
fs.mkdirSync(path.dirname(settingsPath), { recursive: true });
fs.writeFileSync(settingsPath, JSON.stringify(settings, null, 2));
for (const v of envVars) {
console.log(v + "=" + (!isInvalid(settings.env[v]) ? "set" : "NOT SET"));
}
'
If DFM_AUTH_TOKEN is SET but any API call returns 401 (Unauthorized / token expired):
- Run the token refresh script below. The script derives the agent wallet address from
DFM_AGENT_KEYPAIR (no user prompt required), calls POST {DFM_API_URL}/api/v2/agent/token/refresh-by-wallet with the agent wallet address, writes the new JWT to .claude/settings.json, and replaces any existing export DFM_AUTH_TOKEN= line in ~/.zshrc (never appends — appending would accumulate stale tokens that the pre-flight may pick up first). The token value is never printed.
- After the script reports
STATUS=success, retry the original operation in the same session — .claude/settings.json is read by Claude Code on the next bash invocation, so no restart is required.
DO NOT improvise the refresh. Earlier improvised attempts have written literal placeholder strings (e.g. +token+) into settings.json. Always use this exact script.
Write the script once to .claude/refresh-token.js, then run it with node .claude/refresh-token.js:
const http = require("http");
const https = require("https");
const fs = require("fs");
const path = require("path");
const os = require("os");
const { Keypair } = require("@solana/web3.js");
const bs58 = require("bs58").default || require("bs58");
const apiUrl = process.env.DFM_API_URL;
const agentSecret = process.env.DFM_AGENT_KEYPAIR;
if (!apiUrl) { console.log("ERROR: DFM_API_URL not set"); process.exit(1); }
if (!agentSecret) {
console.log("ERROR: DFM_AGENT_KEYPAIR not set — cannot derive agent wallet for refresh");
process.exit(1);
}
const agentWalletAddress = Keypair.fromSecretKey(bs58.decode(agentSecret)).publicKey.toBase58();
const payload = JSON.stringify({ agentWalletAddress });
const url = new URL(apiUrl + "/api/v2/agent/token/refresh-by-wallet");
const client = url.protocol === "https:" ? https : http;
const req = client.request(url, {
method: "POST",
headers: { "Content-Type": "application/json", "Content-Length": Buffer.byteLength(payload) }
}, (res) => {
let data = "";
res.on("data", (c) => data += c);
res.on("end", () => {
try {
const json = JSON.parse(data);
const token = json.data?.token || json.token;
if (!token || typeof token !== "string" || token.startsWith("+")) {
console.log("ERROR: No valid token in response: " + data);
process.exit(1);
}
const sp = path.join(process.cwd(), ".claude", "settings.json");
let s = {}; try { s = JSON.parse(fs.readFileSync(sp, "utf8")); } catch {}
if (!s.env) s.env = {};
s.env.DFM_AUTH_TOKEN = token;
fs.mkdirSync(path.dirname(sp), { recursive: true });
fs.writeFileSync(sp, JSON.stringify(s, null, 2));
const zshrcPath = path.join(os.homedir(), ".zshrc");
let zshrc = "";
try { zshrc = fs.readFileSync(zshrcPath, "utf8"); } catch {}
const newLine = "export DFM_AUTH_TOKEN=\"" + token + "\"";
const lineRe = /^\s*export\s+DFM_AUTH_TOKEN=.*$/gm;
if (lineRe.test(zshrc)) {
zshrc = zshrc.replace(lineRe, newLine);
} else {
if (zshrc.length && !zshrc.endsWith("\n")) zshrc += "\n";
zshrc += newLine + "\n";
}
fs.writeFileSync(zshrcPath, zshrc);
console.log("STATUS=success");
console.log("AGENT_WALLET=" + agentWalletAddress);
console.log("DFM_AUTH_TOKEN=set");
} catch (e) {
console.log("ERROR: " + e.message);
process.exit(1);
}
});
});
req.on("error", (e) => { console.log("ERROR: " + e.message); process.exit(1); });
req.write(payload);
req.end();
If DFM_AUTH_TOKEN is NOT SET after this script, run the automated agent profile creation flow:
-
Ask the user for their DFM-registered wallet address (the Solana public key they used to sign up on the DFM Dashboard):
To set up your DFM Agent, I need the Solana wallet address you registered on the DFM Dashboard (https://qa.dfm.finance).
Please paste your wallet public key.
-
Ensure the agent wallet exists — the profile launch requires the agent's wallet public key.
- If
DFM_AGENT_KEYPAIR is already set, derive the public key from it (do NOT generate a new one).
- If a keypair file exists at
AGENT_WALLET_PATH (default ~/.dfm/agent-wallet.json), load it and derive the public key.
- Only if neither exists, generate a new keypair. See "Agent Wallet -- Keypair Generation" section below.
-
Once the user provides the wallet address and the agent keypair exists, auto-generate the agent profile name and username. Read the rules below carefully — past sessions have collapsed the name space onto a tiny attractor set ("Vault Navigator", "DeFi Navigator", "Alpha Sentinel") and that's actively bad UX.
Display-name rules (MANDATORY):
- Pick a two-word display name drawn from genuinely different vocabularies on each launch. The single biggest failure mode: every model that reads a small example list anchors on those examples or near-variants. The fix is to seed from a wide, deliberately-mixed pool. Use the table below as a starting point — but draw words you haven't seen in this conversation already, and feel free to invent fresh combinations the table doesn't list.
- Banned name stems (do NOT use as either word): Navigator, Sentinel, Agent, Bot, Vault, DeFi, Crypto, Solana, Token. These have saturated the namespace from earlier example lists. If you reach for one of these, stop and pick from a different domain in the table.
- Banned full names (already overused — never reuse): Vault Navigator, DeFi Navigator, Alpha Sentinel, Momentum Agent, Crypto Bot.
- Do NOT append hex / random suffixes / numbers /
_xx markers to the display name. That's only for usernames (the script handles it). The display name must be a clean two-word phrase. "Vault Navigator A08E 🦞" is wrong on every dimension — it leaks the retry suffix into a user-facing field. "Sapphire Tide" is right.
- Use the agent wallet's first 3–4 characters as a creative seed so different wallets reliably land on different themes. Example: agent wallet starts with
3UzV → pick a name evocative of 3 / U / V (e.g. Triton Vault… no wait, Vault is banned, try Triton Verse or Ultraviolet Drift). This isn't a hashing scheme — it's a nudge to break the model's natural tendency to repeat.
- Each launch must produce a distinct name. If a previous run in this same conversation produced "Sapphire Tide", the next run picks something topologically distant: Quasar Forge, Boreal Compass, etc. — not "Sapphire Drift" or "Sapphire Reef".
Seed pool to draw from (mix and match — combine one word from any column with one from another, or invent new ones in the same spirit):
| Mythological / cosmic | Market / motion | Materials / nature | Abstract / concept |
|---|
| Aurora, Orion, Helios, Nyx, Atlas, Perseus, Vega, Lyra, Triton, Pegasus | Drift, Tide, Pulse, Surge, Cascade, Compass, Gradient, Vector, Ledger, Index | Obsidian, Quartz, Sapphire, Granite, Ember, Amber, Cinder, Boreal, Zephyr, Silt | Cipher, Lattice, Horizon, Atlas, Forge, Codex, Verse, Prism, Quasar, Echo |
Combinations like Obsidian Pulse, Aurora Compass, Quasar Forge, Sapphire Tide, Boreal Index, Cinder Cipher, Pegasus Lattice are all in-spirit. Do not reuse any of those exact pairs verbatim — they're examples, not a permitted list. Generate something adjacent.
Username generation (separate problem — the script handles uniqueness):
- Username = lowercase + underscore version of the display name (e.g. Sapphire Tide →
sapphire_tide).
- Don't pre-suffix or pre-randomize the username either. The
profile-launch.js script appends a 4-hex-char suffix on 409 "Username is already taken" and retries up to 5 times automatically. Pass the clean base — let the script handle collisions. The display name is preserved across retries (only username changes), so the user sees "Sapphire Tide 🦞" even if the username had to retry as sapphire_tide_a08e.
-
Create the profile AND save the token in a single script — the API call, token extraction, and env var writing must all happen inside one script so the token is NEVER visible in terminal output. The script also auto-retries on duplicate-username 409s by appending a random suffix to the username (and re-runs up to 5 times) so the agent never has to be re-prompted for a new name. Write a script file and execute it:
Write a file called .claude/profile-launch.js with this content, then run it with node .claude/profile-launch.js:
const http = require("http");
const https = require("https");
const fs = require("fs");
const path = require("path");
const os = require("os");
const crypto = require("crypto");
const { Keypair } = require("@solana/web3.js");
const bs58 = require("bs58").default || require("bs58");
const apiUrl = process.env.DFM_API_URL;
const walletAddress = process.argv[2];
const baseName = process.argv[3];
const baseUsername = process.argv[4];
if (!apiUrl) { console.log("ERROR: DFM_API_URL not set"); process.exit(1); }
if (!walletAddress || !baseName || !baseUsername) {
console.log("ERROR: usage: node profile-launch.js <walletAddress> <name> <username>");
process.exit(1);
}
const agentKeypair = Keypair.fromSecretKey(bs58.decode(process.env.DFM_AGENT_KEYPAIR));
const agentWalletAddress = agentKeypair.publicKey.toBase58();
const MAX_ATTEMPTS = 5;
const UNAME_RX = /username/i;
const sanitize = (s) => s.toLowerCase().replace(/[^a-z0-9_]/g, "_").replace(/_+/g, "_").replace(/^_|_$/g, "");
const cleanBase = sanitize(baseUsername) || "agent";
const suffix = () => crypto.randomBytes(2).toString("hex");
function attempt(usernameToTry, agentNameToTry, n) {
const payload = JSON.stringify({
userPublicKey: walletAddress,
agentWalletAddress: agentWalletAddress,
name: agentNameToTry,
username: usernameToTry,
metadata: [{ key: "created_by", value: "dfm-agent-skill" }]
});
const url = new URL(apiUrl + "/api/v2/agent/profile-launch");
const client = url.protocol === "https:" ? https : http;
const req = client.request(url, {
method: "POST",
headers: { "Content-Type": "application/json", "Content-Length": Buffer.byteLength(payload) }
}, (res) => {
let data = "";
res.on("data", (chunk) => data += chunk);
res.on("end", () => {
let json = null;
try { json = JSON.parse(data); } catch { }
const message = json?.message || json?.error || data;
if (res.statusCode === 409 && UNAME_RX.test(String(message)) && !/wallet/i.test(String(message))) {
if (n >= MAX_ATTEMPTS) {
console.log("ERROR: username conflicts after " + MAX_ATTEMPTS + " attempts. Last tried: " + usernameToTry);
process.exit(1);
}
const nextUsername = cleanBase + "_" + suffix();
const nextName = baseName;
console.log("RETRY=username_taken attempt=" + (n + 1) + " next_username=" + nextUsername);
return attempt(nextUsername, nextName, n + 1);
}
if (res.statusCode === 409) {
console.log("ERROR: 409 Conflict (not username-related): " + message);
process.exit(1);
}
if (res.statusCode < 200 || res.statusCode >= 300) {
console.log("ERROR: HTTP " + res.statusCode + ": " + message);
process.exit(1);
}
const token = json?.data?.token?.token;
if (!token) { console.log("ERROR: No token in response. Response: " + data); process.exit(1); }
const sp = path.join(process.cwd(), ".claude", "settings.json");
let s = {}; try { s = JSON.parse(fs.readFileSync(sp, "utf8")); } catch {}
if (!s.env) s.env = {};
s.env.DFM_AUTH_TOKEN = token;
fs.writeFileSync(sp, JSON.stringify(s, null, 2));
const zshrcPath = path.join(os.homedir(), ".zshrc");
let zshrc = "";
try { zshrc = fs.readFileSync(zshrcPath, "utf8"); } catch {}
const newLine = "export DFM_AUTH_TOKEN=\"" + token + "\"";
const lineRe = /^\s*export\s+DFM_AUTH_TOKEN=.*$/gm;
if (lineRe.test(zshrc)) {
zshrc = zshrc.replace(lineRe, newLine);
} else {
if (zshrc.length && !zshrc.endsWith("\n")) zshrc += "\n";
zshrc += newLine + "\n";
}
fs.writeFileSync(zshrcPath, zshrc);
const profileName = json.data?.agentProfile?.name || agentNameToTry;
const profileUsername = json.data?.agentProfile?.username || usernameToTry;
console.log("STATUS=success");
console.log("AGENT_NAME=" + profileName);
console.log("AGENT_USERNAME=" + profileUsername);
console.log("AGENT_WALLET=" + agentWalletAddress);
console.log("ATTEMPTS=" + n);
console.log("DFM_AUTH_TOKEN=set");
});
});
req.on("error", (e) => { console.log("ERROR: " + e.message); process.exit(1); });
req.write(payload);
req.end();
}
attempt(cleanBase, baseName, 1);
Run it as: node .claude/profile-launch.js <WALLET_ADDRESS> "<AGENT_NAME>" "<AGENT_USERNAME>"
The script derives agentWalletAddress from DFM_AGENT_KEYPAIR automatically and includes it in the payload. It outputs ONLY STATUS=success, AGENT_NAME=..., AGENT_USERNAME=..., AGENT_WALLET=..., ATTEMPTS=<n>, and DFM_AUTH_TOKEN=set. The actual token value is written directly to .claude/settings.json and ~/.zshrc — it NEVER appears in terminal output.
Username conflict retry behavior:
- On HTTP
409 whose message references "username" (e.g. "Username is already taken"), the script appends a 4-hex-char suffix to the sanitized base username and re-issues POST /profile-launch. Up to 5 attempts.
- During retries the script logs only
RETRY=username_taken attempt=<n> next_username=<new> so the agent (and the human watching) can see progress without leaking secrets.
- The display
name is preserved across retries — only username changes.
- On HTTP
409 whose message references "wallet" (e.g. "An agent profile already exists for this wallet address"), the script does NOT retry — that's an unrecoverable state for this flow. The agent should call /token/refresh-by-wallet instead.
- If all 5 attempts collide, the script exits with a clear
ERROR: line and the agent must surface the conflict to the user.
-
Tell the user: "Agent profile created! Restart your AI agent to pick up the auth token, then you're ready to go."
If DFM_AGENT_KEYPAIR is NOT SET and the operation requires signing (launch-dtf, distribute-fees), auto-generate a wallet (see "Agent Wallet -- Keypair Generation" section below). Do not ask — just generate it.
Step 2: Proceed
If all required vars are set, proceed immediately with the requested operation. Do not ask for confirmation.
IMPORTANT: After writing to .claude/settings.json for the first time, tell the user to restart Claude Code so the env vars are picked up. On subsequent runs, the settings file already exists and env vars are available immediately.
When To Use
Use this skill when:
- The user asks to launch, create, or deploy a DTF vault
- The user asks to research tokens/markets and create a fund
- The user wants to check vault state, policy, or rebalancing status
- The user asks to rebalance a vault or distribute fees
- The user asks for market data on a specific asset — "check SOL liquidity", "what's BONK's 24h volume", "price of JUP", "how many holders does ORCA have", "is this asset deep enough to launch" — route to
GET /market-metrics (see "Prompt routing" below). The endpoint is the same Jupiter pipeline the policy engine queries, so numbers match exactly what would be enforced at launch / rebalance time.
- The user asks to monitor a basket / watchlist of assets — "keep an eye on [SOL, JUP, BONK]", "are any of these dropping below the floor", "monitor liquidity drift on my basket" — route to
GET /market-metrics with a multi-asset query and render a table. (For ongoing polling at a cadence, the agent runs the call on demand each turn — there is no server-side subscription.)
- The user asks to deposit USDC into a vault or redeem vault tokens (capital flows are agent-bound — see "Step 7: Capital Flows")
- The user asks "how many shares do I hold in
<vault>?" or "what's my position in <vault>?" — read the on-chain ATA balance via GET /vaults/:symbol/shares. Also the right pre-flight call when the user says "redeem all my <vault>".
- The user asks for "all DTFs on the platform" / "every vault on DFM" / "what DTFs are available" — run the platform-wide listing flow (Step 5: Manage → "Listing all platform DTFs"): two vault-type fetches across all pages with featured/non-featured enrichment, merged into one combined table. This is different from "my vaults" — do not route platform-wide phrasings to
/vaults/user; that endpoint is user-scoped.
- The user asks for a "list" of platform DTFs with details — "give me list of all DTFs", "give me detailed data of all vaults", "list every vault with full info" — run the same platform-wide listing flow but render detailed mode (Step 5: Manage → "Detailed listing mode"): summary table at top, then per-vault detail blocks (overview + composition) for every vault. Default to detailed mode whenever the user says "list" with any "details / full / everything" qualifier; default to the compact summary table for bare "show me" / "browse" / "what's available" phrasings.
- The user needs to set up agent auth (wallet generation, token management)
Prompt routing — intent → endpoint
Before doing any work, classify the user's prompt against the table below. Pick exactly one row and execute its workflow — don't fan out to multiple tools, and don't default to WebSearch for queries that have a first-party API answer. The numbers the policy engine enforces come from /market-metrics, not from aggregators, so any market-shaped question about a specific asset must hit the API rather than the open web — otherwise the agent quotes a number the platform won't enforce against.
| User prompt shape | Primary tool | Secondary / fallback | Output format |
|---|
| "price / liquidity / 24h volume / holders of <asset>", "check market data for SOL", "is BONK deep enough to launch", "show me metrics for [SOL, JUP, BONK]" | GET /market-metrics?symbols=...&names=...&mints=... | None — this is the canonical asset-metrics path | Markdown table with the column schema in Step 1: Research (Symbol, Name, Price, Liquidity, 24h Volume, Holders) |
| "monitor my basket", "watch these assets", "flag anything dropping below 500k liquidity", "are any of these about to fall below the floor" | GET /market-metrics (multi-asset) | None for the snapshot. If the user asks for a recurring watch, surface that the agent runs the check each turn — no server-side subscription. | Markdown table with one row per asset; if the user gave a threshold, append a one-line "⚠ X below <threshold>" summary below the table |
| "market sentiment", "what's happening with <asset>", "news / catalysts / narrative around X", "why is the market down today", "trending Solana tokens this week" | WebSearch + WebFetch | /market-metrics only as a follow-up when the user pivots to specific numbers | Short narrative answer; surface 2–4 cited sources if the user is making a directional decision |
| "how is my vault <symbol>", "show me state / portfolio / NAV / share price of <symbol>", "my position in <symbol>" | GET /dtf/:symbol/state | GET /vaults/:symbol/shares for raw share-balance reads | Multi-section markdown tables per Step 5: Manage (vault header table + portfolio table + holdings table + history) |
| "should I rebalance <symbol>", "is <symbol> due for rebalance", "check rebalance readiness" | GET /dtf/:symbol/rebalance/check | /dtf/:symbol/state for context only if the user asked for it | Plain-English readiness verdict + suggestions table from suggestion.suggestedActions[] |
| "list my vaults", "my DTFs", "vaults I created", "my portfolio across vaults" | GET /vaults/user?vaultType=dtf and GET /vaults/user?vaultType=yield_dtf | None | Combined markdown table per Step 5: Manage |
| "all DTFs on the platform", "every vault on DFM", "browse featured", "what's curated" | GET /vaults/featured/list (paginated) ± /vaults/user for cross-listing | None | Combined markdown table — see Step 5 → "Listing all platform DTFs" |
| "draft / propose / suggest <n> DTFs", "give me proposals", "vault ideas" | WebSearch + WebFetch for asset discovery, then GET /market-metrics to validate each candidate's liquidity / volume | POST /policy/dry-run once the user picks one | Three-table proposal format per Step 2: Design → "Proposal output format" (basket, policy, whitelist buffer) |
| "launch / create / deploy a DTF" (with or without a stated theme) | Full autonomous launch flow — Steps 1–4 below | None | Conversational status updates + final success line per Step 4 |
| "deposit <n> USDC", "redeem <n> shares", "buy / sell <symbol>" | Capital-flow scripts in Step 7 | None | Scripted phase markers + final DEPOSIT_OK / REDEEM_OK summary table |
Real-time monitoring — what's actually possible
There is no server-side subscription / streaming endpoint. "Real-time" in this skill means: the agent calls /market-metrics (and/or /dtf/:symbol/state) on each turn the user asks, and renders the snapshot. If the user says "keep monitoring SOL liquidity for the next hour and tell me if it drops below 600M", the agent should:
- Run the snapshot now and surface the current value.
- Tell the user plainly that the agent only checks when invoked — there is no background polling. Suggest the user re-asks at their preferred cadence (e.g. "ask me again in 15 minutes").
- Don't fabricate continuous monitoring. Phrases like "I'll watch this for you", "I'll alert you if it drops", "polling now" are banned — they imply background work that does not exist.
For genuinely scheduled checks the user can wire up a /schedule skill invocation externally; that is outside this skill's scope and must be surfaced as such if asked.
What /market-metrics does and doesn't carry
| Field returned | Use it for | Don't use it for |
|---|
liquidity_usd, volume_24h_usd | Policy calibration, depth checks, "is this asset launchable", monitoring drift | Long-term trend analysis (no historical series) |
price_usd | Current spot reference, sanity-checking aggregator data | Charts, candlesticks, % change over time |
holder_count | Distribution heuristics, meme / new-token vetting | Wallet identity, whale tracking |
policyRelevant.{liquidity_usd, volume_24h_usd} | The numbers the evaluator will compare against | Anything else — it's a duplicate of the top-level fields |
The endpoint is per-asset snapshot only. For trends, sentiment, news, or anything narrative, route to WebSearch / WebFetch per the table above.
Autonomous DTF Launch -- How It Works
When the user asks you to launch a DTF (e.g. "Create a blue chip Solana fund" or "Launch a meme token DTF"), follow this autonomous workflow:
Step 1: Research (Agent decides)
Use WebSearch and WebFetch for token discovery — prices, market caps, mint addresses, trending assets, macro conditions. Then use GET /market-metrics as the authoritative source for the two numbers the policy engine actually enforces (Rule 2 liquidity, Rule 3 24h volume). Aggregator scrape values often disagree with what the backend sees; /market-metrics is Jupiter data queried through the same pipeline the evaluator uses, so the numbers match exactly.
Use WebSearch to find:
- Top performing Solana tokens by market cap, volume, and price action
- Current market conditions, trends, and sentiment
- For yield DTFs: Solana LSTs (liquid staking tokens) and yield-bearing tokens — mSOL, jitoSOL, bSOL, INF, hSOL, stSOL, and their current APYs, TVLs, and staking yields
Use WebFetch to pull data from:
- Token data aggregators (CoinGecko, CoinMarketCap, Jupiter aggregator, Birdeye, DexScreener)
- Solana token lists and verified registries for mint addresses
- For yield DTFs: Staking yield aggregators, LST protocol sites (Marinade, Jito, BlazeStake, Sanctum), and DeFi yield dashboards
Then call GET {DFM_API_URL}/api/v2/agent/market-metrics with the candidate assets (mints, symbols, or names) to get the exact policy-relevant numbers:
GET /api/v2/agent/market-metrics?symbols=SOL,JUP&names=Bonk
Authorization: Bearer <DFM_AUTH_TOKEN>
Response:
{
"metrics": [
{
"mintAddress": "So11111111111111111111111111111111111111112",
"symbol": "SOL",
"name": "Wrapped SOL",
"liquidity_usd": 691807448.19,
"volume_24h_usd": 14648499808.98,
"price_usd": 85.33,
"holder_count": 3820662,
"policyRelevant": {
"liquidity_usd": 691807448.19,
"volume_24h_usd": 14648499808.98
}
}
],
"unresolved": []
}
Use these numbers to:
- Drop candidates that don't meet the strategy's floor (e.g. reject an asset with
liquidity_usd < 50000 for an aggressive fund).
- Calibrate
min_amm_liquidity_usd and min_24h_volume_usd in the policy with a safety buffer of 30–50% below the weakest selected asset's /market-metrics number. Jupiter snapshots fluctuate intraday — setting the floor at the weakest asset's current value guarantees the asset will dip below the floor on a bad snapshot and become "locked" in the basket (the agent can no longer remove it via /update-assets-tx, because any intermediate basket that still contains the locked asset fails the volume gate). Concrete rule: floor = floor(weakest_asset_snapshot × 0.5), rounded down to a clean number.
- Null values in
policyRelevant indicate a transient Jupiter fetch miss; retry after a cache warm-up (the endpoint caches per mint).
When surfacing market-metrics results to the user, render as a table — never bullet-list them. Drop mintAddress (column noise unless the user asked for it) and the duplicated policyRelevant block (already covered by the Liquidity and 24h Volume columns).
✅ RIGHT (market-metrics output):
| Symbol | Name | Price (USD) | Liquidity | 24h Volume | Holders |
| ------ | -------------- | ----------- | ------------- | ------------- | ----------- |
| SOL | Wrapped SOL | $85.33 | $691,807,448 | $14,648,499,808 | 3,820,662 |
| JUP | Jupiter | $0.642 | $48,210,005 | $912,440,011 | 612,408 |
| BONK | Bonk | $0.0000231 | $11,002,341 | $74,509,123 | 891,210 |
Column schema:
| Column | Source | Format |
|---|
| Symbol | metrics[].symbol | as-is |
| Name | metrics[].name | as-is |
| Price (USD) | metrics[].price_usd | $<n> (4-6 sig-figs depending on magnitude); for sub-cent tokens use $0.0000231 style. Hide when null. |
| Liquidity | metrics[].liquidity_usd | $<n> with thousand separators (round to whole dollars for values > $1M). |
| 24h Volume | metrics[].volume_24h_usd | same as Liquidity. |
| Holders | metrics[].holder_count | integer with thousand separators. Hide column entirely if all rows are null. |
If the response includes an unresolved[] list (assets the backend couldn't find), append a one-line note below the table: "Couldn't resolve: BONK (no Jupiter price), XYZ (mint not found)." Don't render unresolved as its own table.
Then decide:
- Identify candidate tokens based on the user's intent or strategy
- For yield DTFs: Prioritize LSTs and yield-bearing assets with highest APY and deepest liquidity
- Select the final basket and determine allocations
- Automatically discover each token's Solana
mintAddress from reliable references (official docs, verified token lists, explorers, major data providers)
- Cross-check mint addresses across multiple references before including them in
underlyingAssets
- Reject unverified, conflicting, or low-confidence mint mappings and replace them with verified assets
Step 2: Design (Agent decides)
Based on your research, autonomously decide:
- Vault type --
"DTF" for standard diversified token funds, "YIELD_DTF" for yield-bearing / LST-focused funds. Set in the dtf-create payload.
- Vault name -- descriptive, catchy, relevant to the strategy
- Vault symbol -- short (max 10 chars), unique, memorable
- Underlying assets -- pass asset
symbol or name (preferred) with allocation in basis points (must sum to 10000). Backend resolves mintAddress from asset-allocation.
- For DTF: standard tokens (SOL, JUP, Bonk, RAY, etc.)
- For YIELD_DTF: LSTs and yield-bearing tokens (mSOL, jitoSOL, bSOL, INF, etc.)
- Management fees -- in basis points (e.g. 200 = 2%)
- Policy configuration -- asset limits, rebalance frequency, stablecoin minimums, etc.
- Tags -- searchable categories (include "Yield", "LST", "Staking" for yield DTFs)
- Description -- strategy summary
- Launch media fields -- for DTF launch payloads, set
logoUrl, bannerUrl, and metadataUri to empty strings.
Proposal output format (when the user asks for DTF proposals, not direct launch)
When the user asks for proposals / options / candidate vaults to consider before launching (phrasings like "give me some DTF proposals", "suggest a few baskets", "what could we launch", "draft 3 vault ideas"), the agent must present each proposal in a strict markdown-table format — never raw JSON. JSON dumps of the policy object are explicitly banned in proposal output: they leak field names the user does not need to read, push useful information off-screen, and look like API debug dumps. The user has already told the agent that JSON output for proposals is "unnecessary and inappropriate" — do not regress.
For each proposal, render exactly three tables preceded by a one-line proposal title (e.g. ### 1) Solana LST Yield Basket — curated LST exposure). Optionally finish each proposal with a 1–2 sentence Rationale paragraph summarising why the basket + policy combination passes the policy engine. Nothing else — no JSON code fences, no bullet dumps of policy fields, no "Why this works" lists redundant with the rationale paragraph.
Table 1 — Basket allocation (priority assets only, even when whitelist mode includes a buffer):
| Symbol | Allocation | Why it's in the basket |
|---|
| SOL | 25% | Deepest liquidity / volume on Solana — anchors the basket |
| JUP | 15% | DEX aggregator, top-3 spot volume |
| ... | ... | ... |
Allocation column shows percentages (25%), not pct_bps — this is user-facing. The percentages must sum to 100% and mirror what will go into underlyingAssets[].mintBps at launch.
Table 2 — Policy parameters (the values that will ship inside the policy sub-object of /launch-dtf):
| Parameter | Value | What it controls |
|---|
| Asset mode | WHITELIST_ONLY | Only listed mints can ever enter the basket |
| Min AMM liquidity | $180,000 | 50% buffer below weakest included asset's snapshot |
| Min 24h volume | $1,200,000 | 50% buffer below weakest included asset's snapshot |
| Min / max assets | 4 / 10 | Headroom of ±2 around the launch basket size |
| Min / max asset weight | 5% / 40% | No single position can exceed 40%; floor of 5% prevents dust positions |
| Max rebalance per tx | 60% | Allows full asset swap (≥ 2× max asset weight) |
| Min rebalance interval | 12 h | Conservative cadence for a yield-style fund |
| Max rebalances / day · week | 1 · 5 | Limits churn |
| Launch blackout | 24 h | No rebalance in the first 24 h post-launch |
| Fee locked | yes | Management fee committed at launch |
Always include the rows above. Use $<n> with thousand separators for USD values, <n>% for percentages, plain integers for hour / count fields, and yes / no for booleans (never true / false). Skip a row only when the field genuinely doesn't apply (e.g. Min stablecoin floor with value 0% can be omitted to reduce noise).
Table 3 — Whitelist roster (only when asset_mode is WHITELIST_ONLY or WHITELIST_BLACKLIST):
This table has FIVE columns — Asset, Role, Liquidity, 24h Volume, Floor check. The metrics columns are mandatory, not optional. They exist so the user can verify at a glance that every buffer mint actually passes the policy floors before the vault launches. Without them, stranded buffers are invisible until rotation time.
| Asset | Role | Liquidity | 24h Volume | Floor check (vs $X liq / $Y vol) |
|---|
| jitoSOL | Priority — launch | $850,000,000 | $42,000,000 | ✓ pass |
| mSOL | Priority — launch | $620,000,000 | $28,000,000 | ✓ pass |
| bSOL | Priority — launch | $180,000,000 | $9,500,000 | ✓ pass |
| INF | Priority — launch | $95,000,000 | $5,200,000 | ✓ pass (weakest priority — sets the floor at $47.5M / $2.6M) |
| hSOL | Buffer — reserve | $62,000,000 | $3,400,000 | ✓ pass |
| jucySOL | Buffer — reserve | $55,000,000 | $2,800,000 | ✓ pass |
| picoSOL | Buffer — reserve | $48,000,000 | $2,650,000 | ✓ pass (margin: 1.0× — at the boundary; flag in Rationale) |
Hard rules for Table 3:
- Replace
$X liq / $Y vol in the column header with the actual proposed min_amm_liquidity_usd and min_24h_volume_usd (e.g. Floor check (vs $1,500,000 liq / $1,300,000 vol)).
- The Liquidity and 24h Volume values are the
/market-metrics snapshot the agent already fetched. If a snapshot is missing for any whitelisted mint, do NOT proceed to launch — fetch it, or remove the mint from the whitelist. A blank cell in this table is a launch blocker.
- Floor-check column: render
✓ pass if liquidity ≥ floor_liq AND volume ≥ floor_vol, else ✗ FAIL — <reason> (e.g. ✗ FAIL — liquidity $361K below $1.5M floor). A ✗ FAIL row is a launch blocker. The agent must drop the failing mint from the whitelist (preferred) or recompute the floors against min(priority ∪ buffer) and re-render the table. Do not present a proposal to the user with a ✗ FAIL row — that's the bug we're trying to prevent.
- For priority assets, also pass; if any priority asset fails its own floor the floors are simply too high — recompute.
- Mention in the Rationale paragraph: which asset is the weakest in the combined whitelist (sets the floor), and the margin of the tightest buffer mint above that floor. If any buffer mint clears by less than 30%, call it out as a catch-22 risk (rule #5 of the Future-proofing checklist) — it'll be the first to fall below on a bad snapshot.
Mark each whitelist mint as Priority — launch (will ship in underlyingAssets) or Buffer — reserve (whitelisted only so future /update-assets-tx rotations are policy-allowed). The user must be able to see at a glance that the launch basket is the priority subset, not the entire whitelist. Do not show full base58 mint addresses in this table unless the user explicitly asks; symbol + name is enough.
Banned in proposal output (every item observed in past bad output):
- Raw JSON code fences for the policy object —
{ "asset_mode": "...", ... }. The Table 2 row schema replaces it entirely.
pct_bps integers in user-facing columns (use %).min_amm_liquidity_usd: 179000 style key-value lines copied from the JSON.- Listing the whitelist as a flat array of mint addresses without distinguishing priority vs buffer.
- Marketing-style bulleted "Why this works" sections that just paraphrase Table 2.
- Table 3 without Liquidity / 24h Volume / Floor check columns — the three-column form (Asset, Role, Notes) hides stranded buffers and is the root cause of the un-rotatable-buffer bug. Always render the five-column form.
- Any
✗ FAIL row in Table 3 in a presented proposal — it means the agent surfaced a stranded-buffer proposal to the user instead of fixing it. Either drop the failing mint or recompute the floors before rendering the proposal.
- Buffer mints listed without a
/market-metrics snapshot. If the snapshot wasn't fetched, the buffer is unverified; an unverified buffer must not appear in a proposal.
Once the user picks a proposal, transition into Step 3 (/policy/dry-run) using the picked basket + policy verbatim — the dry-run uses the priority assets only (the buffer assets are part of the policy, not the basket).
Step 3: Validate (Pre-flight dry-run)
Before calling /launch-dtf, run the proposed basket + policy through POST /policy/dry-run. This is free (no DB write, no on-chain cost) and returns every violation at once so the agent can fix them in one pass. Loop until ok: true or violations: [].
POST {DFM_API_URL}/api/v2/agent/policy/dry-run
Authorization: Bearer <DFM_AUTH_TOKEN>
{
"underlyingAssets": [
{ "symbol": "SOL", "pct_bps": 4000 },
{ "symbol": "JUP", "pct_bps": 3000 },
{ "name": "Bonk", "pct_bps": 3000 }
],
"policy": {
"asset_mode": "OPEN",
"min_amm_liquidity_usd": 100000,
"min_24h_volume_usd": 500000,
"min_assets": 3,
"max_assets": 12,
"max_asset_pct": 4000,
"min_asset_pct": 500
}
}
Clean response (proceed to Step 4):
{ "ok": true, "policyCheck": { "ok": true, "violations": [] } }
Flagged response — all violations returned together:
{
"ok": false,
"policyCheck": {
"ok": false,
"violations": [
{
"violationCode": "rule2MinAmmLiquidity",
"message": "Mint Bonk... has $30000 AMM liquidity; policy requires at least $100000.",
"details": { "mint": "Dez...", "observedUsd": 30000, "minUsd": 100000 }
},
{
"violationCode": "rule4MinMaxAssetCount",
"message": "Proposed 3 distinct assets; policy requires between 5 and 12.",
"details": { "distinctAssetCount": 3, "minAllowed": 5, "maxAllowed": 12 }
}
]
}
}
Fix strategy (priority order):
rule2MinAmmLiquidity / rule3Min24hVolume → lower the policy threshold (if the asset is strategy-critical) OR swap the asset out. Don't set the threshold above what /market-metrics reports for any included asset.rule4MinMaxAssetCount → adjust basket size OR the min_assets/max_assets bounds.rule5MaxPctPerAsset / rule6MinPctPerAssetIfHeld → rebalance the pct_bps allocations.rule1WhitelistBlacklist / assetModeViolation → fix asset_mode, asset_whitelist, or asset_blacklist.
Re-run dry-run after every fix. Only proceed to /launch-dtf once dry-run returns clean. Max ~3 iterations in practice; if you can't converge, surface the blocker to the user before incurring on-chain costs.
Step 4: Deploy (Two-step flow — policy-gated)
4a. Build the unsigned transaction (with policy)
Send POST {DFM_API_URL}/api/v2/agent/launch-dtf with the vault creation payload AND the policy. Backend runs the same pre-creation evaluation as /policy/dry-run, commits the policy (unlinked, keyed by vault_name + vault_symbol), and returns the unsigned tx. If any rule violates, it returns 400 with the full violations[] — no tx is built and nothing lands on-chain, so the agent can fix and retry.
{
"signerPublicKey": "<public key derived from DFM_AGENT_KEYPAIR>",
"vaultName": "Solana Blue Chips",
"vaultSymbol": "SOLBC",
"underlyingAssets": [
{ "symbol": "SOL", "mintBps": 4000 },
{ "symbol": "JUP", "mintBps": 3000 },
{ "name": "Bonk", "mintBps": 3000 }
],
"managementFees": 200,
"category": 0,
"threshold": 500,
"policy": {
"asset_mode": "OPEN",
"asset_whitelist": [],
"asset_blacklist": [],
"min_amm_liquidity_usd": 100000,
"min_24h_volume_usd": 500000,
"min_assets": 2,
"max_assets": 8,
"max_asset_pct": 4000,
"min_asset_pct": 500,
"min_stablecoin_pct": 0,
"max_rebalance_pct": 7500,
"min_rebalance_interval_hours": 4,
"max_rebalances_per_day": 3,
"max_rebalances_per_week": 14,
"launch_blackout_hours": 24,
"fee_locked": true,
"notes": "Auto-generated policy for blue chip strategy"
}
}
Headroom rationale (do not copy values blindly): the launch-time policy must allow the future basket migrations the agent will need to perform. See "Future-proofing checklist" below — the agent must run that checklist against the proposed policy before sending /launch-dtf.
Successful response (wrapped by the global ResponseMiddleware envelope — every successful agent endpoint without a top-level pagination field gets this wrapping):
{
"status": "success",
"message": "OK",
"data": {
"onChain": {
"transaction": "base64-encoded-unsigned-versioned-transaction...",
"vaultIndex": 42,
"vaultPda": "7Xk...def",
"vaultMintPda": "9Rm...ghi"
},
"policyId": "665c..."
}
}
Read the unsigned tx at body.data.onChain.transaction, not body.onChain.transaction. The same body.data.* access applies to vaultIndex, vaultPda, vaultMintPda, and policyId. Reading body.onChain.transaction returns undefined and the agent will report the launch as broken when the response is actually fine — the misread is the only thing broken.
Policy-violation response (400) — wrapped by the GlobalExceptionFilter. The thrown BadRequestException body is parked under error; the violations[] array lives at body.error.violations, not body.violations:
{
"statusCode": 400,
"path": "/api/v2/agent/launch-dtf",
"timestamp": "2026-05-06T12:34:56.789Z",
"error": {
"message": "Proposed basket violates the supplied constitutional policy. Adjust the policy or the basket and try again.",
"ok": false,
"violationCode": "rule2MinAmmLiquidity",
"violations": [
{ "violationCode": "rule2MinAmmLiquidity", "message": "...", "details": {...} }
],
"error": "Bad Request",
"statusCode": 400
}
}
Reading violations: body.error.violations — same per-entry shape as /policy/dry-run's policyCheck.violations (so the violation-code translation table is reusable). Treat body.violations as undefined; that path is the unwrapped dry-run shape, not the exception envelope.
4b. Sign and submit the transaction on-chain
Use the agent's local keypair to sign the returned transaction and submit it to Solana:
import { Keypair, VersionedTransaction, Connection } from "@solana/web3.js";
const bs58 = require("bs58").default || require("bs58");
const keypair = Keypair.fromSecretKey(bs58.decode(process.env.DFM_AGENT_KEYPAIR!));
const connection = new Connection(process.env.SOLANA_RPC_URL || "https://api.mainnet-beta.solana.com");
const txBytes = Buffer.from(response.data.onChain.transaction, "base64");
const tx = VersionedTransaction.deserialize(txBytes);
tx.sign([keypair]);
const signature = await connection.sendRawTransaction(tx.serialize(), {
skipPreflight: false,
preflightCommitment: "confirmed",
});
await connection.confirmTransaction(signature, "confirmed");
4c. Persist vault metadata to DB
After the on-chain transaction confirms, send POST {DFM_API_URL}/api/v2/agent/dtf-create with the transaction signature and metadata only. Policy was already committed during /launch-dtf and is linked to the new vault automatically by the chain-event pipeline. Do not send policy fields here — they are rejected.
{
"transactionSignature": "<signature from step 4b>",
"vaultName": "Solana Blue Chips",
"vaultSymbol": "SOLBC",
"vaultType": "DTF",
"description": "Top-tier Solana ecosystem tokens",
"tags": ["Blue Chip", "Solana", "DeFi"],
"logoUrl": "",
"bannerUrl": "",
"noRebalance": false
}
Successful response:
{
"vault": [
{
"eventType": "VaultCreated",
"vault": {
"vaultName": "Solana Blue Chips",
"vaultSymbol": "SOLBC",
"vaultIndex": 42,
"status": "active"
}
}
],
"policyId": "665c..."
}
Example: WHITELIST mode (for curated LST yield fund) — the policy fields move to /launch-dtf. /dtf-create still only carries metadata. Notice the asymmetry between underlyingAssets (3 priority assets that ship at launch) and asset_whitelist (6 mints — 3 priority + 3 buffer reserved for future /update-assets-tx rotations). The buffer mints are policy-eligible but never part of the launch basket. See "WHITELIST_ONLY" in the Policy field decision guide for the full priority + buffer rule.
Step 4a /launch-dtf body (policy for curated LST fund):
{
"signerPublicKey": "<agent pubkey>",
"vaultName": "Solana LST Yield",
"vaultSymbol": "SLSTY",
"underlyingAssets": [
{ "symbol": "mSOL", "mintBps": 4000 },
{ "symbol": "jitoSOL", "mintBps": 3500 },
{ "symbol": "bSOL", "mintBps": 2500 }
],
"managementFees": 150,
"category": 0,
"policy": {
"asset_mode": "WHITELIST_ONLY",
"asset_whitelist": [
"mSoLzYCxHdYgdzU16g5QSh3i5K3z3KZK7ytfqcJm7So",
"J1toso1uCk3RLmjorhTtrVwY9HJ7X8V9yYac6Y7kGCPn",
"bSo13r4TkiE4KumL71LsHTPpL2euBYLFx6h9HP3piy1",
"5oVNBeEEQvYi1cX3ir8Dx5n1P7pdxydbGF2X4TxVusJm",
"he1iusmfkpAdwvxLNGV8Y1iSbj4rUy6yMhEA3fotn9A",
"BqYCcAd1ZtrtdwoAxmqLtXMSrW1DHPV6LWLjB2TQrtyT"
],
"asset_blacklist": [],
"min_amm_liquidity_usd": 500000,
"min_24h_volume_usd": 500000,
"min_assets": 2,
"max_assets": 8,
"max_asset_pct": 5000,
"min_asset_pct": 1000,
"min_stablecoin_pct": 0,
"max_rebalance_pct": 2000,
"min_rebalance_interval_hours": 12,
"max_rebalances_per_day": 1,
"max_rebalances_per_week": 5,
"launch_blackout_hours": 24,
"fee_locked": true,
"notes": "Whitelisted LST-only yield fund (3 priority + 3 buffer mints)"
}
}
Step 4c /dtf-create body (metadata only):
{
"transactionSignature": "<signature>",
"vaultName": "Solana LST Yield",
"vaultSymbol": "SLSTY",
"vaultType": "YIELD_DTF",
"description": "Diversified Solana liquid staking token yield fund",
"tags": ["Yield", "LST", "Staking", "Solana"],
"logoUrl": "",
"bannerUrl": "",
"noRebalance": false
}
Policy field decision guide
The agent MUST decide ALL policy values based on the vault strategy. These values go into the policy sub-object of /launch-dtf (Step 4a) — not into /dtf-create. Calibrate every threshold with headroom for future basket migrations — a vault whose own policy makes its basket immutable cannot be rescued by the agent. See "Future-proofing checklist" below before sending /launch-dtf.
| Strategy Type | max_asset_pct | min_asset_pct | min_amm_liquidity_usd | min_24h_volume_usd | max_rebalances_per_day | min_rebalance_interval_hours |
|---|
| Conservative (blue chip, index) | 3000-4000 | 500-1000 | 500000 | 1000000 | 2 | 6 |
| Moderate (mixed, ecosystem) | 4000-5000 | 500 | 100000 | 500000 | 3 | 4 |
| Aggressive (meme, trending) | 5000-6000 | 300 | 50000 | 100000 | 4 | 2 |
| Yield (LSTs, staking, yield) | 4000-5000 | 500-1000 | 500000 | 500000 | 1 | 12 |
The liquidity/volume floors above are strategy ceilings, not target values. Always also apply the 0.5× safety buffer rule against the weakest included asset's actual /market-metrics snapshot — pick whichever is lower of (strategy table value, weakest_asset_snapshot × 0.5).
Always set:
asset_mode: choose based on the vault strategy:
-
"OPEN" — any asset can be added. No restrictions. Use for broad market / index / aggressive strategies.
-
"WHITELIST_ONLY" — only assets in asset_whitelist are allowed. Use for curated funds (e.g. "only blue chips", "only LSTs"). The whitelist must be a strict superset of the launch basket: priority assets (the 4/5/6 picks that go into underlyingAssets) PLUS a 3–4 asset buffer of category-eligible reserves that the agent may rotate in later via /update-assets-tx policy updates. The buffer assets are NEVER part of the initial launch — only the priority assets ship in underlyingAssets. The buffer exists so future basket migrations don't require a (forbidden) policy expansion.
Critical: floors are calibrated against the weakest of the combined whitelist (priority ∪ buffer), NOT against the priority basket alone. This is the most-bungled rule in the skill — past proposals have set floors at priority_weakest × 0.5 and then included buffer mints whose liquidity is below that floor. Result: the buffer mint is policy-stranded the moment the vault launches. It is in asset_whitelist (so Rule 1 passes for it), but every attempted rotation that puts it in the basket fails Rule 2 / Rule 3 — it is visible but un-rotatable. The vault can only ever rotate among the priority assets it launched with.
Correct flow (use this exactly):
- Pick priority assets; fetch
/market-metrics for each.
- Pick buffer candidates (3–4 mints from the same category); fetch
/market-metrics for each. Do not skip this fetch. A buffer mint without a snapshot cannot be validated and must not be added to the whitelist.
- Compute
weakest_liquidity = min(liquidity_usd over priority ∪ buffer) and weakest_volume = min(volume_24h_usd over priority ∪ buffer). Note "over priority ∪ buffer" — both groups participate.
- Set
min_amm_liquidity_usd = floor(weakest_liquidity × 0.5) and min_24h_volume_usd = floor(weakest_volume × 0.5), rounded down to a clean number.
- Verify every buffer mint clears the resulting floors (they should, by construction — if any fails, the math was wrong; recompute).
If a buffer candidate's snapshot is far weaker than the priority assets (so step 3 would push the floors uselessly low), drop the candidate from the buffer instead of dragging the floors down. The buffer is only useful if its members can actually be rotated in — a "buffer" mint that drags the floor below half of the priority weakest is a Trojan horse: it signals depth the vault doesn't have, and dilutes the floors so much that future candidates (the ones the agent might want to add later via policy updates) become too weak to gate against.
Concrete sizing: priority count + buffer count ≤ max_assets. Buffer count ≥ 3 (so there are real rotation options). Every whitelisted mint must clear the proposed min_amm_liquidity_usd and min_24h_volume_usd floors with the same 0.5× safety buffer the priority assets enjoy.
-
"OPEN_BLACKLIST" — all assets allowed except those in asset_blacklist. Use when you want to exclude specific risky assets. Set asset_blacklist to the mint addresses to exclude.
-
"WHITELIST_BLACKLIST" — only whitelisted assets allowed, with additional blacklist exclusions. Use for strict curated funds with explicit exclusions. Apply the same priority + 3–4 buffer rule as WHITELIST_ONLY to asset_whitelist; use asset_blacklist only for explicit category exclusions. Launch ships priority assets only.
-
Decision rule: If the user asks for a specific category fund (e.g. "LST fund", "blue chip only", "top 5 DeFi tokens"), use WHITELIST_ONLY. If the user asks for broad exposure, use OPEN. If the user says "exclude meme coins" or similar, use OPEN_BLACKLIST.
min_assets: max(1, launch_basket_count − 1). Never set min_assets == launch_basket_count — that traps the basket at exactly that size, with no room to drop a single asset on a future migration. (TOP3S launched with min_assets: 3, max_assets: 3 — locked forever to a 3-asset basket and any single-asset swap exceeds the per-update cap.)max_assets: min(12, launch_basket_count + 3), with 12 as the hard ceiling. Always leave room to grow the basket by 2–3 assets.max_rebalance_pct: 5000–7500 (50–75%) for any basket of ≤4 assets; 3000–5000 is acceptable only for baskets of ≥6 assets where individual weights are already small. Never set below the value of 2 × max_asset_pct — replacing one asset moves both the outgoing weight and the incoming weight, so the aggregate movement is roughly twice the swapped weight. Setting max_rebalance_pct < 2 × max_asset_pct makes any single-asset swap structurally impossible. (TOP3S launched with max_rebalance_pct: 2500 and max_asset_pct: 5500 — every JUP→ETH swap is mathematically blocked.)max_rebalances_per_week: max_rebalances_per_day * 7 or lesslaunch_blackout_hours: 24 (prevent rebalancing in first 24h)fee_locked: true for index / yield / curated mandates where the management-fee promise is part of the product. Set false if the strategy may need to adjust fees as TVL grows (you can always lock later via a policy update; you cannot unlock if the fee was locked at launch).notes: brief description of the strategy and policy rationale
Future-proofing checklist (run BEFORE /launch-dtf)
The agent must mentally tick each of these against the proposed policy + basket. Failing any single one is grounds to adjust the policy and re-run dry-run — never launch a vault that fails this checklist. The cost of getting it wrong is terminal: a misconfigured constitutional policy cannot be relaxed by the agent and effectively bricks the vault for migrations.
- Asset-count headroom — Is
max_assets ≥ launch_basket_count + 2 AND min_assets ≤ launch_basket_count − 1? If no → widen the bounds.
- Single-swap feasibility — Is
max_rebalance_pct ≥ 2 × max_asset_pct? Equivalent question: if I had to replace the largest-weight asset tomorrow, would the resulting allocation movement fit under max_rebalance_pct? If no → raise max_rebalance_pct (preferred) or lower max_asset_pct.
- Liquidity/volume buffer (priority assets) — For every asset in the launch basket (priority): is
min_amm_liquidity_usd ≤ asset.liquidity_usd × 0.5 AND min_24h_volume_usd ≤ asset.volume_24h_usd × 0.5? If no → halve the floors. Snapshots fluctuate; the floor must absorb a 50% intraday dip without locking the asset.
- Removability — For every asset currently in the basket, simulate a basket without that asset: does the simulated basket still satisfy
min_assets, max_asset_pct, and min_asset_pct? If any asset is non-removable, the vault is one bad volume snapshot away from being permanently stuck.
- Catch-22 defence — If any included asset's
/market-metrics snapshot is within 30% of the proposed min_24h_volume_usd or min_amm_liquidity_usd, lower the floor further or swap the asset. An asset that hovers near the floor will eventually fall below it, and then no intermediate basket containing it can pass the volume gate, blocking the migration entirely.
- Buffer rotatability (WHITELIST modes only) — For every mint in
asset_whitelist that is NOT in the launch basket (i.e. every Buffer — reserve mint): does that mint's /market-metrics snapshot pass the proposed min_amm_liquidity_usd and min_24h_volume_usd floors with the same 0.5× margin the priority assets get? If any buffer mint fails — even by a single dollar of volume — it is policy-stranded: it sits in the whitelist looking rotatable but Rule 2 / Rule 3 will block every /update-assets-tx that tries to bring it into the basket. Drop the failing buffer mint (preferred — keeps strong floors), or, only if the agent really needs that specific mint as a future option, lower both floors so the mint clears with the 0.5× margin (this also lowers the bar for every future buffer candidate, so weigh it carefully). Past field failures from this exact mistake: a Solana-DeFi vault launched with a $1.5M liquidity floor and ORCA ($361K) / RENDER ($540K) in the buffer — both un-rotatable from day one. A meme-beta vault launched with a $70K volume floor and DRIFT ($49K) in the buffer — un-rotatable.
If the user's stated strategy (e.g. "exactly 3 concentrated picks") seems to want a rigid policy, do not encode rigidity by tightening the policy bounds. The strategy intent belongs in the basket and notes; the policy bounds belong wide enough to keep the vault manageable.
Backend payload rules
For /launch-dtf payloads:
category: 0 (Manual) for agent-created vaults.- In
underlyingAssets, send symbol or name (preferred). Backend resolves mintAddress from asset-allocation.
- Hard restriction: never include USDC (
symbol: "USDC" or name: "USD Coin") in underlyingAssets.
- If a candidate list contains USDC, remove it and replace it with another eligible non-USDC asset before sending
launch-dtf.
- Asset count: minimum 1, maximum 12 assets in
underlyingAssets. The backend rejects payloads outside this range.
policy object is REQUIRED. Include every field the agent wants enforced. Omitted fields default to 0/disabled.- The basket in
underlyingAssets is evaluated against policy server-side (same rules as /policy/dry-run). If any rule fails, /launch-dtf returns 400 with violations[] and no tx is built.
For /dtf-create payloads:
- METADATA ONLY. Do NOT send any policy fields (
asset_mode, asset_whitelist, min_amm_liquidity_usd, etc.). The policy is already committed during /launch-dtf and linked automatically.
- Keep only:
transactionSignature, vaultName, vaultSymbol, vaultType, description, tags, logoUrl, bannerUrl, noRebalance.
- Set
vaultType: "DTF" for standard funds, "YIELD_DTF" for yield/LST funds.
- Set
logoUrl, bannerUrl to empty strings.
vaultName and vaultSymbol must match what was used in launch-dtf.
Signing helper for API calls that return unsigned transactions
Both launch-dtf and distribute-fees return base64-encoded unsigned VersionedTransactions. Use this pattern to sign and submit:
import { Keypair, VersionedTransaction, Connection } from "@solana/web3.js";
const bs58 = require("bs58").default || require("bs58");
async function signAndSendTransaction(
base64Tx: string,
keypair: Keypair,
connection: Connection
): Promise<string> {
const txBytes = Buffer.from(base64Tx, "base64");
const tx = VersionedTransaction.deserialize(txBytes);
tx.sign([keypair]);
const signature = await connection.sendRawTransaction(tx.serialize(), {
skipPreflight: false,
preflightCommitment: "confirmed",
});
await connection.confirmTransaction(signature, "confirmed");
return signature;
}
const keypair = Keypair.fromSecretKey(bs58.decode(process.env.DFM_AGENT_KEYPAIR!));
const connection = new Connection(process.env.SOLANA_RPC_URL || "https://api.mainnet-beta.solana.com");
const sig = await signAndSendTransaction(response.data.onChain.transaction, keypair, connection);
CRITICAL ERROR HANDLING RULES for vault deployment:
-
NEVER call launch-dtf again after a transaction has been signed and submitted on-chain. The on-chain vault creation is irreversible and costs USDC. If dtf-create fails, only retry dtf-create with the SAME transaction signature, vault name, and symbol. Do NOT generate a new name/symbol or call launch-dtf again.
-
If launch-dtf returns 400 with policy violations[] (before any on-chain submission): no policy was committed, no tx was built, no on-chain cost was incurred. Fix the basket OR policy per the violation codes (same guidance as Step 3 dry-run) and retry launch-dtf. Consider running /policy/dry-run first to iterate cheaply.
-
If launch-dtf fails for other reasons (e.g. validation error, asset not found, insufficient USDC): fix the payload and retry launch-dtf — still no on-chain cost since the tx hasn't been built.
-
If signing/submission fails: you MAY retry launch-dtf to get a new unsigned transaction. The policy was already committed on the first call — reuse the exact same vaultName and vaultSymbol so the existing unlinked policy is picked up (changing them would commit a second policy with a different name).
-
If dtf-create fails (after successful on-chain submission): ONLY retry dtf-create with the exact same transactionSignature, vaultName, and vaultSymbol. NEVER change these values. NEVER call launch-dtf again. The policy is already committed and will be linked by the chain-event pipeline regardless.
-
Keep the transaction signature: after a successful on-chain submission, store the signature and reuse it for all dtf-create retries. This is the link between the on-chain vault and the database record.
Step 5: Manage (Ongoing, autonomous)
After launch, the agent autonomously:
- Lists the user's vaults via
GET {DFM_API_URL}/api/v2/agent/vaults/user?page=1&limit=10&vaultType=dtf&includeTvl=true (paginated; switch vaultType=yield_dtf for yield funds)
- Browses platform-featured vaults via
GET {DFM_API_URL}/api/v2/agent/vaults/featured/list?page=1&limit=10&vaultType=dtf&includeTvl=true
- Monitors vault state via
GET {DFM_API_URL}/api/v2/agent/dtf/:symbol/state
- Checks rebalancing readiness via
GET {DFM_API_URL}/api/v2/agent/dtf/:symbol/rebalance/check
- Executes rebalances via
POST {DFM_API_URL}/api/v2/agent/dtf/:symbol/rebalance (admin wallet executes behind the scenes)
- Distributes accrued fees via
POST {DFM_API_URL}/api/v2/agent/dtf/:symbol/distribute-fees (returns unsigned tx for agent to sign)
Listing vaults (/vaults/user, /vaults/featured/list): both endpoints take the same four query params — page, limit, vaultType (dtf | yield_dtf), includeTvl. Use /vaults/user to enumerate the caller's own vaults with pagination and type filtering (preferred over the legacy unpaginated /dtf/my-vaults); use /vaults/featured/list to surface featured vaults across the platform. Always send includeTvl=true — both endpoints must return totalValueLocked and sharePrice. Iterate page until pagination.hasNext is false (or pagination.page >= pagination.totalPages).
Mapping natural-language requests to page: translate the user's phrasing literally into the page query param.
| User says | Send |
|---|
| "show me my vaults" / "list my DTFs" | ?page=1&limit=10&... (always start at page 1) |
| "show me the second page" / "page 2" | ?page=2&limit=10&... |
| "page 5 of featured vaults" | ?page=5&limit=10&... (against /vaults/featured/list) |
| "next page" / "show me more" | ?page=<lastShown + 1>&.... Refuse and tell the user "you're on the last page" if the previous response had pagination.hasNext === false. |
| "previous page" / "go back" | ?page=<lastShown - 1>&.... If lastShown was already 1, return the same page-1 results (don't let page go below 1). |
| "first page" / "go back to the start" | ?page=1&... |
| "last page" | First call page=1 to read pagination.totalPages, then call ?page=<totalPages>&... |
| "show me 25 per page" / "fetch 50 at a time" | Forward limit as given (clamp to a sensible max like 100 if abused). Reset page to 1 when limit changes. |
Remembering pagination state across turns: the skill is stateless — there's no built-in "current page" memory. Track the last pagination.page and pagination.totalPages you returned in your own conversation context so that "next page" / "previous page" requests resolve correctly. If the user switches filters (vaultType, search, limit), reset to page=1 because the result set has changed and the old page index no longer maps to the same data.
After fetching a page, surface the navigation footer to the user: e.g. "Page 2 of 5 — say 'next page' for more, or 'page N' to jump." Use pagination.hasNext / pagination.hasPrev to decide which controls to mention. Never hide pagination from the user — if pagination.totalPages > 1 they need to know more pages exist.
Response shape (both endpoints — paginated, NOT envelope-wrapped):
{
"data": [],
"pagination": { "page": 1, "limit": 10, "total": 5, "totalPages": 1, "hasNext": false, "hasPrev": false }
}
The vault list is body.data — a flat array directly on data. Iterate body.data.map(...) to walk the vaults; read body.pagination for navigation.
Common mistakes — DO NOT make these reads:
| Wrong access | Why it fails | Correct access |
|---|
body.data.vaults | The array is body.data itself; there is no nested vaults key here. (You're confusing it with the legacy /dtf/my-vaults shape, which DOES wrap as { vaults: [...], total }.) | body.data |
body.data.data | These two endpoints carry a pagination field, so the global ResponseMiddleware does not wrap them with { status, message, data: ... }. There is no double-data. | body.data |
body.vaults | No top-level vaults field on these endpoints. | body.data |
body.results / body.items | Generic-API instinct that doesn't match this contract. | body.data |
Why the response is unwrapped: the global ResponseMiddleware interceptor passes any response with a top-level pagination field through as-is (no { status, message, data } envelope). The skill's call() helper handles this automatically — it leaves paginated responses untouched. If you ever see body.status === "success" on a list endpoint, something is wrong upstream; treat it as a malformed response and surface to the user.
Vault item fields: each Vault in body.data carries vaultName, vaultSymbol, vaultAddress, description, vaultIndex, tags[], feeConfig.managementFeeBps, underlyingAssets[] (each with nested assetAllocation: { name, symbol, logoUrl } and pct_bps), creator (rich profile object: name, walletAddress, avatar, twitter_username), category: { name }, totalValueLocked, sharePrice, vaultApy, performance7d, plus string-typed nav and totalSupply. See references/api-reference.md § 12a for the full field table.
Endpoint vs. response-shape cheat sheet (the difference between these is the most common source of "vault listing" bugs):
| Endpoint | Response shape | Status |
|---|
GET /vaults/featured/list | { data: Vault[], pagination: {...} } | Use this — paginated, current. |
GET /vaults/user | { data: Vault[], pagination: {...} } | Use this — paginated, current. |
GET /dtf/my-vaults | { vaults: Vault[], total: number } | Legacy / deprecated — different shape. Don't read this from the agent unless explicitly asked; route every "my vaults" phrasing to /vaults/user. |
When displaying vault lists to the user, surface the readable fields — vaultName / vaultSymbol, description, the asset basket as a comma-separated symbol pct% summary (divide pct_bps by 100), totalValueLocked formatted as USD, performance7d as a percentage, feeConfig.managementFeeBps / 100 as the fee %, and creator.name (or creator.twitter_username) as the author. Skip _id, id, raw pct_bps, internal Mongo fields, and daoconfig: null. nav and totalSupply are decimal-safe strings — parse with Number() before any math, and treat "0" / null vaultApy / null performance7d as "no data yet" for new vaults.
WRONG vs RIGHT — vault listing output
The user just received the following BAD output for "list my DTFs". Every parenthetical / footer fragment below is forbidden:
❌ WRONG:
Here are the DTFs currently available from your DFM account context
(/vaults/user, paginated across all pages):
DTF (9)
AIPIN — Solana AI + DePIN Infrastructure
TASR — TA Structure Rotation
…
Yield DTF (4)
YLST — Solana Yield LST
…
Total: 13 vaults (9 DTF + 4 Yield DTF)
If you want, I can also return this with TVL/share price sorting
(highest TVL first) or only "platform featured" vaults.
Banned fragments above:
- "from your DFM account context (/vaults/user, paginated across all pages)" — leaks the endpoint path and pagination internals. Banned by the "no endpoint paths in user output" rule.
- "(highest TVL first) or only 'platform featured' vaults" — speculative follow-up offering the user didn't ask for, exposes the existence of a separate "featured vaults" surface they don't need to know about.
The RIGHT output for the same listing is always a markdown table — one short framing sentence, then the table, then a pagination footer only if more pages exist. Bulleted lists for vault listings are explicitly banned (see "Output formatting" rule in Behavioral Guidelines).
✅ RIGHT:
Here are your vaults — 13 in total (9 DTFs and 4 Yield DTFs).
| Type | Symbol | Name | TVL (USD) | 7d % | Fee |
| --------- | ---------- | --------------------------------- | --------- | ------ | ----- |
| DTF | AIPIN | Solana AI + DePIN Infrastructure | $1,240.50 | +3.41% | 1.50% |
| DTF | TASR | TA Structure Rotation | $890.10 | -0.12% | 2.00% |
| DTF | OBLETH | Open Blacklist ETH | $0.00 | — | 1.50% |
| DTF | WHL3 | TriGuard White | $0.00 | — | 1.50% |
| DTF | POP-DTF | Popeye Index | $14.80 | +13.01%| 1.50% |
| DTF | EXECX | Execution Stack X | $0.00 | — | 2.00% |
| DTF | BARBL | Barbell Degen | $0.00 | — | 2.00% |
| DTF | AGE-DTF | Agentonomy | $14.80 | +13.01%| 1.50% |
| DTF | ICM-DTF | ICM Prime | $0.00 | — | 1.50% |
| Yield DTF | YLST | Solana Yield LST | $0.00 | — | 1.00% |
| Yield DTF | NX6-YDTF | NEXUS-6 | $0.00 | — | 2.00% |
| Yield DTF | REA-YDTF | Real Bastion | $0.00 | — | 2.00% |
| Yield DTF | AUR-YDTF | Aurum Stake | $0.00 | — | 2.00% |
Column schema for vault listings (mandatory):
| Column | Source | Format |
|---|
Type | vaultType ("dtf" → "DTF", "yield_dtf" → "Yield DTF") | Title-case, never raw enum |
Symbol | vaultSymbol | As-is |
Name | vaultName | As-is |
TVL (USD) | totalValueLocked | $<n>.<2dp> with thousand separators; $0.00 when 0 |
7d % | performance7d | +<n>.<2dp>% / -<n>.<2dp>%; — when null (do NOT show "0.00%" for new vaults) |
Fee | feeConfig.managementFeeBps / 100 | <n>.<2dp>% |
Optional columns — add only when the user asked for them or it's contextually relevant: Author (creator.name or creator.twitter_username prefixed @), APY (vaultApy, — for null), Basket (top 3 assets by pct_bps as SYM 40% / SYM 30% / SYM 30%).
What changed from the WRONG output:
- Strict table format — every vault is a row. The agent does not get to choose between bullets, numbered lists, or paragraphs for listings. Markdown table only.
- No endpoint paths. "your vaults" replaces "from your DFM account context (/vaults/user, ...)".
- No "paginated across all pages" — pagination is an internal mechanism. If you fetched multiple pages to assemble the answer, say nothing about it. If
totalPages > 1 and you only fetched page 1, then add a one-line footer below the table: "Page 1 of N — say 'next page' for more." That's the only acceptable mention of pagination, and only when relevant.
- No unsolicited follow-up offers. Don't end with "If you want, I can also return this with…".
- TVL = $0.00 / 7d =
— for new vaults — never invent numbers; render null / "0" as $0.00 / —.
Listing all platform DTFs (both vault types, all pages, featured + non-featured)
When the user asks for all DTFs on the platform — "list all DTFs on DFM", "show me every vault on the platform", "what DTFs are available on DFM", "give me list of vaults available on DFM", "browse all DTFs" — the agent runs a platform-wide listing flow by combining two separate endpoints (the platform exposes them as different surfaces — there is no isFeaturedVault query filter; do not invent one):
| Endpoint | What it returns | Use for |
|---|
GET /vaults/user?vaultType=<type> | Universal — every vault on the platform of the given type. | The "all DTFs" baseline. |
GET /vaults/featured/list?vaultType=<type> | Featured-only — the curated subset surfaced on the platform's featured section. | Cross-reference to flag which baseline rows are featured. |
Both endpoints take the same page / limit / vaultType / includeTvl query params and return the same paginated { data: Vault[], pagination: {...} } shape (no envelope wrap). The agent fetches each independently, paginates to completion, and merges in conversation context.
Algorithm:
- Two vault-type passes per endpoint — run with
vaultType=dtf and vaultType=yield_dtf separately. The endpoints filter by exactly one type.
- Paginate each pass to completion. Start at
page=1 with limit=50 (larger limit, fewer round-trips). After each call, read pagination.hasNext; if true, increment page and repeat. Stop when hasNext === false. Always send includeTvl=true.
- Cross-reference for the Featured column — build a
Set of vaultSymbol values from the /vaults/featured/list results. For each vault from /vaults/user, set _featured = true if its symbol is in that set, otherwise false.
- Merge into one output table — vault type as a column, featured flag as a column, one row per unique vault from
/vaults/user.
No isFeaturedVault query parameter exists on either endpoint. Do not append &isFeaturedVault=true or &isFeaturedVault=false — the platform uses the two-endpoint split (universal vs. featured-only) instead.
Inline node -e example — runs four fetch passes in total (universal × two vault types, plus featured × two vault types), merges, emits one JSON for the user-facing table:
node -e '
const http = require("http");
const https = require("https");
// Generic paginate-to-completion against either listing endpoint.
async function fetchAll(path, vaultType) {
const all = [];
let page = 1;
while (true) {
const url = new URL(process.env.DFM_API_URL
+ path
+ `?page=${page}&limit=50&includeTvl=true&vaultType=${vaultType}`);
const client = url.protocol === "https:" ? https : http;
const r = await new Promise((resolve, reject) => {
const req = client.get(url, {
headers: { "Authorization": "Bearer " + process.env.DFM_AUTH_TOKEN }
}, (res) => {
let data = ""; res.on("data", (c) => data += c);
res.on("end", () => {
try { resolve({ status: res.statusCode, body: JSON.parse(data) }); }
catch { resolve({ status: res.statusCode, body: data }); }
});
});
req.on("error", reject);
});
if (r.status !== 200) {
console.log("ERROR " + r.status + " from " + path + ": " + JSON.stringify(r.body));
return all;
}
all.push(...(r.body.data || []));
if (!r.body.pagination?.hasNext) break;
page += 1;
}
return all;
}
(async () => {
// Universal — every vault on the platform.
const dtfAll = await fetchAll("/api/v2/agent/vaults/user", "dtf");
const ydtfAll = await fetchAll("/api/v2/agent/vaults/user", "yield_dtf");
// Featured — curated subset surfaced on the platform.
const dtfFeatured = await fetchAll("/api/v2/agent/vaults/featured/list", "dtf");
const ydtfFeatured = await fetchAll("/api/v2/agent/vaults/featured/list", "yield_dtf");
// Build the featured-symbol set for the Featured column.
const featuredSymbols = new Set([
...dtfFeatured.map(v => v.vaultSymbol),
...ydtfFeatured.map(v => v.vaultSymbol),
]);
const rows = [
...dtfAll.map(v => ({ ...v, _type: "DTF", _featured: featuredSymbols.has(v.vaultSymbol) })),
...ydtfAll.map(v => ({ ...v, _type: "Yield DTF", _featured: featuredSymbols.has(v.vaultSymbol) })),
];
console.log(JSON.stringify({
totalDtf: dtfAll.length,
totalYieldDtf: ydtfAll.length,
featuredCount: featuredSymbols.size,
rows: rows.map(v => ({
type: v._type,
featured: v._featured,
symbol: v.vaultSymbol,
name: v.vaultName,
tvl: v.totalValueLocked,
perf7d: v.performance7d,
feeBps: v.feeConfig?.managementFeeBps,
apy: v.vaultApy,
})),
}));
})().catch(e => console.log("FATAL " + (e?.message || String(e))));
'
Featured-only listings (when the user says "show featured vaults", "only featured", "what's curated on the platform") skip the universal pass entirely — call only /vaults/featured/list?vaultType=dtf and /vaults/featured/list?vaultType=yield_dtf, paginate each, render in the same combined table format. Every row in that output is featured by definition (no Featured column needed; or render the column with ⭐ on every row for visual consistency).
Output template (mandatory — single combined table):
✅ RIGHT — platform-wide DTF listing:
Here are all DTFs on the platform — <total> in total (<dtfCount> DTFs and <yieldCount> Yield DTFs, of which <featuredCount> are platform-featured).
| Type | Featured | Symbol | Name | TVL (USD) | 7d % | Fee |
| --------- | -------- | ---------- | --------------------------------- | ---------- | ------- | ----- |
| DTF | ⭐ | AGE-DTF | Agentonomy | $14.80 | +13.01% | 1.50% |
| DTF | ⭐ | ICM-DTF | ICM Prime | $0.00 | — | 1.50% |
| DTF | | AIPIN | Solana AI + DePIN Infrastructure | $1,240.50 | +3.41% | 1.50% |
| DTF | | TASR | TA Structure Rotation | $890.10 | -0.12% | 2.00% |
| DTF | | POP-DTF | Popeye Index | $14.80 | +13.01% | 1.50% |
| DTF | | EXECX | Execution Stack X | $0.00 | — | 2.00% |
| DTF | | BARBL | Barbell Degen | $0.00 | — | 2.00% |
| DTF | | OBLETH | Open Blacklist ETH | $0.00 | — | 1.50% |
| DTF | | WHL3 | TriGuard White | $0.00 | — | 1.50% |
| Yield DTF | ⭐ | NX6-YDTF | NEXUS-6 | $0.00 | — | 2.00% |
| Yield DTF | ⭐ | REA-YDTF | Real Bastion | $0.00 | — | 2.00% |
| Yield DTF | ⭐ | AUR-YDTF | Aurum Stake | $0.00 | — | 2.00% |
| Yield DTF | | YLST | Solana Yield LST | $0.00 | — | 1.00% |
Column schema (platform-wide listing):
| Column | Source | Format |
|---|
| Type | derived (vaultType → "DTF" / "Yield DTF") | Title-case. |
| Featured | true when the vault's symbol appears in the /vaults/featured/list result set; false otherwise. (Cross-reference, not a response field.) | ⭐ when featured; empty cell (not —, not false) when not. |
| Symbol | vaultSymbol | as-is |
| Name | vaultName | as-is |
| TVL (USD) | totalValueLocked | $<n>.<2dp> with thousand separators; $0.00 when 0 |
| 7d % | performance7d | +/-<n>.<2dp>%; — when null |
| Fee | feeConfig.managementFeeBps / 100 | <n>.<2dp>% |
Sort order (mandatory): group by type (DTFs first, Yield DTFs second), then within each group sort featured rows ahead of non-featured, then by totalValueLocked descending. This puts the highest-signal vaults at the top of each group.
Pagination footer: never show one for platform-wide listings — the agent already paginated to completion across both vault types. The user's "all DTFs" intent is satisfied in a single response. If the combined list is unmanageably long (say 50+ rows), append a one-line note offering to filter: "That's everything on the platform. Want me to filter to just featured, just DTFs, or by TVL?"
Banned in this output:
- "from
/vaults/featured/list" or any endpoint mention.
- "paginated across all pages" — the user doesn't need to know how the data was assembled.
- Separating featured vs non-featured into two separate tables — they go into ONE table with the Featured column distinguishing them.
- Listing only featured vaults when the user said "all" — the user explicitly wants both.
When the user follows up with a filter ("only featured" / "only DTFs" / "highest TVL"): re-render the same combined table with rows filtered accordingly. Don't re-fetch; you already have the full set in conversation context.
Detailed listing mode — render every field from the response
When the user asks for a "list" of platform DTFs in a way that implies they want full data on each vault — "give me list of all DTFs", "give me detailed data of all vaults on DFM", "list all vaults with details", "show every vault with full info", "what DTFs are available — give me the full data" — render the detailed format instead of the compact summary table. The detailed format is additive, not replacement: lead with the same compact summary table, then render one detail block per vault below it.
Trigger phrasings that select detailed mode (vs the summary-only mode above):
| Phrasing | Mode |
|---|
| "show me all DTFs", "what DTFs are available", "browse vaults", "list DTFs" | Summary table only (the §"Listing all platform DTFs" flow above). |
| "give me list", "give me the list", "give me detailed data", "list with details", "show every vault with full data", "give me everything you have on each vault", "detailed list of all DTFs" | Detailed mode — summary table at top, then per-vault detail blocks. |
If the phrasing is ambiguous, prefer detailed mode — the user asked for a "list", they generally want the data the platform has on each vault, not just symbols and TVL.
Algorithm: identical to the summary-only flow (four fetchAll passes, build featuredSymbols set, merge). The difference is the rendering — emit the summary table first, then iterate the merged rows in the same sort order and render one detail block per vault.
Output template (detailed mode — summary table + per-vault detail blocks):
✅ RIGHT — detailed platform-wide DTF listing:
Here are all DTFs on the DFM platform — <total> in total (<dtfCount> DTFs and <yieldCount> Yield DTFs, of which <featuredCount> are platform-featured). Summary at the top, full details for each vault below.
| Type | Featured | Symbol | Name | TVL (USD) | 7d % | Fee |
| --------- | -------- | ---------- | --------------------------------- | ---------- | ------- | ----- |
| DTF | ⭐ | AGE-DTF | Agentonomy | $19.34 | 0.00% | 1.50% |
| DTF | ⭐ | ICM-DTF | ICM Prime | $11.97 | 0.00% | 1.50% |
| DTF | | TASR | TA Structure Rotation | $11.17 | 0.00% | 2.00% |
| ... | | ... | ... | ... | ... | ... |
---
**1. AGE-DTF — Agentonomy** ⭐
*AI agent tokens basket designed for narrative exposure to autonomous agents, agent launchpads, and "agent-driven markets". This is intentionally higher volatility and more reflexive than DeFi.*
Tags: AI-agents, agent-economy, high-beta, narrative-index, experimental
Overview:
| Field | Value |
| ------------- | ----------------- |
| Symbol | AGE-DTF |
| Type | DTF |
| Category | Manual |
| Vault index | 53 |
| Vault address | FdxU…tp8B |
| TVL | $19.34 |
| Share price | $1.7615 |
| NAV | $19.34 |
| Total supply | 10.981699 |
| Mgmt fee | 1.50% |
| 7d perf | 0.00% |
| APY | — |
| Creator | Tops (HzgvD…rUrM) |
Composition (7 assets):
| Symbol | Asset | Allocation |
| ------- | ----------------- | ---------- |
| VIRTUAL | Virtual Protocol | 40.00% |
| ZEREBRO | zerebro | 25.00% |
| RENDER | Render Token | 15.00% |
| NOS | Nosana | 12.00% |
| GRASS | Grass | 6.00% |
| IO | IO | 1.00% |
| DITH | Dither | 1.00% |
---
**2. ICM-DTF — ICM Prime** ⭐
*Solana's Internet Capital Markets stack in one index: issuance and attention markets plus the core rails for trading, leverage, and settlement.*
Tags: ICM, capital-markets, Solana, trading-rails, infra, high-beta
Overview:
| Field | Value |
| ------------- | ----------------- |
| Symbol | ICM-DTF |
| Type | DTF |
| Category | Manual |
| Vault index | 47 |
| Vault address | 3eH1…Vuqx |
| TVL | $11.97 |
| Share price | $0.9882 |
| NAV | $11.97 |
| Total supply | 12.111534 |
| Mgmt fee | 1.50% |
| 7d perf | 0.00% |
| APY | — |
| Creator | Tops (HzgvD…rUrM) |
Composition (9 assets):
| Symbol | Asset | Allocation |
| ------ | ------------- | ---------- |
| JUP | Jupiter | 18.00% |
| RAY | Raydium | 16.00% |
| PYTH | Pyth Network | 15.00% |
| ORCA | Orca | 12.00% |
| PUMP | Pump | 12.00% |
| DRIFT | Drift | 10.00% |
| KMNO | Kamino | 10.00% |
| META | MetaDAO | 5.00% |
| ORE | ORE | 2.00% |
---
(...repeat one detail block per vault, in the same sort order as the summary table...)
Per-vault detail block — field schema:
| Block element | Source | Format / rules |
|---|
| Heading | vaultSymbol + vaultName | **<n>. <symbol> — <name>**; append ⭐ when the vault is featured. <n> is the row index across the merged sort order. |
| Description line | description | Italicized; render as a single line. Skip the line entirely if description is null/empty. |
| Tags line | tags[] | Tags: <a>, <b>, <c>. Skip the line entirely if tags is empty/missing. |
| Overview → Symbol | vaultSymbol | as-is |
| Overview → Type | derived (dtf → DTF, yield_dtf → Yield DTF) | Title case. |
| Overview → Category | category.name | as-is; if null, render —. |
| Overview → Vault index | vaultIndex | integer; — if missing. |
| Overview → Vault address | vaultAddress | Truncate <first4>…<last4> (e.g. FdxU…tp8B). Never render the full address. |
| Overview → TVL | totalValueLocked | $<n>.<2dp> with thousand separators; $0.00 when 0/null. |
| Overview → Share price | sharePrice | $<n>.<4dp>; — if null. |
| Overview → NAV | nav (decimal-as-string — parse with Number()) | $<n>.<2dp>; — if null. |
| Overview → Total supply | totalSupply (decimal-as-string) | <n>.<6dp>; — if null. |
| Overview → Mgmt fee | feeConfig.managementFeeBps / 100 | <n>.<2dp>%. |
| Overview → 7d perf | performance7d | +/-<n>.<2dp>%; — when null. Render 0.00% (not +0.00%) when 0. |
| Overview → APY | vaultApy | <n>.<2dp>%; — when null/0. |
| Overview → Creator | creator.name + creator.walletAddress | <name> (<first4>…<last4>). If creator is null, render —. Never render the full wallet, the creator's _id, email, avatar URL, social links, or twitter handle — those are internal. |
| Composition heading | underlyingAssets.length | Composition (<N> assets): |
| Composition row → Symbol | underlyingAssets[].assetAllocation.symbol | as-is |
| Composition row → Asset | underlyingAssets[].assetAllocation.name | as-is |
| Composition row → Allocation | underlyingAssets[].pct_bps / 100 | <n>.<2dp>%. Sort rows by pct_bps descending. |
Separator between vaults: --- on its own line. No separator after the last vault.
Banned in detailed output (in addition to the summary-mode bans):
- Internal Mongo
_id fields (vault, asset allocation, category, creator) — never surface them.
- Full wallet addresses or vault addresses — always truncate
<first4>…<last4>.
logoUrl, avatar, twitter_username, email, socialLinks, useAvatarImage, useTwitterImage — internal/PII; never render in chat.daoconfig, _id, id duplicates from the response — backend artifacts.- Rendering
pct_bps as the raw integer ("2600 bps") — always convert to a percent.
- Rendering
nav / totalSupply / sharePrice as the raw 6-decimal string ("960675", "1.000016") without conversion — always parse and format per the schema above.
- Saying "this is from the platform's database" / "fetched from /vaults/user" / any backend-internal phrasing.
- Showing a separate detail block but omitting the summary table — the summary always leads.
Empty / sparse responses: if pagination.total === 0 for both endpoints (no DTFs at all), do not render a table or detail blocks; respond with one line: "There are no DTFs on the DFM platform yet." If only one vault type returns rows, omit the empty type from the summary header line ("<dtfCount> DTFs and 0 Yield DTFs" → "<dtfCount> DTFs").
Length guard: if the merged set has more than 20 vaults, render the summary table for all rows but trim detail blocks to the top 20 (by sort order) and append a one-line note at the bottom: "Showing full details for the top 20 vaults. Tell me a symbol or filter (only featured, only Yield DTFs, top 5 by TVL) and I'll expand any subset." Below 20 vaults: render every detail block.
Displaying /dtf/:symbol/state — multi-table layout
The vault-state response carries 4 distinct sections (vault, portfolio, userHoldings, rebalanceHistory.data[]). Each goes into its own clearly-labelled markdown table. Lead with a one-line header naming the vault. Skip any section whose data is empty or null.
✅ RIGHT (full state output):
**AIPIN — Solana AI + DePIN Infrastructure**
Vault overview:
| Field | Value |
| ------------ | --------------- |
| Symbol | AIPIN |
| Type | DTF |
| Status | active |
| TVL | $1,240.50 |
| Share price | $1.0823 |
| NAV | $1,240.50 |
| Total tokens | 1,146.231410 |
| Mgmt fee | 1.50% |
| 7d perf | +3.41% |
| APY | — |
Portfolio (current holdings):
| Symbol | Allocation | Balance | Value (USD) |
| ------- | ---------- | ------------ | ----------- |
| ZEREBRO | 35.00% | 142.318 | $434.18 |
| RENDER | 30.00% | 88.512 | $372.15 |
| ORCA | 20.00% | 211.044 | $248.10 |
| HNT | 15.00% | 67.901 | $186.07 |
Your holdings:
| Field | Value |
| ------------- | --------------- |
| Wallet | 5HvU…A7B8 |
| Token balance | 2.543171 AIPIN |
| Value | $2.7536 |
| Share | 0.22% |
Recent rebalances:
| Date (UTC) | Status | USDC in | USDC out | Duration |
| ------------------- | ---------- | --------- | --------- | -------- |
| 2026-04-21 14:02 | completed | $1,184.32 | $1,182.10 | 47s |
| 2026-04-08 09:17 | completed | $1,021.05 | $1,019.88 | 39s |
Vault-overview table — column schema:
| Field | Source | Format |
|---|
| Symbol | vault.vaultSymbol | as-is |
| Type | vault.vaultType | "dtf" → "DTF", "yield_dtf" → "Yield DTF" |
| Status | vault.status | as-is (lowercase) |
| TVL | vault.totalValueLocked | $<n>.<2dp> with thousand separators |
| Share price | vault.sharePrice | $<n>.<4dp> (more precision than TVL) |
| NAV | vault.nav (decimal-as-string — parse with Number() first) | $<n>.<2dp> |
| Total tokens | vault.totalTokens (decimal-as-string) | <n>.<6dp> |
| Mgmt fee | vault.feeConfig.managementFeeBps / 100 | <n>.<2dp>% |
| 7d perf | vault.performance7d | +/-<n>.<2dp>%, — if null |
| APY | vault.apy | <n>.<2dp>%, — if null/0 |
Portfolio table — one row per asset in portfolio.assets[]:
| Column | Source | Format |
|---|
| Symbol | assets[].symbol | as-is; never show raw mintAddress here |
| Allocation | assets[].allocationBps / 100 | <n>.<2dp>% |
| Balance | assets[].balance (raw u64 — divide by 10^decimals) | <n>.<6dp> |
| Value (USD) | assets[].valueUsd | $<n>.<2dp> |
Order rows by allocationBps descending so the largest position is on top.
Your holdings table — show only when userHoldings.tokenBalance > 0. Truncate walletAddress to <first4>…<last4> (e.g. 5HvU…A7B8) — never show the full address in user output.
Recent rebalances table — show only when rebalanceHistory.data[] is non-empty; cap at 5 most-recent rows. Convert startTime to YYYY-MM-DD HH:mm UTC. The Duration column is executionDurationMs / 1000 rounded, suffixed s. Hide _id, vaultSymbol (already in the header), sellPhaseTransactions, and buyPhaseTransactions arrays — those are too detailed for the summary; show only when the user asks "what assets were swapped".
All management operations are single API calls. No confirmation needed.
Step 6: Update Underlying Assets (Four-Phase Flow)
When the user says "update underlying", "change the basket", "swap assets", "rebalance to X", or any phrasing that means "replace the vault's underlyingAssets allocations", run this four-phase flow. All four phases are mandatory and run autonomously — no per-phase user confirmation. Phase 4 (rebalance) always runs at the end of every asset-update flow with zero exceptions: a basket change without the rebalance leaves the vault drifting (on-chain target ≠ actual holdings), so the rebalance is part of the operation, not an optional follow-up.
┌──────────────────────────────────────────────────────────────────────────┐
│ UPDATE UNDERLYING — four-phase flow │
│ │
│ Phase 1: DECIDE THE NEW BASKET │
│ - WebSearch / WebFetch + GET /market-metrics → candidate assets │
│ - Match against the vault's existing constitutional policy │
│ (GET /dtf/:symbol/policy → asset_mode, whitelist, min liquidity) │
│ - Choose `mintBps` allocations summing to 10000 │
│ - Prefer `symbol` / `name` identifiers — backend resolves to mints │
│ │
│ Phase 2: BUILD ON-CHAIN TX (POLICY-GATED, SERVER-SIDE) │
│ POST /api/v2/agent/vaults/:symbol/update-assets-tx │
│ { signerPublicKey, underlyingAssets: [{ symbol, mintBps }, ...] } │
│ │
│ ├─ 400 + violations[] ─▶ Phase 1 with adjustments (loop) │
│ └─ 201 + base64 tx ─▶ Phase 3 │
│ │
│ Sign locally with DFM_AGENT_KEYPAIR → submit on-chain → confirm │
│ │
│ Phase 3: SYNC DB │
│ PATCH /api/v2/agent/vaults/:symbol/underlying-assets-by-mint │
│ { underlyingAssets: [{ mintAddress, pct_bps }, ...] } │
│ (Note: pct_bps, NOT mintBps — different field name) │
│ Auto-flushes agent:vaults:* caches. │
│ │
│ Phase 4: REBALANCE (STRICTLY MANDATORY — RUNS AUTOMATICALLY) │
│ POST /api/v2/agent/dtf/:symbol/rebalance │
│ { signerPublicKey } │
│ Admin wallet executes swaps server-side. No user confirmation gate │
│ — this phase ALWAYS runs after Phase 3 completes. A basket change │
│ without the rebalance leaves the vault drifting (on-chain target ≠ │
│ actual holdings), so the rebalance is part of the operation. │
└──────────────────────────────────────────────────────────────────────────┘
Phase 1 — Decide the new basket
Identify which assets to add/remove/rebalance based on the user's intent. Use the same research tools as launch:
WebSearch / WebFetch for token discovery (price action, narratives, market caps).GET /market-metrics?symbols=A,B,C for the authoritative Jupiter liquidity / 24h volume — same numbers the policy engine enforces against Rules 2 / 3.GET /dtf/:symbol/policy to read the vault's existing asset_mode, asset_whitelist, asset_blacklist, min_amm_liquidity_usd, min_24h_volume_usd, max_asset_pct, min_asset_pct, min_stablecoin_pct. Calibrate the new basket so the policy gate in Phase 2 doesn't reject it. The policy is fixed; only the basket is editable in this flow.
Pick mintBps for each asset such that all values sum to exactly 10000. Round half-away-from-zero if needed and absorb the remainder into the largest allocation.
You can pass symbol or name instead of mintAddress — the backend resolves them via the asset-allocation collection (same path as /launch-dtf). Resolving server-side is cheaper and avoids the agent maintaining its own mint-address map.
Phase 2 — Build the on-chain tx (policy-gated)
node -e '
const http = require("http");
const https = require("https");
const url = new URL(process.env.DFM_API_URL + "/api/v2/agent/vaults/" + process.argv[1] + "/update-assets-tx"); // process.argv[1] = vaultSymbol (e.g. ALPHA)
const client = url.protocol === "https:" ? https : http;
const { Keypair, VersionedTransaction, Connection } = require("@solana/web3.js");
const bs58 = require("bs58").default || require("bs58");
const keypair = Keypair.fromSecretKey(bs58.decode(process.env.DFM_AGENT_KEYPAIR));
const payload = JSON.stringify({
signerPublicKey: keypair.publicKey.toBase58(),
underlyingAssets: [
{ symbol: "SOL", mintBps: 5000 },
{ symbol: "JUP", mintBps: 3000 },
{ name: "Bonk", mintBps: 2000 }
]
});
const req = client.request(url, {
method: "POST",
headers: {
"Content-Type": "application/json",
"Content-Length": Buffer.byteLength(payload),
"Authorization": "Bearer " + process.env.DFM_AUTH_TOKEN
}
}, (res) => {
let data = ""; res.on("data", (c) => data += c);
res.on("end", async () => {
const json = JSON.parse(data);
if (res.statusCode === 201) {
// Sign locally + submit on-chain
const conn = new Connection(process.env.SOLANA_RPC_URL || "https://api.mainnet-beta.solana.com");
const tx = VersionedTransaction.deserialize(Buffer.from(json.transaction, "base64"));
tx.sign([keypair]);
const sig = await conn.sendRawTransaction(tx.serialize(), { preflightCommitment: "confirmed" });
await conn.confirmTransaction(sig, "confirmed");
console.log("ON_CHAIN_OK signature=" + sig + " vaultIndex=" + json.vaultIndex);
} else if (res.statusCode === 400 && json.ok === false) {
// Policy violation — every violated rule in violations[]
console.log("POLICY_VIOLATION");
for (const v of json.violations || []) {
console.log(" " + v.violationCode + ": " + v.message);
}
} else {
console.log("ERROR " + res.statusCode + ": " + data);
}
});
});
req.on("error", (e) => console.log("ERROR: " + e.message));
req.write(payload);
req.end();
' <vaultSymbol>
Run with timeout: 600000 (10 minutes) — on-chain confirmation can take time.
On policy violation (HTTP 400 + { ok: false, violations[] }): read every entry in violations[], summarise the codes to the user as a one-line "blocked because", then automatically retry Phase 1 with adjustments:
| Violation code | What to change |
|---|
rule2MinAmmLiquidity / rule3Min24hVolume | Drop the offending asset OR swap it for a more-liquid alternative — the vault's policy threshold is fixed, so the basket must adapt. |
rule4MinMaxAssetCount | The proposed basket size doesn't fit min_assets/max_assets. The bounds are fixed — either reshape the basket OR if the vault was launched with min_assets == max_assets, see "structurally locked policy" below. |
rule5MaxPctPerAsset | Reduce that asset's mintBps and redistribute to others. |
rule6MinPctPerAssetIfHeld | Either raise the asset above the floor OR drop it from the basket entirely. |
rule7MinStablecoinFloor | Add a stablecoin allocation (must be one already in asset-allocation and permitted by asset_mode). |
rule1WhitelistBlacklist / assetModeViolation | Remove the asset (it's blacklisted or not whitelisted in the vault's existing policy). |
Per-update movement cap (rejection mentions max_rebalance_pct) | Aggregate movement = sum of ` |
Loop Phase 1 → Phase 2 up to 3 times. If still failing after 3 attempts, surface the unresolved violations to the user.
Diagnosing a structurally locked policy: if the same rule4MinMaxAssetCount keeps firing because min_assets == max_assets, OR every single-asset swap exceeds max_rebalance_pct (test: 2 × max_asset_pct > max_rebalance_pct), OR an included asset's volume sits within 30% of min_24h_volume_usd and rule3Min24hVolume blocks every migration that still contains it — the vault was misconfigured at launch and the agent cannot self-heal. State the diagnosis to the user with the specific bound that needs to move, and stop. Don't loop indefinitely on a vault that math says is unfixable.
Signing: use the existing signAndSend helper from the Pre-Flight Auth section. The signed tx hits Solana RPC; wait for confirmed commitment before moving to Phase 3.
Phase 3 — Sync DB
After the on-chain tx confirms, PATCH /api/v2/agent/vaults/:symbol/underlying-assets-by-mint to update the DB record. Note the field-name difference:
- Phase 2 (
/update-assets-tx) uses mintBps (matches the on-chain instruction).
- Phase 3 (
/underlying-assets-by-mint) uses pct_bps (matches the DB schema).
Same numeric values, different keys. Always include mintAddress here (no symbol/name resolution at this endpoint).
node -e '
const http = require("http");
const https = require("https");
const url = new URL(process.env.DFM_API_URL + "/api/v2/agent/vaults/" + process.argv[1] + "/underlying-assets-by-mint"); // process.argv[1] = vaultSymbol (e.g. ALPHA)
const client = url.protocol === "https:" ? https : http;
const payload = JSON.stringify({
underlyingAssets: [
{ mintAddress: "So11111111111111111111111111111111111111112", pct_bps: 5000 },
{ mintAddress: "JUPyiwrYJFskUPiHa7hkeR8VUtAeFoSYbKedZNsDvCN", pct_bps: 3000 },
{ mintAddress: "DezXAZ8z7PnrnRJjz3wXBoRgixCa6xjnB7YaB1pPB263", pct_bps: 2000 }
]
});
const req = client.request(url, {
method: "PATCH",
headers: {
"Content-Type": "application/json",
"Content-Length": Buffer.byteLength(payload),
"Authorization": "Bearer " + process.env.DFM_AUTH_TOKEN
}
}, (res) => {
let data = ""; res.on("data", (c) => data += c);
res.on("end", () => console.log("DB_SYNC " + res.statusCode));
});
req.on("error", (e) => console.log("ERROR: " + e.message));
req.write(payload);
req.end();
' <vaultSymbol>
Why both phases? Phase 2 mutates on-chain state; Phase 3 makes the change visible to read endpoints (/vaults/user, /vaults/featured/list) immediately. The chain-event pipeline does eventually backfill the DB on its own, but PATCH gives synchronous visibility — the user expects "show me my vault" to reflect the new basket immediately after they say "update underlying".
Phase 4 — Rebalance (STRICTLY mandatory, runs automatically)
Phase 4 always runs as the closing step of every asset-update flow — there is no user-confirmation gate, there is no decline path, and the agent does not phrase it as optional. After Phase 3's PATCH returns 200, the agent immediately calls /rebalance and waits for completion. The user is asked once at the very start of the flow ("confirm to update the basket?") and that single confirmation covers all four phases including this one. The rebalance is part of the operation, not a follow-up question.
Why strict: Phase 2 changes the on-chain basket targets (what the vault should hold). Phase 4 reconciles the vault's actual holdings with those new targets. Skipping Phase 4 leaves the vault drifting indefinitely — on-chain target ≠ actual holdings — and any deposit during that drift uses the wrong allocations. There is no use case where a basket change without a rebalance is the correct outcome.
The call:
POST {DFM_API_URL}/api/v2/agent/dtf/:symbol/rebalance with { signerPublicKey }.
Same /rebalance endpoint used in the standalone rebalance flow. The admin wallet executes the swaps server-side, so the agent only sends the request, awaits the response, and surfaces the result. Use the vaultSymbol (not vaultId) the agent already has from Phase 2 / Phase 3.
Response handling:
200 / 201 with ok: true → Phase 4 done. Capture the rebalance signature for the final summary. If policyCheck.flagged: true is present (post-execution review flags), translate via the violation-code table and append to the user-facing summary as a non-blocking warning. The rebalance still completed — flagged ≠ failed.- Any error response → Phase 4 failed even though Phases 1–3 succeeded. Do NOT re-run Phase 2 or Phase 3 (basket change is already complete on-chain and in the DB). Surface to the user: "The basket update is in place, but the rebalance step couldn't complete. The vault's holdings still match the old mix; tell me 'rebalance
<symbol>' to retry just that step." End the turn.
Banned in Phase 4 user-facing output: the strings "confirm to execute now?", "would you like to rebalance?", "shall I proceed with the rebalance?", or any other phrasing that frames the rebalance as optional. Phase 4 is not a question.
After all phases succeed
Surface a one-line summary to the user: "Updated <vaultName> basket to <asset1 pct1%, asset2 pct2%, ...> and rebalanced. On-chain signatures — update: <updateSig>, rebalance: <rebalanceSig>." The agent should NEVER expose endpoint names, payload shapes, or HTTP methods in user-facing messages — only the outcome.
Multi-step migration when the desired change exceeds max_rebalance_pct
Some basket migrations cannot fit in a single /update-assets-tx because the aggregate movement (sum of |new_bps - old_bps| across every mint) exceeds the vault's max_rebalance_pct. In that case the agent must split the migration into two basket updates with a mandatory cooldown wait between them (the cooldown is enforced by rule9MinTimeBetweenRebalances, gated on min_rebalance_interval_hours).
When this pattern is triggered:
- The agent computes aggregate movement before sending
/update-assets-tx. If it exceeds max_rebalance_pct, plan a transitional basket up-front instead of letting the backend reject.
- OR the backend returns
400 with rule8MaxPctRebalancedPerTx / per-update movement cap — same response, agent now plans the split.
The two-step pattern:
Step 1 (now): transitional basket — moves some weight, fits the cap.
├─ /update-assets-tx (Phase 2)
├─ sign + submit
├─ /underlying-assets-by-mint (Phase 3 — DB sync)
└─ /rebalance (Phase 4 — fan-in actually moves the holdings)
…wait at least min_rebalance_interval_hours…
Step 2 (later): final basket — moves the remaining weight.
├─ /update-assets-tx (Phase 2)
├─ sign + submit
├─ /underlying-assets-by-mint (Phase 3)
└─ /rebalance (Phase 4)
Computing the transitional basket: pick allocations such that:
- Aggregate
|new_bps - old_bps| ≤ max_rebalance_pct - 500 (a 500 bps safety buffer below the cap).
- The transitional basket is on the path between current and final — partial moves toward the final allocations, not arbitrary intermediate ones.
- Every transitional asset must already pass the policy gate on its own (don't introduce an asset just to drop it again).
Surface the plan to the user UPFRONT, before starting Step 1, in plain English. The user must understand they're agreeing to a two-stage migration, not a single update:
✅ RIGHT — multi-step plan announcement (table format):
The change you've requested is larger than this vault permits in a single
basket update. I'll do it in two stages, with a `<min_rebalance_interval_hours>`-hour
wait between them. Each stage updates the basket on-chain AND rebalances
the holdings to match — no separate rebalance step needed.
Stage 1 (now):
| Symbol | From | → To | Δ |
| ------- | ------- | ------- | -------- |
| HNT | 25.00% | → 0.00%| -25.00% |
| SOL | 0.00% | → 20.00%| +20.00% |
| RENDER | 30.00% | → 25.00%| -5.00% |
| ZEREBRO | 25.00% | → 30.00%| +5.00% |
| ORCA | 20.00% | → 20.00%| — |
| PUMP | 0.00% | → 5.00%| +5.00% |
Stage 2 (after cooldown clears):
| Symbol | From (post-Stage-1) | → To | Δ |
| ------- | ------------------- | ------- | -------- |
| SOL | 20.00% | → 30.00%| +10.00% |
| ZEREBRO | 30.00% | → 20.00%| -10.00% |
| RENDER | 25.00% | → 0.00%| -25.00% |
| ORCA | 20.00% | → 15.00%| -5.00% |
| PUMP | 5.00% | → 20.00%| +15.00% |
| BONK | 0.00% | → 15.00%| +15.00% |
Confirm to proceed with Stage 1 now?
After Stage 1 completes (rebalance returns 200), record the cooldown end time and surface a clean status to the user — never paste rule codes:
✅ RIGHT — Stage 1 done, Stage 2 pending:
Stage 1 complete. The vault is now holding the transitional mix shown above.
Stage 2 needs to wait until the rebalance cooldown clears — earliest run is
about <H>h <M>m from now (around <YYYY-MM-DD HH:mm UTC>). Tell me
"continue Stage 2" when you're ready and I'll run it then.
Stage boundary — HARD STOP between Stage 1 and Stage 2.
This is the most-violated rule in the multi-step migration flow. After Stage 1's rebalance returns 200, the agent MUST end the turn with the "Stage 2 pending" message above. It must NOT do any of the following in the same turn:
- ❌ Attempt
/update-assets-tx for the Stage 2 / final basket — this will be blocked by the cooldown and the only thing that produces is wasted noise.
- ❌ Call
/rebalance/check on the Stage 2 basket "to see what would be flagged".
- ❌ Surface the Stage 2 attempt result to the user — even as a "for your information, I tried Stage 2 and it's blocked until ". The plan-announcement message at the start already told the user about the wait; restating it via a failed-attempt narrative is noise, not information.
- ❌ Loop / retry / poll for the cooldown to clear inside the same turn. The user controls when Stage 2 runs by saying "continue Stage 2".
The agent's complete Stage 1 turn ends after the rebalance message is posted. Stage 2 runs in a separate turn triggered by the user's next message.
Banned in the user-facing output for either stage:
- Mentioning
rule9MinTimeBetweenRebalances, rule8MaxPctRebalancedPerTx, or any other code.
- Phrases like "the cooldown gate fires", "policy enforces a 4h interval", "max_rebalance_pct is 8000 bps".
- Endpoint names (
/update-assets-tx, /rebalance).
- HTTP statuses (
201, 400, 403).
- Phase numbers ("Phase 1B", "Phase 2A") — these are skill-internal.
- Phrasings like "blocked with 400", "flagged: true", "review flags".
- Failed-attempt narratives — never tell the user "I tried Stage 2 / a second update, but it was blocked because…". If the agent attempted something internally and it failed (whether due to cooldown, policy, or anything else), that's an internal recovery; the user-facing message must still be the clean "Stage 1 done, Stage 2 pending" template above. The user already knows about the wait from the plan announcement; reporting the failed attempt is wasted noise.
Cooldown-aware pre-flight before each /update-assets-tx call — the rule is: don't even try when the cooldown is active.
The agent does not "discover" the cooldown by attempting /update-assets-tx and reading the rejection. It computes the cooldown deterministically up-front and decides not to call:
- After any successful
/rebalance or /update-assets-tx in this session, stash the timestamp in conversation memory as lastRebalanceAt.
- Before any
/update-assets-tx (Stage 1 OR Stage 2 OR a fresh single-step migration): compute now - lastRebalanceAt. If it's below min_rebalance_interval_hours (read once from /dtf/:symbol/policy and stash it too), do NOT call /update-assets-tx. Surface the wait time to the user in plain English and end the turn.
- If the conversation is fresh and you don't have a stashed
lastRebalanceAt, call GET /dtf/:vaultSymbol/rebalance/check ONCE before the first /update-assets-tx. If policyCheck.flagged: true with a cooldown-related flag in reviewFlags, the cooldown is still active — translate to plain English, surface, end the turn.
- The most common case during a multi-step migration: Stage 1's
/rebalance just succeeded. The agent stashed the timestamp. Stage 2 in the same turn would always fail this pre-flight check, so the agent never even tries — it goes straight to the "Stage 1 done, Stage 2 pending" message and ends the turn. That's the entire point of the hard-stop rule above.
When the user says "continue Stage 2" (next turn):
- Run the cooldown pre-flight again. If still active (user came back too soon), surface the remaining wait and end the turn — do not attempt.
- Re-fetch
/dtf/:symbol/state to confirm the vault is in the post-Stage-1 state. If unexpected, surface and stop.
- Run Phases 1–4 with the Stage 2 basket. Same WRONG/RIGHT output rules apply.
- Final summary after both stages complete: a single closing paragraph that names both stage signatures, no per-stage debug log.
WRONG vs RIGHT — update-asset operation summaries
Real-world example: the user just received the following BAD trace from the agent. It's a phase-by-phase debug log — every numbered line and every API/HTTP fragment below is forbidden:
❌ WRONG — every fragment below is banned:
Pre-flight (every operation batch)
- Synced/validated env via .claude/settings.json
(DFM_API_URL, DFM_AUTH_TOKEN, DFM_AGENT_KEYPAIR, …)
Phase 0: State + proposal alignment
- Fetched GET /api/v2/agent/dtf/AIPIN/state.
Phase 1A: Metrics/mint resolution
- Called GET /api/v2/agent/market-metrics?symbols=SOL,ZEREBRO,…
Phase 1B: Transitional basket on-chain build+submit
- Target: SOL 20% / ZEREBRO 25% / RENDER 20% / ORCA 20% / PUMP 15%.
- Called POST /api/v2/agent/vaults/AIPIN/update-assets-tx with mintBps.
- On-chain success signature: 47H2Vumu2C…
Phase 1C: Transitional basket DB sync
- First attempt failed: PATCH … → 403 ("Only the vault creator can perform this action").
- After your backend fix, retried: Same PATCH + same body → 200 success.
Phase 2A: Final basket on-chain build attempt
- Called POST /api/v2/agent/vaults/AIPIN/update-assets-tx.
- Blocked with 400: rule9MinTimeBetweenRebalances (4h cooldown not elapsed).
Phase 2B: Rebalance check (diagnostic)
- Called GET /api/v2/agent/dtf/AIPIN/rebalance/check.
- Returned ok: true, flagged: true with:
rule8MaxPctRebalancedPerTx (10000 bps movement vs 8000 max),
rule9MinTimeBetweenRebalances (cooldown remaining).
Phase 2C: Rebalance execution
- Called POST /api/v2/agent/dtf/AIPIN/rebalance with signer pubkey.
- HTTP 201, ok: true. Fees: upfront 0.005 SOL, actual 0.000335 SOL.
What's wrong with the above (in addition to the standard "no endpoint paths / HTTP codes / rule codes / JSON internals" rules):
- It's a phase-by-phase trace. The user does not need to know the agent ran Phase 1A then 1B then 1C. The agent reports OUTCOMES, not steps.
- It exposes recovery internals ("First attempt failed... after your backend fix, retried"). The user's chat is not a postmortem channel.
- It surfaces fee internals ("upfront 0.005 SOL, actual 0.000335 SOL"). Only mention if the user asked about fees.
- It leaves the migration in an ambiguous state — "Step 2... not completed yet". The agent must end with a clear next-action: either "Stage 2 will run automatically when the cooldown clears at HH:mm" OR "Tell me 'continue Stage 2' to finish the migration". Never leave the user wondering.
The RIGHT version of the same trace is the multi-step plan + stage-completion summary templates above — two clean tabular messages with no debug detail, ending with an explicit prompt for the user's next action.
CRITICAL ERROR HANDLING for update underlying
/update-assets-tx returns 400 with violations[] (before any signing): policy gate failed — nothing on-chain. Loop Phase 1 with adjustments. Free./update-assets-tx returns 400 with asset-not-found message ("The following assets are not available in the platform: ..."): the symbol/name didn't resolve. Pick a different asset whose symbol IS in asset-allocation (you can verify against /market-metrics).- Signing/submission fails on-chain: you MAY retry
/update-assets-tx to get a fresh blockhash + fresh policy check (policy may have drifted in the meantime). Same signerPublicKey and same basket — no other changes needed.
- On-chain submitted but Phase 3 (PATCH) fails: do NOT re-run
/update-assets-tx (the on-chain change already happened — don't double-update). Retry the PATCH with the same body. If PATCH keeps failing, surface the on-chain signature to the user; the chain-event pipeline will eventually sync the DB on its own.
/update-assets-tx returns 404 "No constitutional policy found": the vault was created outside the agent flow (no /launch-dtf). Update is blocked. Surface this to the user — there's nothing to fix from the agent side.- Phase 4 (rebalance) fails after Phase 3 succeeded: do NOT re-run
/update-assets-tx or PATCH (the basket change is already complete on-chain and in the DB). Retry POST /dtf/:symbol/rebalance with the same body. If it keeps failing, surface to the user: the basket has been updated but the vault's holdings still match the old basket — they should retry the rebalance later via "rebalance the vault".
- Any phase returns HTTP 403 / "Only the vault creator can perform this action": the agent wallet (
signerPublicKey) does not match the vault's creatorAddress. STOP — do NOT retry, do NOT try a different vault symbol or id, do NOT loop through /vaults/user or /vaults/featured/list looking for matches. Surface to the user: "That vault belongs to a different wallet. Only its creator can update it." End the turn.
Step 7: Capital Flows — Deposit & Redeem
When the user says "deposit USDC into SOLBC", "buy SOLBC shares", "redeem 1.5 SOLBC", "sell my SOLBC tokens", or any phrasing meaning "move capital in or out of a vault using the agent wallet", run one of the two flows below.
+--------------------------------------------------------------------+
| CAPITAL FLOWS — agent-bound deposit (2 steps) + redeem (5 steps) |
| |
| DEPOSIT (vault USDC fans out into underlyings): |
| 1. POST /vaults/:symbol/check-min-deposit (MANDATORY GATE) |
| -> abort flow on 400. Do NOT call deposit-tx if the |
| -> threshold is not met. |
| 2. POST /vaults/:symbol/deposit-tx |
| -> base64 unsigned VersionedTransaction |
| 3. agent signs locally + submits on-chain |
| 4. POST /deposit-transaction |
| -> agentSwap (vault USDC -> underlyings via Jupiter) + |
| depositTransaction (parses logs, persists 4 records) |
| |
| REDEEM (queue-serialised; underlyings fan in to vault USDC): |
| 1. POST /check-min-redeem (MANDATORY GATE) |
| -> reads `isValid` (returns 200 either way). Abort flow |
| -> when isValid=false. Do NOT call request-ticket. |
| 2. POST /redeem/request-ticket (queue entry) |
| 3. poll v1 GET /api/v1/tx-event-management/redeem/ticket-status |
| /:ticketId until isReady=true (agent has no clone) |
| 4. POST /redeem/execute/:ticketId (backend swap fan- |
| in: underlyings -> USDC inside the vault) |
| 5. POST /vaults/:symbol/redeem-tx |
| -> base64 unsigned finalizeRedeem tx |
| 6. agent signs locally + submits on-chain |
| 7. POST /redeem-transaction { transactionSignature, ticketId } |
| -> records redeem + auto-confirms ticket (non-fatal) |
| |
| IDENTITY: |
| Deposit-tx takes an explicit `userPublicKey` body field — the |
| depositor wallet may or may not be the agent. Records are |
| attributed via JWT (agentProfile + agentAddress). |
| Redeem-tx is bound to the agent wallet (JWT canonical, body |
| `agentWallet` accepted only as fallback). |
| |
| PRE-FLIGHT GATES ARE MANDATORY: |
| Both flows MUST start with the corresponding check. Skipping |
| them sends underspec'd amounts to the on-chain ix and produces |
| confusing failures (post-fee dust, 0-share mints, etc.). |
+--------------------------------------------------------------------+
When to run which flow:
| User intent | Flow | Notes |
|---|
| "Deposit X USDC into " | Deposit | Set userPublicKey to the agent wallet by default unless the user explicitly names a different depositor wallet. |
| "Redeem X tokens from " / "Sell my " | Redeem | Always uses the agent wallet (JWT). The agent must already hold a position keyed on its agentProfile. |
| "Add liquidity to " / "Buy more " | Deposit | Same as deposit. |
| "Withdraw from " / "Cash out " | Redeem | Same as redeem. |
Pre-flight (both flows): before issuing build-tx requests, surface a one-line summary to the user (vault, amount, expected fee). The flows below do not ask for further confirmation between sub-steps.
Mandatory minimum-amount gate: every deposit run MUST begin with POST /vaults/:symbol/check-min-deposit, and every redeem run MUST begin with POST /check-min-redeem. These are not optional — they are gates on the rest of the flow:
check-min-deposit throws 400 (Minimum deposit should be at least $<n> USDC) when the proposed amount is below threshold. Do not proceed to /deposit-tx on 400 — surface the threshold to the user verbatim, ask them for a larger amount, then re-gate.check-min-redeem returns 200 with isValid: false when the proposed amount is below threshold (it does not throw). Read isValid and abort if false — do not call /redeem/request-ticket on a failed check.
The reason the gates are mandatory: skipping them lets through too-small amounts that produce confusing on-chain failures (post-fee dust, zero-share mints, and — for redeem — fractional swaps Jupiter rejects). Catching the issue at the validator endpoint gives the user a clean, actionable error before any on-chain or queue interaction.
Phase ordering contract (READ FIRST — the most-violated invariant in this skill):
Every phase of both flows is strictly sequential. The agent MUST await the previous phase's API response (and verify its status) before issuing the next phase's call. The scripts below are written as a single async chain so this is automatic — but if the agent ever runs phases as separate node -e invocations, or runs anything in parallel, the flow will silently corrupt:
| Risk | What goes wrong |
|---|
Skipping /deposit-transaction after the on-chain submit confirms | The deposit tx lands on-chain (shares are minted to the depositor) but no UserVaultPosition is recorded under agentProfile. The user can't redeem via the agent flow later because /redeem-transaction will throw No position found for agent in this vault. |
Reporting deposit success to the user before /deposit-transaction returns 200 | Same as above — the on-chain side is done, the DB side isn't. The user thinks they're holding shares; the agent's later P&L breakdown can't see the deposit. |
Calling /redeem/execute/:ticketId before isReady=true | Backend rejects with Failed to process ticket and auto-cancels the ticket — the user has to start the whole redeem flow over. |
Building /redeem-tx before /redeem/execute finishes the swap fan-in | The vault doesn't have enough USDC to settle, so finalizeRedeem fails on-chain. The signed price expires; the agent must re-call /redeem-tx for a fresh price. |
Calling /redeem-transaction before the on-chain finalizeRedeem confirms | Backend can't fetch the tx (Transaction not found); the redeem is on-chain but no DB records exist. Re-call after confirmTransaction resolves. |
The success indicator is the final *_OK JSON line printed by each script (DEPOSIT_OK { ... } or REDEEM_OK { ... }). Any earlier PHASE_N_OK log is intermediate progress only — do not surface success to the user until you see the final OK line on stdout. If the script exits without the final OK line (or with MIN_*_FAIL, BUILD_ERROR, EXECUTE_ERROR, RECORD_ERROR, FATAL), surface the documented failure-message template and stop.
Utility: read on-chain share balance
For "how many <vault> shares do I hold?" / "what's my position?" / pre-flight before "redeem all my <vault>", call GET /vaults/:symbol/shares. The wallet is read from the JWT — do not pass ?wallet= unless the user explicitly asks about a different wallet. The endpoint returns the on-chain ATA balance (no DB read).
node -e '
const http = require("http");
const https = require("https");
const url = new URL(process.env.DFM_API_URL + "/api/v2/agent/vaults/" + process.argv[1] + "/shares");
const client = url.protocol === "https:" ? https : http;
const req = client.get(url, {
headers: { "Authorization": "Bearer " + process.env.DFM_AUTH_TOKEN }
}, (res) => {
let data = ""; res.on("data", (c) => data += c);
res.on("end", () => {
let parsed = JSON.parse(data || "{}");
// Unwrap the global ResponseMiddleware envelope
if (parsed && parsed.status && parsed.data) parsed = parsed.data;
if (res.statusCode !== 200) {
console.log("BALANCE_ERROR " + res.statusCode + ": " + JSON.stringify(parsed));
return;
}
if (!parsed.exists) {
console.log("BALANCE_OK exists=false sharesUi=0 — wallet has never held shares for this vault");
return;
}
console.log("BALANCE_OK " + JSON.stringify({
vaultSymbol: parsed.vaultSymbol,
sharesRaw: parsed.sharesRaw,
sharesUi: parsed.sharesUi,
ata: parsed.ata,
}));
});
});
req.on("error", (e) => console.log("ERROR: " + e.message));
' <vaultSymbol>
Use cases:
- "How many SOLBC shares do I hold?" — call once, surface
sharesUi and vaultSymbol. If exists: false, say "You don't currently hold any SOLBC shares."
- "Redeem all my SOLBC" — call this first to read
sharesUi, then pass that exact number as vaultTokenAmount into the redeem flow's /redeem/request-ticket. Do not read from the agent's cached UserVaultPosition — that's the DB record and may lag behind on-chain reality (e.g. if a previous redeem wasn't recorded properly). The on-chain ATA is the source of truth.
- Quick sanity check before any redeem — surface
sharesUi to the user and confirm before proceeding.
7a. Deposit Flow (2 sub-steps after pre-flight)
Step 7a-0 — Mandatory pre-flight: /check-min-deposit
Always call POST {DFM_API_URL}/api/v2/agent/vaults/:symbol/check-min-deposit with { minDeposit: <UI USDC> } before building the deposit tx. On 400, do not proceed — surface the threshold message to the user and ask for a larger amount. The consolidated script in Step 7a-1 below runs this check internally and aborts on failure.
Step 7a-1 — End-to-end deposit (single script, four sequential phases)
The script below runs all four deposit phases in one async chain — each phase awaits the previous phase's API response before starting:
| Phase | Action | Indicator on stdout |
|---|
| 1 | POST /vaults/:symbol/check-min-deposit (mandatory gate) | PHASE_1_OK gate=passed |
| 2 | POST /vaults/:symbol/deposit-tx (build unsigned tx) | PHASE_2_OK vaultIndex=<n> |
| 3 | Sign locally with DFM_AGENT_KEYPAIR + sendRawTransaction + confirmTransaction | PHASE_3_OK onChainSig=<sig> |
| 4 | POST /deposit-transaction (swap fan-out + DB record persist — NOT idempotent; every call re-dispatches a fresh on-chain swap) | DEPOSIT_OK { … } (final success — JSON line) |
Do not run these phases as separate node -e invocations — keep the chain inside a single script so the agent can't accidentally proceed before a phase resolves. Do not surface success to the user until the final DEPOSIT_OK { … } JSON line appears on stdout. A PHASE_3_OK (on-chain confirmed) is not enough — without DEPOSIT_OK, the UserVaultPosition keyed on agentProfile was never written, and the user's later redeem will fail with No position found for agent in this vault.
Equally important: do not retry Phase 4 if it fails. Phase 4 (POST /deposit-transaction) is not just a recorder. It dispatches a fresh on-chain agentSwap (vault USDC → underlyings via Jupiter) on every call, in addition to writing DB records. If Phase 4 times out, returns 5xx, or the network drops the response, the swap may have partially completed server-side — and re-calling triggers a second swap on whatever vault USDC remains, double-dipping and breaking NAV. The skill's error table below explicitly forbids retrying /deposit-transaction on any non-200 response, including transient-looking gateway timeouts. Read that rule before deciding what to do on Phase 4 failure.
Phase 4 body — ALL FOUR fields are required, every call. The endpoint validates every field; sending a partial body (e.g. just transactionSignature) returns 400 with messages like "vaultIndex should not be empty", "amountInRaw must be a string", etc. Do NOT interpret these validation errors as a contract change — they mean the agent constructed an incomplete body, not that the API needs new fields. The required shape is fixed:
| Field | Source (Phase 2 response) | Required? | Type |
|---|
transactionSignature | The onChainSig from Phase 3 (after sendRawTransaction + confirmTransaction) | Yes | string (base58 sig) |
vaultIndex | build.body.vaultIndex | Yes | integer (u32) |
etfSharePriceRaw | build.body.etfSharePriceRaw | Yes | string (raw u64, 6 dec) |
amountInRaw | build.body.amountInRaw | Yes | string (raw u64, 6 dec) |
slippage | hard-coded 200 (or pass user's value) | No | integer (50–500 bps) |
The script below already wires all four fields from Phase 2's response. Never hand-construct a Phase 4 call with a different body shape, especially not "just the signature to retry the recorder" — that's the failure mode that produced the validation error reported by clients. If the script's call site fails, the answer is not to manually retry with a smaller body; see the hard-stop rule for /deposit-transaction non-200 responses in the error table.
node -e '
const http = require("http");
const https = require("https");
const { Keypair, VersionedTransaction, Connection } = require("@solana/web3.js");
const bs58 = require("bs58").default || require("bs58");
const keypair = Keypair.fromSecretKey(bs58.decode(process.env.DFM_AGENT_KEYPAIR));
const symbol = process.argv[1]; // e.g. ALPHA
const depositAmount = Number(process.argv[2]); // UI USDC, e.g. 5
function call(path, method, body) {
return new Promise((resolve, reject) => {
const url = new URL(process.env.DFM_API_URL + path);
const client = url.protocol === "https:" ? https : http;
const payload = body ? JSON.stringify(body) : null;
const headers = { "Authorization": "Bearer " + process.env.DFM_AUTH_TOKEN };
if (payload) {
headers["Content-Type"] = "application/json";
headers["Content-Length"] = Buffer.byteLength(payload);
}
const req = client.request(url, { method, headers }, (res) => {
let data = ""; res.on("data", (c) => data += c);
res.on("end", () => {
try {
let parsed = JSON.parse(data || "{}");
// Unwrap the global ResponseMiddleware envelope: { status, message, data }.
// Pagination responses (which carry a top-level `pagination` field) and
// exception responses (statusCode + error) are NOT wrapped; pass through.
if (
parsed && typeof parsed === "object" &&
parsed.status && Object.prototype.hasOwnProperty.call(parsed, "data") &&
!Object.prototype.hasOwnProperty.call(parsed, "pagination") &&
!Object.prototype.hasOwnProperty.call(parsed, "error")
) {
parsed = parsed.data;
}
resolve({ status: res.statusCode, body: parsed });
} catch { resolve({ status: res.statusCode, body: data }); }
});
});
req.on("error", reject);
if (payload) req.write(payload);
req.end();
});
}
(async () => {
// PHASE 1 — Mandatory gate
const gate = await call(
"/api/v2/agent/vaults/" + symbol + "/check-min-deposit",
"POST",
{ minDeposit: depositAmount }
);
if (gate.status !== 200) {
console.log("MIN_DEPOSIT_FAIL " + gate.status + ": " + (gate.body?.message || JSON.stringify(gate.body)));
return;
}
console.log("PHASE_1_OK gate=passed");
// PHASE 2 — Build the unsigned deposit tx (await response BEFORE signing)
const build = await call(
"/api/v2/agent/vaults/" + symbol + "/deposit-tx",
"POST",
{
userPublicKey: keypair.publicKey.toBase58(), // agent wallet as depositor (default)
depositAmount,
}
);
if (build.status !== 201) {
console.log("BUILD_ERROR " + build.status + ": " + JSON.stringify(build.body));
return;
}
console.log("PHASE_2_OK vaultIndex=" + build.body.vaultIndex);
// PHASE 3 — Sign locally + submit on-chain (await CONFIRMATION before recording)
const conn = new Connection(process.env.SOLANA_RPC_URL || "https://api.mainnet-beta.solana.com");
const tx = VersionedTransaction.deserialize(Buffer.from(build.body.transaction, "base64"));
tx.sign([keypair]);
const onChainSig = await conn.sendRawTransaction(tx.serialize(), { preflightCommitment: "confirmed" });
await conn.confirmTransaction(onChainSig, "confirmed");
console.log("PHASE_3_OK onChainSig=" + onChainSig);
// PHASE 4 — Swap + Record (await /deposit-transaction response before declaring success)
//
// ⚠️ THIS ENDPOINT IS NOT IDEMPOTENT AGAINST RETRIES. ⚠️
// Every call dispatches a fresh on-chain swap fan-out. Calling it twice with
// the same transactionSignature triggers a SECOND agentSwap that pulls more
// vault USDC into Jupiter — breaking NAV and stranding USDC in the admin
// wallet. If this phase times out or returns 5xx, see the failure-mode rule
// below: do NOT retry, do NOT re-run the script, do NOT call any deposit
// endpoint again with the same signature. Surface the on-chain signature to
// the user and stop. The chain-event pipeline + operator are the only safe
// recovery paths once Phase 4 is in an unknown state.
//
// Backend runs two server-side sub-operations on every call:
// (a) agentSwap — vault USDC -> underlyings via Jupiter (NOT idempotent)
// (b) depositTransaction — parses VaultDeposited logs, writes
// DepositTransaction + UserVaultPosition (keyed on agentProfile) +
// DepositRecord + History (DB-layer idempotency guard exists)
// Failure modes surfaced INSIDE the 200 response (swap.failedSwapsInfo,
// deposit.events[].vaultDepositUpdateError) are non-fatal and do NOT warrant
// a re-call. Any non-200 response (timeout, 5xx, network error) is a HARD
// STOP — the swap dispatch already happened server-side and the agent
// cannot tell from the client side how much of it completed.
// ALL FOUR fields are required — sending a partial body (e.g. just
// transactionSignature) returns 400 ("vaultIndex should not be empty",
// "amountInRaw must be a string", etc). Wire each from Phase 2's response.
const rec = await call("/api/v2/agent/deposit-transaction", "POST", {
transactionSignature: onChainSig, // from Phase 3 (on-chain submit)
vaultIndex: build.body.vaultIndex, // from Phase 2 (/deposit-tx response)
etfSharePriceRaw: build.body.etfSharePriceRaw, // from Phase 2 (/deposit-tx response)
amountInRaw: build.body.amountInRaw, // from Phase 2 (/deposit-tx response)
slippage: 200, // optional; default 200 bps
});
if (rec.status !== 200) {
// HARD STOP: do NOT retry. See the deposit error table for /deposit-transaction
// non-200 — every call dispatches a fresh agentSwap, retrying breaks NAV.
// Do NOT re-call with a "minimal" body either — the API contract is the
// five fields above, and validation errors here mean the body was wrong,
// not that the contract changed.
console.log("RECORD_ERROR " + rec.status + ": " + JSON.stringify(rec.body));
return;
}
// FINAL — emit consolidated JSON for the user-facing summary + memory.
// Agent must wait for THIS line before reporting deposit success.
const ev = rec.body.deposit?.events?.[0] || {};
const sharePriceDepositUsd = build.body.etfSharePriceRaw
? Number(build.body.etfSharePriceRaw) / 1e6
: null;
console.log("DEPOSIT_OK " + JSON.stringify({
event: ev.eventType,
vaultName: ev.vaultName,
vaultSymbol: ev.vaultSymbol,
grossUsdcRaw: ev.amount, // 6 decimals
entryFeeRaw: ev.entryFee, // 6 decimals
managementFeeRaw: ev.managementFee, // 6 decimals (typically 0 at deposit)
netUsdcRaw: ev.netAmount, // amount that actually became shares
sharesMintedRaw: ev.vaultTokensMinted, // 6 decimals
sharePriceDepositUsd, // share price baked into THIS deposit
onChainSig,
failedSwaps: rec.body.swap?.failedSwapsInfo || null,
recordError: ev.vaultDepositUpdateError || null,
}));
})().catch(e => console.log("FATAL " + (e?.message || String(e))));
' <vaultSymbol> <depositAmount>
Run with timeout: 600000 (10 minutes). The four *_OK markers print as each phase resolves; the agent should follow them but report success only when DEPOSIT_OK { … } appears. On any other terminal line (MIN_DEPOSIT_FAIL, BUILD_ERROR, RECORD_ERROR, FATAL), surface the documented failure-message template and stop.
⚠️ HARD STOP — RECORD_ERROR or FATAL after PHASE_3_OK. If Phase 3 logged but the script did not emit DEPOSIT_OK, the on-chain deposit succeeded (shares were minted to the depositor) but Phase 4's server-side state is unknown — the agentSwap may have partially completed, fully completed without responding, or timed out before any swap. Do NOT re-run the script. Do NOT re-call /deposit-transaction with the same signature. Do NOT call any other deposit endpoint to "fix" it. Re-calling /deposit-transaction triggers a second agentSwap against whatever USDC is still in the vault, double-dipping and corrupting NAV. The only safe response is to surface the on-chain signature to the user with the message: "The deposit landed on-chain — your shares are minted and visible in your wallet. The platform's swap step couldn't be confirmed from this side; an operator will reconcile it. Please don't retry from this end." Then end the turn. This rule overrides any harness-level retry instinct.
Deposit completion messaging — MANDATORY format
Symmetric to the redeem messaging rules. When summarising a deposit, the agent must read entryFee and sharePriceDepositUsd from the script's JSON output, surface them transparently, and remember them in conversation memory so a future redeem call can show a true P&L breakdown instead of guessing.
Required user-facing summary (template). Substitute with divided UI values — never paste raw u64, never pair raw+UI in parentheses:
Deposit complete — <vaultName> (<vaultSymbol>).
• USDC deposited (gross): <grossUsdcUi> USDC
• Entry fee: <entryFeeUi> USDC
• USDC that purchased shares: <netUsdcUi> USDC
• Shares minted: <sharesMintedUi> <vaultSymbol>
• Share price at deposit: $<sharePriceDepositUsd>
• On-chain signature: <onChainSig>
Where <grossUsdcUi> = grossUsdcRaw / 1e6 (formatted to 6 decimal places), <entryFeeUi> = entryFeeRaw / 1e6 (formatted to 6 decimal places — render as 0.000000 if the fee was 0, never as 0 raw), and the same conversion for every other *Ui placeholder. The raw u64 values stay in the script's DEPOSIT_OK { … } JSON for internal use only — never in the chat message.
If failedSwaps is present, append exactly: "<failedCount> underlying swap(s) failed and the USDC was returned to the vault — no funds lost." Do not invent any other failure narrative.
If recordError is present, append exactly: "On-chain deposit succeeded, but the database record-write failed — the chain-event pipeline will reconcile shortly. Your shares are minted on-chain regardless." (This is the ONE pre-approved exception to the "no backend-warning trailing notes" rule — it's only used when the on-chain side genuinely succeeded but the DB write didn't, which is a status the user needs to know about.) Do not extend or rephrase this template; the exact wording above is the only acceptable form.
Remember-for-later (conversation context): stash { vaultSymbol, grossUsdcRaw, entryFeeRaw, sharesMintedRaw, sharePriceDepositUsd, onChainSig } so when the same user later redeems from the same vault, the redeem-completion summary can include the deposit-side fee + a real NAV-change calculation.
7b. Redeem Flow (4 sub-steps after pre-flight)
The redeem flow has more steps because (a) it queues to serialise vault liquidation, and (b) the swap fan-in must happen before the on-chain finalizeRedeem so the vault has enough USDC to settle.
Step 7b-0 — Mandatory pre-flight: /check-min-redeem
Always call POST {DFM_API_URL}/api/v2/agent/check-min-redeem with { minRedeem: <UI vault tokens> } before requesting a ticket. Unlike check-min-deposit, this endpoint always returns 200 with { isValid, message } — read isValid rather than the HTTP status. When isValid: false, do not call /redeem/request-ticket; surface the threshold to the user and stop. The combined script in Step 7b-5 below runs this check internally and aborts on failure.
Step 7b-1 — Request a redeem ticket
POST {DFM_API_URL}/api/v2/agent/redeem/request-ticket with { vaultSymbol, vaultTokenAmount, etfSharePriceRaw?, slippage? }. vaultTokenAmount is raw u64 as a string (6 decimals — multiply UI tokens by 1e6 first). etfSharePriceRaw is optional; backend reads on-chain when omitted.
Returns: { ticketId, position, estimatedWaitSeconds, isReady }.
Step 7b-2 — Poll until ready (use v1 endpoint)
The agent module has no /ticket-status clone. Poll GET {DFM_API_URL}/api/v1/tx-event-management/redeem/ticket-status/:ticketId every 3-5 seconds with the same Authorization header. Stop when status.isReady === true. Tickets expire ~3 minutes after becoming ready — don't dawdle.
Step 7b-3 — Execute the swap fan-in
POST {DFM_API_URL}/api/v2/agent/redeem/execute/:ticketId with { slippage? }. All other parameters (vault, amount, share price) are read from the ticket itself. Backend transitions the ticket to PROCESSING, runs redeemAgentSwapAdmin (vault underlyings → USDC), and returns swap signatures.
On execute failure, the ticket is auto-cancelled by the backend before the error rethrows — the agent does not need to call /cancel. Surface the error to the user and stop.
Step 7b-4 — Build the unsigned finalizeRedeem tx
POST {DFM_API_URL}/api/v2/agent/vaults/:symbol/redeem-tx with { vaultTokenAmount } (UI vault tokens, e.g. 1.5). The agent wallet is read from the JWT (body agentWallet is fallback only).
Backend resolves the vault, derives PDAs, fetches a fresh KMS-signed share price, conditionally adds 4 ATA-creation ixs (agent vault-token + USDC, fee-recipient USDC, vault-admin USDC), and emits the Ed25519 verify ix + finalizeRedeem(...) ix. Returns { transaction, vaultIndex, etfSharePriceRaw, priceTimestamp, vaultTokenAmountRaw, ... }.
Step 7b-5 — Sign locally, submit, record + auto-confirm ticket
Sign the returned tx with DFM_AGENT_KEYPAIR, submit on-chain, then call POST {DFM_API_URL}/api/v2/agent/redeem-transaction with { transactionSignature, vaultIndex, etfSharePriceRaw, signatureArray, slippage, ticketId }.
Including ticketId triggers the backend to auto-confirm the redeem queue ticket after the record is persisted. The auto-confirm is non-fatal — failure surfaces on the response as ticketConfirm: { ok: false, message } but does not abort. The redeem is already on-chain and DB-recorded.
End-to-end redeem (single script, seven sequential phases). Each phase awaits its API response before the next:
| Phase | Action | Indicator on stdout |
|---|
| 1 | POST /check-min-redeem (mandatory gate; read isValid, not status) | PHASE_1_OK gate=passed |
| 2 | POST /redeem/request-ticket (queue entry) | PHASE_2_OK ticketId=<id> ready=<bool> |
| 3 | Poll v1 GET /redeem/ticket-status/:ticketId until isReady=true (max 5 min) | PHASE_3_OK ticket=ready |
| 4 | POST /redeem/execute/:ticketId (backend swap fan-in) | PHASE_4_OK swaps=<n> |
| 5 | POST /vaults/:symbol/redeem-tx (build unsigned finalizeRedeem) | PHASE_5_OK vaultIndex=<n> |
| 6 | Sign locally with DFM_AGENT_KEYPAIR + sendRawTransaction + confirmTransaction | PHASE_6_OK onChainSig=<sig> |
| 7 | POST /redeem-transaction (record + auto-confirm ticket) | REDEEM_OK { … } (final success — JSON line) |
Do not surface success to the user until the final REDEEM_OK { … } line appears on stdout. PHASE_6_OK (on-chain confirmed) is not enough — without REDEEM_OK, the position state is out of sync with the on-chain redeem and the History row was never written.
node -e '
const http = require("http");
const https = require("https");
const { Keypair, VersionedTransaction, Connection } = require("@solana/web3.js");
const bs58 = require("bs58").default || require("bs58");
const keypair = Keypair.fromSecretKey(bs58.decode(process.env.DFM_AGENT_KEYPAIR));
const symbol = process.argv[1];
const uiAmount = Number(process.argv[2]); // e.g. 1.5
function call(path, method, body) {
return new Promise((resolve, reject) => {
const url = new URL(process.env.DFM_API_URL + path);
const client = url.protocol === "https:" ? https : http;
const payload = body ? JSON.stringify(body) : null;
const headers = {
"Authorization": "Bearer " + process.env.DFM_AUTH_TOKEN
};
if (payload) {
headers["Content-Type"] = "application/json";
headers["Content-Length"] = Buffer.byteLength(payload);
}
const req = client.request(url, { method, headers }, (res) => {
let data = ""; res.on("data", (c) => data += c);
res.on("end", () => {
try {
let parsed = JSON.parse(data || "{}");
// Unwrap the global ResponseMiddleware envelope: { status, message, data }.
// Pagination responses (which carry a top-level `pagination` field) and
// exception responses (statusCode + error) are NOT wrapped; pass through.
if (
parsed && typeof parsed === "object" &&
parsed.status && Object.prototype.hasOwnProperty.call(parsed, "data") &&
!Object.prototype.hasOwnProperty.call(parsed, "pagination") &&
!Object.prototype.hasOwnProperty.call(parsed, "error")
) {
parsed = parsed.data;
}
resolve({ status: res.statusCode, body: parsed });
} catch { resolve({ status: res.statusCode, body: data }); }
});
});
req.on("error", reject);
if (payload) req.write(payload);
req.end();
});
}
(async () => {
const rawAmount = String(Math.round(uiAmount * 1e6));
// PHASE 1 — Mandatory gate: /check-min-redeem
// Returns 200 with isValid; do NOT trust HTTP status alone — read the boolean.
const gate = await call("/api/v2/agent/check-min-redeem", "POST", { minRedeem: uiAmount });
if (gate.status !== 200 || gate.body?.isValid !== true) {
console.log("MIN_REDEEM_FAIL: " + (gate.body?.message || JSON.stringify(gate.body)));
return;
}
console.log("PHASE_1_OK gate=passed");
// PHASE 2 — Request a redeem ticket (await response BEFORE polling)
const ticket = await call("/api/v2/agent/redeem/request-ticket", "POST", {
vaultSymbol: symbol,
vaultTokenAmount: rawAmount,
slippage: 200
});
if (ticket.status !== 200) { console.log("TICKET_ERROR " + ticket.status + ": " + JSON.stringify(ticket.body)); return; }
const { ticketId } = ticket.body;
console.log("PHASE_2_OK ticketId=" + ticketId + " ready=" + ticket.body.isReady);
// PHASE 3 — Poll v1 ticket-status until ready (max 5 minutes)
// Each poll awaits the response before sleeping for the next attempt.
// Do NOT call /redeem/execute until isReady=true.
const start = Date.now();
while (Date.now() - start < 5 * 60 * 1000) {
if (ticket.body.isReady) break;
await new Promise(r => setTimeout(r, 3000));
const s = await call("/api/v1/tx-event-management/redeem/ticket-status/" + ticketId, "GET");
if (s.body?.isReady) { ticket.body.isReady = true; break; }
if (["EXPIRED", "CANCELLED", "COMPLETED"].includes(s.body?.status)) {
console.log("TICKET_TERMINAL status=" + s.body.status); return;
}
}
if (!ticket.body.isReady) { console.log("TICKET_TIMEOUT"); return; }
console.log("PHASE_3_OK ticket=ready");
// PHASE 4 — Execute the backend swap fan-in (await 200 response BEFORE building tx)
// On failure here, the backend AUTO-CANCELS the ticket — do not call /cancel.
// Response shape (after envelope unwrap):
// { vaultIndex, vaultTokenAmount, swaps: [{ mint, input, sig }],
// vaultUsdcBalance, requiredUsdc, adjustedVaultTokenAmount,
// sharePriceAfter, totalValueUSDCraw, totalValueUSDActual, mode,
// ticketId, ticketStatus, message }
const exec = await call("/api/v2/agent/redeem/execute/" + ticketId, "POST", { slippage: 200 });
if (exec.status !== 200) { console.log("EXECUTE_ERROR " + exec.status + ": " + JSON.stringify(exec.body)); return; }
const swapSigs = (exec.body.swaps || []).map(s => s.sig).filter(Boolean);
console.log("PHASE_4_OK swaps=" + swapSigs.length + " sharePriceAfter=" + exec.body.sharePriceAfter);
// PHASE 5 — Build the unsigned finalizeRedeem tx (await response BEFORE signing)
// CRITICAL: if the backend clamped the amount during fan-in (adjustedVaultTokenAmount
// differs from the request), the on-chain finalizeRedeem ix MUST use the clamped
// amount or it will mismatch the USDC actually paid out and either fail or
// under-redeem. The script overrides uiAmount with the clamped value when present.
const adjustedRaw = exec.body.adjustedVaultTokenAmount;
const finalizeUiAmount =
adjustedRaw && /^\d+$/.test(String(adjustedRaw)) && Number(adjustedRaw) > 0
? Number(adjustedRaw) / 1e6
: uiAmount;
if (finalizeUiAmount !== uiAmount) {
console.log("ADJUSTED amount=" + uiAmount + " -> " + finalizeUiAmount + " (raw=" + adjustedRaw + ")");
}
const build = await call("/api/v2/agent/vaults/" + symbol + "/redeem-tx", "POST", {
vaultTokenAmount: finalizeUiAmount
});
if (build.status !== 201) { console.log("BUILD_ERROR " + build.status + ": " + JSON.stringify(build.body)); return; }
console.log("PHASE_5_OK vaultIndex=" + build.body.vaultIndex);
// PHASE 6 — Sign + submit on-chain (await CONFIRMATION before recording)
const conn = new Connection(process.env.SOLANA_RPC_URL || "https://api.mainnet-beta.solana.com");
const tx = VersionedTransaction.deserialize(Buffer.from(build.body.transaction, "base64"));
tx.sign([keypair]);
const onChainSig = await conn.sendRawTransaction(tx.serialize(), { preflightCommitment: "confirmed" });
await conn.confirmTransaction(onChainSig, "confirmed");
console.log("PHASE_6_OK onChainSig=" + onChainSig);
// PHASE 7 — Record + auto-confirm ticket (await /redeem-transaction response)
// Including ticketId triggers the backend to confirmRedeemTicket after the
// record is persisted. Failure of the confirm step is non-fatal and surfaces
// on the response as ticketConfirm.ok=false.
const rec = await call("/api/v2/agent/redeem-transaction", "POST", {
transactionSignature: onChainSig,
vaultIndex: build.body.vaultIndex,
etfSharePriceRaw: build.body.etfSharePriceRaw,
signatureArray: swapSigs,
slippage: 200,
ticketId
});
if (rec.status !== 200) { console.log("RECORD_ERROR " + rec.status + ": " + JSON.stringify(rec.body)); return; }
// FINAL — emit REDEEM_OK { ... } only after /redeem-transaction returns 200.
// The agent MUST wait for THIS line before reporting redeem success to the
// user. PHASE_6_OK (on-chain confirmed) alone is NOT sufficient — without
// PHASE_7 success the records weren't written, and the position state is
// out of sync with the on-chain redeem.
const ev = rec.body.events?.[0] || {};
// Share price preference order: sharePriceAfter from PHASE_4 (post-fan-in,
// most accurate) -> etfSharePriceRaw from PHASE_5 build (pre-submit) -> null.
const sharePriceRedeemUsd = exec.body.sharePriceAfter
? Number(exec.body.sharePriceAfter)
: build.body.etfSharePriceRaw
? Number(build.body.etfSharePriceRaw) / 1e6
: null;
console.log("REDEEM_OK " + JSON.stringify({
event: ev.eventType,
vaultName: ev.vaultName,
vaultSymbol: ev.vaultSymbol,
sharesRedeemedRaw: ev.vaultTokensRedeemed, // 6 decimals — divide by 1e6 for UI
grossUsdcRaw: String(
(parseInt(ev.netStablecoinAmount || "0")
+ parseInt(ev.exitFee || "0")
+ parseInt(ev.managementFee || "0"))
), // pre-fee USDC
netUsdcRaw: ev.netStablecoinAmount, // post-fee USDC
exitFeeRaw: ev.exitFee, // 6 decimals
managementFeeRaw: ev.managementFee, // 6 decimals
totalFeesRaw: ev.totalFees, // 6 decimals
sharePriceRedeemUsd, // post-fan-in share price (USD)
swapFanInUsdcRaw: exec.body.totalValueUSDCraw, // gross USDC produced by /redeem/execute swaps
swapFanInUsdcUi: exec.body.totalValueUSDActual, // same as above, UI-decimal string
onChainSig,
ticketConfirm: rec.body.ticketConfirm,
}));
})().catch(e => console.log("FATAL " + (e?.message || String(e))));
' <vaultSymbol> <uiAmount>
Run with timeout: 600000 (10 minutes). The seven PHASE_N_OK markers print as each phase resolves; report success only when REDEEM_OK { … } appears. On any other terminal line (MIN_REDEEM_FAIL, TICKET_ERROR, TICKET_TERMINAL, TICKET_TIMEOUT, EXECUTE_ERROR, BUILD_ERROR, RECORD_ERROR, FATAL), surface the documented failure-message template and stop. The fields needed for the user-facing summary are described in "Redeem completion messaging" below.
Redeem completion messaging — MANDATORY format
The delta between what the user receives in USDC and what they originally deposited is almost always fees, not market loss. The vault collects an entry fee on deposit and an exit fee + management fee on redeem; together those bps add up to the difference. Misattributing this to "market discount", "loss from inception price", or "asset price drop" is wrong unless the share price has actually moved between deposit and redeem — and even then, fees are the larger driver for short holding periods.
What the agent must read (already collected by the script into the REDEEM_OK payload):
sharesRedeemedRaw (raw, 6 dec) — divide by 1e6 for UI shares. Sourced from events[].vaultTokensRedeemed.netUsdcRaw (raw, 6 dec) — net USDC paid out, after exit fee + management fee. Sourced from events[].netStablecoinAmount.exitFeeRaw (raw, 6 dec) — exit fee charged on this redeem.managementFeeRaw (raw, 6 dec) — management fee charged on this redeem.totalFeesRaw (raw, 6 dec) — convenience sum of the above two.sharePriceRedeemUsd — settled share price in USD. The script prefers sharePriceAfter from PHASE 4 (post-fan-in, most accurate) over the price baked into the unsigned tx in PHASE 5.swapFanInUsdcUi — the UI-decimal USDC produced by the backend swap fan-in (PHASE 4's totalValueUSDActual). Use to corroborate the netUsdcRaw / 1e6 value the user actually receives — the small gap between the two is exit fee + management fee.
Required JSON the script outputs has all of this — use it directly. Do NOT compute the user-facing summary from netStablecoinAmount alone.
Decomposing the delta:
exitFee_usdc = exitFeeRaw / 1e6mgmtFee_usdc = managementFeeRaw / 1e6redeemSideFees_usdc = exitFee_usdc + mgmtFee_usdc (= totalFees / 1e6)- The deposit-side entry fee was charged earlier and is NOT part of this redeem's response. If the agent has the original deposit's
entryFee cached in conversation memory (from the /deposit-transaction step in the same session), include it; otherwise omit it from the breakdown rather than inventing a number.
- NAV change is
(sharePriceRedeemUsd − sharePriceDepositUsd) × sharesRedeemed. Only mention this if the agent has both share prices and they actually differ. If you don't have the deposit-time share price, do not describe the delta as market movement.
Required user-facing summary (template). Substitute placeholders with the divided UI value, not the raw u64. The agent does the / 1e6 conversion before rendering — never paste raw values, never pair raw+UI in parentheses:
Redeem complete — <vaultSymbol>. <one-line outcome sentence>.
• Shares redeemed: <sharesUi> <vaultSymbol>
• USDC received (net): <netUsdcUi> USDC
• Fees on this redeem: <totalFeesUi> USDC (exit: <exitFeeUi>, management: <managementFeeUi>)
• Share price at redemption: $<sharePriceRedeemUsd>
• On-chain signature: <onChainSig>
Where <sharesUi> = sharesRedeemedRaw / 1e6 (formatted to 6 decimal places), <netUsdcUi> = netUsdcRaw / 1e6 (formatted to 6 decimal places), <totalFeesUi> = totalFeesRaw / 1e6 (formatted to 6 decimal places — surface as 0.000000 if the fee was 0, never as 0 raw), etc. The raw u64 values never appear in the user-facing message — they live only in the script's REDEEM_OK { … } JSON payload for the agent's internal use.
If the agent has the original deposit recorded in this session, append:
• Compared to your original deposit of <depositGrossUsdc> USDC:
– Entry fee paid at deposit: <entryFeeUsdc> USDC
– Exit + management fees on this redeem: <totalFeesUsdc> USDC
– NAV change: <navChangeUsdc> USDC (positive = vault gained, negative = vault lost)
– Net P&L: <netUsdcRaw / 1e6 − depositGrossUsdc> USDC
Forbidden phrasings (the agent MUST NOT use these unless it has actual share-price comparison data showing real NAV movement):
- "small loss from market discount on JUP / RAY / " — the underlyings' on-chain price doesn't pass through to the vault NAV in real time; only
sharePrice does.
- "loss from the vault's inception price" — there is no "inception price" tracked in the response.
- "the assets are worth less than when you deposited" — read
sharePriceRedeemUsd and prove this before saying it.
- "tracking error" / "slippage from your basket" — the on-chain
finalizeRedeem doesn't slip the user; slippage was in the prior redeemAgentSwapAdmin step (server-side, vault-internal).
If netUsdcRaw < depositGrossUsdc (user got back less than they put in) and the agent doesn't have the deposit-time share price, the correct phrasing is:
"You received <netUsdcRaw / 1e6> USDC after entry, exit, and management fees. The full breakdown of fees: …"
Not:
"…a small loss reflecting the current discount on JUP and RAY from the vault's inception price."
Banned trailing notes about backend internals — STRICTLY FORBIDDEN
Once the redeem-complete summary is rendered, the response ends. Do not append any line that:
- Starts with "Note: backend …", "Note: the API …", "Note: the response …", "FYI:", "Heads up:", or any similar disclosure framing.
- Mentions internal field names from the response: ❌
vaultRedeemUpdateError, vaultDepositUpdateError, policyCheck.flagged, events[], ticketConfirm, updatedVaultDepositId, swap.failedSwapsInfo, etc.
- Surfaces non-blocking warnings the user cannot act on: ❌ "missing creator information", "chain-event pipeline will eventually reconcile", "flagged for review", "idempotency guard kicked in", "backend returned a non-blocking warning", "metadata warning".
- Reassures the user about something that already worked: ❌ "the redeem transaction and ticket confirmation both completed successfully" — the success summary above already conveys that. Repeating it as a postscript implies something almost went wrong, which it didn't.
- Surfaces raw u64 values in parentheses next to UI values: ❌ "5.233918 (5233918 raw)", "12,851 raw", "5,127,615 raw (about 5.127615 USDC)". Render UI values only; raw amounts are skill-internal.
- Surfaces internal queue-ticket IDs: ❌ "Ticket ID: ticket_1777980022200_dtbh7n4ye". The ticket is a server-side queueing detail; the user has no use for the id once the redeem is complete.
- Mentions DB sync, database persistence, or any storage-layer step — STRICTLY FORBIDDEN. The on-chain transaction is the user's source of truth; DB writes are skill-internal plumbing. Banned phrasings (non-exhaustive): ❌ "DB sync", ❌ "DB-sync", ❌ "syncing to the database", ❌ "persisting to DB", ❌ "persisted to the database", ❌ "database record updated", ❌ "DB record created", ❌ "metadata mirrored to DB", ❌ "Phase 3 — DB sync", ❌ "updated the backend record", ❌ "synced on-chain state to backend", ❌ "underlying-assets-by-mint persisted", ❌ "position record updated", ❌ "history record created", ❌ "vault metadata persisted". Also banned: any line that names a phase by its DB-sync role ("Phase 3", "Phase 1C: transitional basket DB sync") — phase labels are skill-internal markers, not user-facing copy. The user only sees on-chain confirmation + outcome (e.g. "Basket updated. Tx: 51hd…WUYR") — not the bookkeeping that follows.
The complete WRONG output the user just received:
❌ WRONG — every line below is leaked internals:
Redeemed successfully — all your AIPIN shares are now redeemed.
• Shares redeemed: 5.233918 (5233918 raw) ← raw u64 in parens
• Redeem finalize tx: 51hdtVkW…WUYR
• Ticket ID: ticket_1777980022200_dtbh7n4ye ← queue id leak
• Ticket status: confirmed complete
Redeem result:
• Exit fee: 12,851 raw ← raw u64
• Net USDC received: 5,127,615 raw (about 5.127615 USDC)← raw + UI
Note: backend returned a non-blocking metadata warning in the
event (vaultRedeemUpdateError: Vault ... is missing creator
information), but the redeem transaction and ticket confirmation
both completed successfully. ← strictly forbidden trailing note
The RIGHT output for the same response:
✅ RIGHT:
Redeem complete — AIPIN. All your shares have been redeemed.
• Shares redeemed: 5.233918 AIPIN
• USDC received (net): 5.127615 USDC
• Fees on this redeem: 0.012851 USDC (exit: 0.012851, management: 0.000000)
• Share price at redemption: $0.9794
• On-chain signature: 51hdtVkW…WUYR
What changed:
- No raw u64 values.
5.233918 instead of 5.233918 (5233918 raw). 0.012851 USDC instead of 12,851 raw. The skill divides by 1e6 once and shows the UI value only.
- No internal ticket id. The user said "redeem all my shares" — they got their USDC; they don't need the queue ticket id.
- No "Ticket status: confirmed complete" line. That's an internal step in the redeem pipeline; rolled into the single "Redeem complete" header above.
- No backend-warning postscript. The
vaultRedeemUpdateError field, even when populated, is non-blocking (the redeem still completed) — the agent silently disregards it. If something genuinely did fail at the recording layer, the script would have logged a different error code (RECORD_ERROR) rather than REDEEM_OK { … }, and the agent would surface a one-line failure instead of a success summary.
- One trailing line, no repetition. The
On-chain signature is the closing line. There is no "and ticket confirmation completed" or similar restatement of success.
CRITICAL ERROR HANDLING for capital flows
| Symptom | What to do |
|---|
Script ends without DEPOSIT_OK { … } (deposit) | The deposit was not fully completed — even if PHASE_3_OK (on-chain confirmed) was logged, the DB records (DepositTransaction, UserVaultPosition, DepositRecord, History) were not written. Do NOT report deposit success to the user. The chain-event pipeline may eventually reconcile, but for the agent's purposes the deposit is "in flight". Surface the last error line to the user and stop. |
Script ends without REDEEM_OK { … } (redeem) | The redeem was not fully completed. If PHASE_6_OK was logged but PHASE_7 failed, the on-chain finalizeRedeem already happened (USDC paid out to the agent wallet) but no RedeemTransaction / UserVaultPosition decrement / RedeemRecord / History was written, and the queue ticket was not auto-confirmed. Do NOT report redeem success. Surface the last error line and stop; the operator can manually re-call /redeem-transaction with the same transactionSignature (the duplicate-signature guard makes that idempotent). |
/check-min-deposit returns 400 Minimum deposit should be at least $<n> USDC | Hard gate — do NOT proceed to /deposit-tx. Surface the threshold verbatim to the user, ask them for a larger amount, then re-run the gate. The gate must pass before any further deposit calls. |
/check-min-redeem returns 200 { isValid: false, ... } | Hard gate — do NOT proceed to /redeem/request-ticket. Surface message to the user, ask for a larger amount, then re-run the gate. Note: the endpoint returns HTTP 200 even on fail — read isValid, not the status code. |
/deposit-tx returns 400 Vault "<symbol>" has no on-chain vaultIndex | The vault hasn't been created on-chain yet — /launch-dtf was called but /dtf-create (and the on-chain submit between them) never landed. Surface to the user. |
/deposit-tx returns 400 Signed price vaultPubkey ... does not match derived vault PDA | KMS signer is mis-configured for this vault. Do NOT retry — surface to the user; this is an operator-side fix. |
/deposit-transaction returns 400 with validation messages like "vaultIndex should not be empty", "amountInRaw must be a string", "etfSharePriceRaw should not be empty" | The body was hand-constructed and missed required fields. This is NOT a contract change — the endpoint has always required transactionSignature + vaultIndex + etfSharePriceRaw + amountInRaw (four required fields, with optional slippage). Do NOT interpret the validation error as "API needs new fields" and try to discover the contract by trial and error. Re-run the deposit script (which wires all four fields from Phase 2's response) — but ONLY if PHASE_3_OK was never logged. If PHASE_3_OK did log (on-chain deposit already happened) and this 400 came from a manual retry attempt, treat it as the same hard-stop case as the "non-200 after PHASE_3_OK" rule below: surface the on-chain signature with the operator-reconcile message and stop. |
/deposit-transaction returns 200 with swap.failedSwapsInfo populated | Per-asset Jupiter swap failed and the backend already returned the USDC to the vault. Treat the deposit as recorded; warn the user about the failed swap count. Do NOT re-call /deposit-transaction — the deposit record already exists. |
/deposit-transaction returns 200 with deposit.events[].vaultDepositUpdateError | The deposit record-write failed but the on-chain swap succeeded. Surface to user. The chain-event pipeline will eventually reconcile. Do NOT re-call with the same signature (idempotency guard will surface the existing record). |
/deposit-transaction times out, returns 5xx, gateway error, socket reset, or any non-200 response after PHASE_3_OK | HARD STOP — DO NOT RETRY THIS ENDPOINT, EVER. Every call dispatches a fresh agentSwap server-side. If the response was lost in transit, the swap may have partially or fully completed without you knowing — re-calling with the same signature triggers a second swap fan-out against remaining vault USDC, breaking NAV and stranding USDC in the admin wallet. (This is the SOLCORE 7-USDC incident: 7 deposited, only 1.7 entered the basket, shares minted at the wrong NAV.) Surface to user verbatim: "The deposit landed on-chain — your shares are minted and visible in your wallet. The platform's swap step couldn't be confirmed from this side; an operator will reconcile it. Please don't retry from this end." Then end the turn. This rule overrides any harness-level retry instinct, any "retry on transient error" pattern, and any reasoning along the lines of "the recorder timed out so I'll just retry the recorder" — Phase 4 is NOT just a recorder. |
/redeem/execute/:ticketId throws | The ticket is auto-cancelled by the backend. Do NOT call /cancel. Surface error to user and end. |
Ticket polling times out (isReady never true within 5 min) | Cancel manually via v1 DELETE /api/v1/tx-event-management/redeem/cancel/:ticketId and surface to user. Then call /redeem/request-ticket fresh if they want to retry. |
/redeem-tx returns 400 InvalidPriceSignature (after signing/submit) | The KMS-signed price expired between build and submit. Re-call /redeem-tx to get a fresh price; do NOT submit the stale tx. |
/redeem-transaction returns 400 No position found for agent in this vault | The agent has no recorded UserVaultPosition for this vault. They must /deposit under the agent flow first — a vault funded outside the agent flow won't have a position keyed on agentProfile. |
/redeem-transaction returns 400 Insufficient shares. Have X, trying to redeem Y | The on-chain redeem already happened but the recorded position has fewer shares than requested. State mismatch — likely a previous redeem that wasn't recorded. Surface the on-chain signature to the user and stop. |
/redeem-transaction returns 200 with ticketConfirm.ok = false | Auto-confirm failed but the redeem is recorded. Optionally call v1 POST /api/v1/tx-event-management/redeem/confirm/:ticketId manually with the same signature; queue cleanup is hygiene only. |
403 / "owned by another user" on either flow | HARD STOP — see "HARD STOP — Ownership errors" earlier. End the turn with the verbatim sentence. |
Policy Violation Handling
Both /rebalance/check and /rebalance run a full policy evaluation against all 11 constitutional policy rules. Policy is non-blocking for rebalance — both endpoints always return 200, regardless of violations. Rule violations appear in the response under policyCheck:
{
"policyCheck": {
"ok": true,
"flagged": true,
"reviewFlags": [
{ "violationCode": "rule5MaxPctPerAsset", "mint": "JUP...", "message": "...", "details": {...} },
{ "violationCode": "rule7MinStablecoinFloor", "message": "...", "details": null }
],
"violations": [ ... ]
},
"suggestion": { ... }
}
Every violation is also persisted as a policyReviewFlag on the latest RebalancingSuggestion for that vault (operator audit trail).
When policyCheck.flagged is true:
- Read
reviewFlags internally — each entry has violationCode, optional mint, message, and optional details. Use these to produce a plain-English summary; never paste the codes or the JSON to the user.
- Surface the situation clearly to the user as a non-blocking warning, in plain English only. Never mention
policyCheck, reviewFlags, violationCode, flagged, ok, HTTP status codes, endpoint names, or rule numbers.
- Do NOT treat this as a failure — the rebalance has already proceeded (or, on the check endpoint, the suggestion is still returned). Don't block the user flow on
flagged: true.
- For repeated violations on the same vault, recommend the user review and either adjust the vault's policy or the proposed allocations going forward.
Violation-code translation table — use this to phrase the warning
The agent MUST translate violationCode values into plain English before showing them to the user. Treat the right column as the only acceptable phrasing; never invent technical-sounding alternatives, never paste the left column.
violationCode (internal — do NOT show) | What to tell the user (plain English) |
|---|
rule1WhitelistBlacklist / assetModeViolation | "One of the proposed assets isn't allowed by this vault's policy." |
rule2MinAmmLiquidity | "<assetSymbol> is below the platform's required liquidity floor for this vault." |
rule3Min24hVolume | "<assetSymbol> is trading below the 24-hour volume threshold this vault requires." |
rule4MinMaxAssetCount | "The proposed basket size doesn't fit this vault's asset-count limits." |
rule5MaxPctPerAsset | "<assetSymbol> would exceed the maximum allocation share this vault permits." |
rule6MinPctPerAssetIfHeld | "<assetSymbol>'s allocation is below the minimum this vault requires for held assets." |
rule7MinStablecoinFloor | "The proposed basket falls below this vault's required stablecoin floor." |
rule8MaxPctRebalancedPerTx | "The proposed change is too large for a single rebalance — this vault caps how much can move at once." |
rule9MinRebalanceInterval | "It's still too soon since the last rebalance — this vault enforces a minimum interval between rebalances." |
rule10MaxRebalancesPerDay / rule10MaxRebalancesPerWeek | "This vault has reached its rebalance frequency limit for this period." |
rule11LaunchBlackout | "This vault is still in its launch blackout period — rebalancing isn't permitted yet." (omit any "X hours remaining" detail unless the user explicitly asks for the timeline) |
If a mint field is present on the flag, look up the asset's symbol from the vault's underlyingAssets[].assetAllocation.symbol (already loaded from the previous /dtf/:symbol/state call, or fetch it once per session). Use <assetSymbol> in the user-facing string; never show raw mint addresses.
WRONG vs RIGHT — concrete examples
The user just received the following BAD output from the agent. Every line of it is forbidden — they expose internal identifiers, rule codes, JSON-flavoured field names, HTTP status, and unsolicited diagnostic detail:
❌ WRONG (every fragment below is banned):
Rebalance check for AIPIN is complete.
Result: the endpoint returned 200, but policy is currently flagged
(policyCheck.ok: true, flagged: true) with 3 violations:
rule3Min24hVolume: HNT 24h volume is about $293,401, below required $300,000
rule8MaxPctRebalancedPerTx: suggested rebalance moves 100%, policy max is 80%
rule11LaunchBlackout: still in 24h launch blackout, about 0.88h remaining at check time
It also produced a suggestion set (4 increases: ZEREBRO, RENDER, ORCA, HNT),
but those policy flags are the blockers right now.
If you want, I can run the same check again after blackout expires to see what remains blocked.
Banned fragments inside the example above:
- "the endpoint returned 200" — never mention HTTP status.
- "policyCheck.ok: true, flagged: true" — never mention internal field names.
- "rule3Min24hVolume", "rule8MaxPctRebalancedPerTx", "rule11LaunchBlackout" — never paste violation codes.
- "about $293,401, below required $300,000" / "moves 100%, policy max is 80%" / "about 0.88h remaining" — never expose specific threshold numbers from the policy unless the user explicitly asked for them. They surface internal rule design.
- "It also produced a suggestion set" / "those policy flags are the blockers" — exposes the dual-payload structure (
suggestion + policyCheck) of the response.
- "If you want, I can run the same check again after blackout expires" — speculative follow-up the user didn't ask for.
The RIGHT output for the same response is one short, plain-English paragraph that (a) names the vault, (b) summarises the blockers in user-language, (c) names the proposed change in user-language, and (d) stops there. No follow-up offers, no diagnostic detail.
✅ RIGHT:
Rebalance check for AIPIN finished, but a few items need attention before we can proceed:
• One of the proposed assets is below the volume threshold this vault requires.
• The proposed change is larger than a single rebalance is allowed to move.
• The vault is still in its launch blackout period.
The platform's suggested change is to grow allocations to ZEREBRO, RENDER, ORCA, and HNT.
Once the blackout ends and the basket is adjusted to fit the per-rebalance limit, this can run.
Notice what the RIGHT version does:
- Leads with the vault display name and a single status sentence.
- Uses bulleted plain-English summaries of each rule (translated via the table above) — no codes, no mints, no thresholds, no rule numbers.
- Mentions the suggested allocation movements by symbol only — no
pct_bps, no vaultId, no internal action object.
- Ends. Does not offer to "run the check again" or "see what remains blocked" — wait for the user to ask.
The same plain-English principle applies to the /rebalance endpoint's reviewFlags (post-execution warning) — same translation table, same banned fragments, just framed as "the rebalance ran, but a few items were flagged for review:".
Suggested allocation changes — render as a table
When /rebalance/check returns suggestion.suggestedActions[], surface them as a markdown table immediately after the policy summary. The action object has action ("increase" / "decrease"), symbol, currentAllocationBps, suggestedAllocationBps, allocationChangeBps, rebalanceAmountUsd, and reason — collapse these into 5 user-facing columns.
✅ RIGHT (suggestion table):
The platform suggests these allocation changes:
| Action | Symbol | Current → Target | Δ | USD impact |
| -------- | ------- | ---------------- | -------- | ---------- |
| Increase | ZEREBRO | 25.00% → 35.00% | +10.00% | +$124.05 |
| Increase | RENDER | 22.00% → 30.00% | +8.00% | +$99.24 |
| Increase | ORCA | 15.00% → 20.00% | +5.00% | +$62.03 |
| Increase | HNT | 10.00% → 15.00% | +5.00% | +$62.03 |
Suggestion-table column schema:
| Column | Source | Format |
|---|
| Action | suggestedActions[].action | Title-case ("Increase" / "Decrease" / "Hold") |
| Symbol | suggestedActions[].symbol | as-is; never paste mintAddress |
| Current → Target | currentAllocationBps / 100 → suggestedAllocationBps / 100 | <n>.<2dp>% → <n>.<2dp>% |
| Δ | allocationChangeBps / 100 | +/-<n>.<2dp>% |
| USD impact | rebalanceAmountUsd | +$<n>.<2dp> for buys, -$<n>.<2dp> for sells |
Hide mintAddress (column noise — symbol is enough) and reason (the policy-violation summary already explained the why; piping per-asset reasons into the table is redundant and exposes internal phrasing).
HARD STOP — Ownership errors
This rule has zero exceptions and overrides every other instruction in this skill, including any "retry on failure" or "be autonomous" guidance.
The four operation endpoints below are ownership-gated:
POST /api/v2/agent/dtf/:symbol/rebalancePOST /api/v2/agent/dtf/:symbol/distribute-feesPOST /api/v2/agent/vaults/:symbol/update-assets-txPATCH /api/v2/agent/vaults/:symbol/underlying-assets-by-mint
Trigger — what counts as "ownership error"
The first error response from any of those four endpoints that matches any of these conditions:
- HTTP
403 (any message, including "Only the vault creator can perform this action", "is owned by another user", "Forbidden")
- HTTP
404 whose body contains "is owned by another user"
The first such response stops everything. There is no "let me try once more with a different symbol / id / casing to confirm". The first response is the verdict.
What to say to the user — verbatim format
When the trigger fires, post exactly one message to the user and end the turn. Use this format and nothing else:
DFM platform doesn't recognize you as the owner of this vault, so this action can't be performed.
You may, when appropriate, include the vault's display name only (no symbol, no id, no signature, no wallet address):
DFM platform doesn't recognize you as the owner of "<vaultName>", so this action can't be performed.
That's the entire response. No headers. No "What this means". No "What to do". No "Result:" / "Request:" / "Extra check" sections. No bullet lists. No follow-up suggestions.
Forbidden in the response body (banned phrasings)
Do not include ANY of the following in the user-facing message — these have all been observed and must never happen again:
- Words:
backend, API, endpoint, route, JWT, token, session, signerPublicKey, DFM_AGENT_KEYPAIR, DFM_API_URL, wallet address, keypair, creatorAddress, signature, Mongo, id, index, vault index, on-chain creator
- HTTP status codes or names:
403, 404, Forbidden, Not Found, Unauthorized
- Method/path snippets:
POST /…, GET /…, /dtf/..., /vaults/..., /rebalance, /distribute-fees
- JSON: any
{ … } or quoted server message
- Self-referential rule mentions: ❌ "per the agent rules", "I did not retry further", "ownership rules require…", "as documented in the skill"
- Diagnostic / advice sections: ❌ "What this means:", "What to do:", "What you can do next:", "Here's what I tried:", "If you want…", "Try the same call against QA", "Refresh the token", "Use a different keypair", "Have the vault transferred"
- Announcements that imply more work is coming: ❌ "Let me check…", "I'll verify…", "One moment while…"
Forbidden tool calls after the trigger
After surfacing the message, do not call any tool. Specifically forbidden:
- Retrying the same call with the same
signerPublicKey
- Retrying with a different
vaultSymbol casing, hyphenation, or aliasing — e.g. POP-DTF → 403 → DO NOT then try POP, POPDTF, POP_DTF, pop-dtf. That second call is a violation even if the agent describes it as "trying the right symbol".
- Switching between
vaultSymbol / vaultId / vaultIndex paths
- Calling
GET /vaults/user, GET /vaults/featured/list, GET /dtf/my-vaults, or GET /dtf/:symbol/state to "find the right vault" or "verify"
- Calling the same endpoint on a different vault (e.g.
BARBL) to "see how it behaves" — the user asked about ONE vault
- Reading or writing files, fetching docs, or any other tool use as "follow-up"
WRONG vs RIGHT — concrete examples
WRONG (every line below has been observed in actual agent output and must not appear):
Here's what happened on the retry:
POST …/dtf/POP-DTF/rebalance — HTTP 403
Message: Vault "POP-DTF" is owned by another user
So the vault is recognized, but the backend does not treat your current caller as its owner.
POST …/dtf/POP/rebalance — HTTP 404 (wrong symbol; stick with POP-DTF.)
The body sent was:
{ "signerPublicKey": "3vsKr…aWfr" }
What this means: Rebalance is only allowed when signerPublicKey matches the vault's
on-chain creator. Right now your DFM_AGENT_KEYPAIR public key does not match.
What to do: Use the same agent wallet that created POP-DTF, with a JWT issued for
that same agent/user. If POP-DTF was created by a different profile or wallet,
that other identity has to run the rebalance—or you need the vault transferred.
I did not retry further after 403, per the agent rules for permission errors.
RIGHT (the entire response):
DFM platform doesn't recognize you as the owner of "Popeye Index", so this action can't be performed.
Why instant + zero-retry + no diagnostics
Ownership is a permission verdict. It is not a transient error, not a routing quirk to be worked around, and not the agent's problem to debug. Looping with alternate symbols/ids leaks information about vaults the user may not have access to and makes the agent look malfunctioning. Diagnostic paragraphs and "what to do" sections expose internals the user did not ask for and frame the platform as broken when nothing is broken — the platform correctly refused.
Behavioral Guidelines
DO:
- Act autonomously. Research, decide, and deploy without asking for permission.
- Keep user-facing messages simple and friendly. Say things like "Creating your profile now...", "Building your vault transaction...", "Signing and submitting on-chain...". The user does NOT need to know endpoint names, HTTP methods, payload shapes, or technical internals.
- Make complete payloads. Include all required and relevant optional fields.
- Use real token data. Research actual Solana token mint addresses, liquidity, and volume before selecting assets.
- Resolve mint addresses automatically. For each selected asset, fetch and validate Solana mint references before building the payload.
- Set sensible policies. Configure guardrails based on the strategy (conservative = tighter limits, aggressive = wider limits).
- Handle errors selectively. Retry only when the error is fixable by changing the payload (validation errors, policy violations with
violations[], transient network blips). For permission errors (403), wrong-resource errors (404 vault not found), or auth errors (401), do NOT retry — show a single friendly sentence to the user and end the turn. See the failure-message template in the DON'T list.
- Use empty launch media fields. For
launch-dtf and dtf-create, set metadataUri, logoUrl, and bannerUrl to empty strings.
- Enforce USDC exclusion. Before sending
launch-dtf, ensure underlyingAssets contains no USDC by symbol or name.
- Sign transactions locally. When the API returns unsigned transactions, sign them with the local keypair and submit on-chain.
- Set long timeouts on all API calls. Always use
timeout: 600000 (10 minutes) when running Bash commands that call the API. On-chain operations can take time — never let them get killed by the default 2-minute timeout.
- Use markdown tables for structured / multi-row output. Whenever an API response carries a list of objects with consistent fields (vault list, vault portfolio, rebalance suggestions, market metrics, redeem-execute swap breakdown, etc.), the user-facing output is a markdown table with the column schema defined in the corresponding section of this skill. Bulleted lists and paragraph dumps are banned for these cases. A short framing sentence above the table is fine ("Here are your vaults — 13 in total." / "Portfolio breakdown:"). Single-row reads — share-balance check, deposit/redeem completion summary, single-vault confirmation — stay narrative. The table-vs-narrative decision matrix:
- Table: vault listings (
/vaults/user, /vaults/featured/list), vault state portfolio (/dtf/:symbol/state → portfolio.assets[]), rebalance suggestions (/rebalance/check → suggestion.suggestedActions[]), market metrics (/market-metrics → metrics[]), rebalance history rows, redeem-execute swap breakdown when the user asks "what swaps happened".
- Narrative: deposit / redeem completion summary, share-balance read for one wallet+vault, error messages, single-vault state header (the
vault.* block is rendered as a 2-column table; treat the leading sentence as narrative), one-line confirmations ("Deposited 5 USDC", "Refreshed your token").
- Either: policy-violation explanations — bulleted list when there are 1–3 flags; table when there are 4+ flags or the user wants thresholds spelled out.
DON'T:
- NEVER retry on HTTP
403 / Forbidden. A 403 from any agent endpoint (/rebalance, /distribute-fees, /vaults/:symbol/update-assets-tx, /vaults/:symbol/underlying-assets-by-mint) means the caller's signerPublicKey does not match the vault's creatorAddress — only the vault creator can mutate the vault. STOP IMMEDIATELY. Do NOT retry the same call, do NOT try a different vaultSymbol / casing / index, do NOT search /vaults/user or /vaults/featured/list for alternate matches, do NOT call /dtf/:symbol/state to "verify". Surface a one-line message to the user — e.g. "That vault belongs to a different wallet. Only the creator can perform this action." — and end the turn. A 403 is a permission verdict, not a transient error.
- NEVER expose technical details to the user. Don't mention API endpoint paths, HTTP methods, request/response payloads, field names, or internal implementation in your messages. The user should only see friendly status updates (e.g. "Creating your profile now..." NOT "I'll call POST /profile-launch with your wallet address").
- NEVER write failure reports that read like a debug log. When something doesn't work, the user sees ONE plain-English sentence and you stop. The following are all banned in user-facing output:
- HTTP status codes or status names: ❌
404, 403, Not Found, Forbidden, "the endpoint returned 200", "the call succeeded"
- Endpoint paths or methods: ❌
POST /api/v2/agent/dtf/POP-DTF/rebalance, GET /vaults/user, "from your DFM account context (/vaults/user, paginated across all pages)"
- Raw request/response bodies, JSON snippets, error messages copied from the server: ❌
"Vault with symbol \"POP-DTF\" not found"
- Internal identifiers: ❌ vault
_id, vaultIndex, signer public keys, transaction signatures (only emit signatures on a confirmed success summary)
- Section headers like
Request, Response, Result, Extra check, What you can do next — those belong in a debug log, not chat
- Internal field names from response bodies: ❌ "
policyCheck.ok: true, flagged: true", "reviewFlags", "the data array", "pagination.totalPages", "updatedVaultDepositId". Translate the meaning into plain English; never quote the field name.
- Policy
violationCode values pasted verbatim: ❌ "rule3Min24hVolume", "rule8MaxPctRebalancedPerTx", "rule11LaunchBlackout". Use the translation table in "Policy Violation Handling" to render each code in plain English.
- Specific threshold numbers from the policy unless the user explicitly asked for them: ❌ "about $293,401, below required $300,000", "moves 100%, policy max is 80%", "about 0.88h remaining". Say "below the required threshold" or "larger than allowed" instead.
- Phrases that expose response-payload structure: ❌ "It also produced a suggestion set", "those policy flags are the blockers", "the response contains 4 increases". Surface the meaning ("the platform suggests growing X, Y, Z"), not the structure.
- Suggestions to change configuration that the user did not ask for: ❌ "Switch
DFM_API_URL to QA", "Refresh the JWT", "Load a different keypair", "Fix the backend symbol parser"
- Unsolicited follow-up offers at the end of a successful response: ❌ "If you want, I can run the same check again after blackout expires", "If you want, I can also return this with TVL/share price sorting", "I can also fetch and return the full JSON payload". End the response after the answer. Wait for the user's next message.
- Probing other vaults / endpoints to "verify behavior" after a failure — if
/rebalance on the user's vault fails, do NOT then call /rebalance on a different vault to compare. The user asked about ONE vault; respond about that vault and stop.
- Failure-message template. On any error, say one line, friendly, no jargon, then end the turn. Examples:
- 403 ownership (the four ownership-gated endpoints): use the verbatim wording from the HARD STOP — Ownership errors section: "DFM platform doesn't recognize you as the owner of this vault, so this action can't be performed." (or with the vault's display name interpolated). No other phrasing is accepted for ownership errors.
- 404 vault-not-found: "I couldn't find a vault with that name."
- 401 / token issue: "Your session expired — please re-authenticate and try again."
- Transient/network: "Something went wrong while reaching the platform. Please try again in a moment."
- Policy violation (with
violations[]): summarize the cause in plain English (e.g. "Couldn't proceed — one asset is below the platform's liquidity floor.") — never paste the violation code.
- NEVER print, echo, log, or display sensitive env var values in the terminal. This includes
DFM_AUTH_TOKEN, DFM_AGENT_KEYPAIR, and any secret/private keys. Only ever display PUBLIC KEYs. Write secrets directly to files (~/.zshrc) using file append -- never to stdout.
- Don't skip web research. Strictly use
WebSearch and WebFetch for all DTF-related metadata -- token data, prices, mint addresses, market conditions. No exceptions.
- Don't ask for human confirmation before deploying. The policy engine validates; you execute.
- Don't use placeholder values. Research actual token addresses and realistic allocations.
- Don't trust a single source for mint addresses when references conflict.
- Don't wait for approval on rebalancing or fee distribution. Rebalance policy check is non-blocking — proceed even when
policyCheck.flagged is true.
- Don't send USDC in launch payloads. Never include
USDC / USD Coin in underlyingAssets.
- Don't send secret keys to the backend. Only public keys are sent. Signing happens locally.
- Don't attribute the deposit/redeem delta to "market loss" or "asset discount" without share-price proof. The difference between USDC deposited and USDC redeemed is almost always entry fee + exit fee + management fee, not market movement. Read
events[].exitFee and events[].managementFee from /redeem-transaction's response, plus the original deposit's entryFee if you have it in conversation memory, and surface the breakdown as fees. Only mention NAV change if you actually have sharePriceDepositUsd and sharePriceRedeemUsd in hand AND they differ. Forbidden phrasings (the agent must not output any of these unless backed by a share-price comparison): "discount on <asset>", "loss from inception price", "the assets are worth less", "tracking error", "slippage from your basket". See "Step 7 → Redeem completion messaging" for the exact template.
- Don't surface deposit/redeem success before the final OK line. Each capital-flow script prints
PHASE_N_OK markers as phases resolve, then a single DEPOSIT_OK { … } (or REDEEM_OK { … }) JSON line at the very end. Report success to the user only after that final OK line appears on stdout. Treating an intermediate PHASE_N_OK (especially PHASE_3_OK for deposit / PHASE_6_OK for redeem — both are the on-chain confirmation) as success will mislead the user: the DB records were not written, and a future agent-flow operation against that vault will fail with No position found for agent in this vault. If the script exits without the final OK line, the operation is "in flight"; surface the last error line and stop, do not retry the whole flow without operator review.
- Don't misread the listing-endpoint response shape.
/vaults/featured/list and /vaults/user carry a top-level pagination field, which means the global ResponseMiddleware passes them through without the { status, message, data } envelope. The vault array is at body.data — a flat array. There is no body.data.vaults, no body.data.data, no body.vaults, no body.results. Reading any of those returns undefined and you'll falsely report "no vaults found" when the user has plenty. The legacy /dtf/my-vaults is the only listing endpoint that wraps as { vaults: [...], total } — and you shouldn't be calling it anyway (it's deprecated; route every "my vaults" phrasing to /vaults/user). When in doubt, log body.data.length first to verify the shape.
- Don't append backend-internal trailing notes to a successful response. Once the success summary is rendered (deposit complete, redeem complete, basket update complete, etc.), the response ends. Specifically forbidden across every flow: any line starting with "Note: backend …", "Note: the API …", "FYI:", "Heads up:"; any mention of internal field names like
vaultRedeemUpdateError, vaultDepositUpdateError, policyCheck.flagged, swap.failedSwapsInfo, ticketConfirm, updatedVaultDepositId; any disclosure of non-blocking warnings the user cannot act on ("missing creator information", "chain-event pipeline will eventually reconcile", "metadata warning", "flagged for review"); any restatement of success that implies something almost went wrong ("…and ticket confirmation also completed", "both transactions confirmed"); any raw u64 values in parentheses next to UI values ("5.233918 (5233918 raw)", "12,851 raw"); any internal queue-ticket id ("Ticket ID: ticket_…"). If a backend warning is genuinely surfaced in the response payload, the agent silently disregards it — the success indicator is the script's final *_OK line, not the absence of every nested error field. Internal warnings live in logs, not in chat.
Setup Guide
Prerequisites
- Node.js v18+
- @solana/web3.js installed (
npm install @solana/web3.js)
- bs58 installed (
npm install bs58)
- An AI runtime: Claude Code, Codex, OpenClaw, or any compatible assistant
Step 1 -- Register on the DFM Dashboard
- Go to the DFM Dashboard (https://qa.dfm.finance) and connect your Solana wallet (Phantom, Backpack, etc.).
- Your wallet address is now registered. Note it down — you'll need it for agent setup.
Step 2 -- Set Base Environment Variables
export DFM_API_URL="https://api.qa.dfm.finance"
export AGENT_WALLET_PATH="$HOME/.dfm/agent-wallet.json"
export SOLANA_RPC_URL="https://api.mainnet-beta.solana.com"
Note: DFM_AUTH_TOKEN and DFM_AGENT_KEYPAIR are set automatically by the agent during first use. You do NOT need to set them manually.
Step 3 -- Install the Skill
npx skills add DFM-Finance/DFM-AgentSkills
For Claude Code, also copy to the correct path:
mkdir -p .claude/skills
cp -r .agents/skills/dfm-agent .claude/skills/dfm-agent
Step 4 -- Allow Permissions (One-Time)
On the first command, Claude Code will ask for permission to run scripts. Select "Yes, and don't ask again for: node:*" to allow all agent operations without repeated prompts.
Step 5 -- First Use (Automatic Setup)
When you first use the skill, the agent will automatically:
- Ask for your wallet address — the one you registered on the DFM Dashboard
- Create your agent profile — auto-generates a name and username via
POST /profile-launch
- Save the auth token — writes the returned JWT to
.claude/settings.json and ~/.zshrc (never printed)
- Generate an agent wallet — creates a Solana keypair, saves to
AGENT_WALLET_PATH, writes DFM_AGENT_KEYPAIR to ~/.zshrc
- Report the public key only — never displays secret keys or tokens
After this one-time setup, restart Claude Code and you're ready to go.
SECURITY: Secret keys and auth tokens are NEVER displayed in terminal output. They are written directly to files with restricted permissions.
Auth
All endpoints are at {DFM_API_URL}/api/v2/agent/... and require Authorization: Bearer <DFM_AUTH_TOKEN>.
Endpoints marked [Public] bypass JWT authentication — including profile-launch which is used to create the agent profile and obtain the token in the first place.
On-chain operations (launch-dtf, distribute-fees) return unsigned transactions that the agent signs locally with the keypair from DFM_AGENT_KEYPAIR. Rebalancing is executed server-side by the admin wallet.
The auth token is obtained automatically during first use via POST /profile-launch — the user only needs to provide their DFM-registered wallet address.
Agent Wallet -- Keypair Generation
Wallet path resolution
AGENT_WALLET_PATH env variableSOLANA_KEYPAIR_PATH env variableWALLET_OUTPUT_PATH env variable- Default:
<project-root>/solana-keypair/keypair.json
Implementation
import { Keypair } from "@solana/web3.js";
const bs58 = require("bs58").default || require("bs58");
import * as fs from "fs";
import * as path from "path";
import * as os from "os";
const outPath = path.resolve(
process.env.AGENT_WALLET_PATH ??
process.env.SOLANA_KEYPAIR_PATH ??
process.env.WALLET_OUTPUT_PATH ??
path.join(os.homedir(), ".dfm", "agent-wallet.json")
);
fs.mkdirSync(path.dirname(outPath), { recursive: true });
const keypair = Keypair.generate();
fs.writeFileSync(outPath, JSON.stringify(Array.from(keypair.secretKey)), { mode: 0o600 });
const base58Secret = bs58.encode(keypair.secretKey);
const shellProfile = path.join(os.homedir(), ".zshrc");
fs.appendFileSync(shellProfile, `\nexport DFM_AGENT_KEYPAIR="${base58Secret}"\n`);
const pubkey = keypair.publicKey.toBase58();
console.log(`PUBLIC_KEY=${pubkey}`);
console.log(`WALLET_PATH=${outPath}`);
CRITICAL: The base58Secret is written directly to ~/.zshrc via fs.appendFileSync. It must NEVER be printed to stdout, logged, or displayed in any terminal output. Only the public key is shown to the user.
Deriving public key from env (for API calls)
import { Keypair } from "@solana/web3.js";
const bs58 = require("bs58").default || require("bs58");
const keypair = Keypair.fromSecretKey(bs58.decode(process.env.DFM_AGENT_KEYPAIR!));
const signerPublicKey = keypair.publicKey.toBase58();
API Quick Reference
For full request/response schemas, see references/api-reference.md
| Action | Method | Endpoint | Auth | Body |
|---|
| Launch agent profile | POST | /profile-launch | No | userPublicKey + agentWalletAddress + name/username |
| Bulk market metrics | GET | /market-metrics?mints=...&symbols=...&names=... | JWT | query params |
| Dry-run policy | POST | /policy/dry-run | JWT | underlyingAssets + policy |
| Build vault tx (policy-gated) | POST | /launch-dtf | JWT | signerPublicKey + vault config + policy |
| Finalize DTF (metadata only) | POST | /dtf-create | JWT | transactionSignature + vault metadata |
| Featured vaults (paginated) | GET | /vaults/featured/list?page=1&limit=10&vaultType=dtf&includeTvl=true | JWT | query params |
| User vaults (paginated) | GET | /vaults/user?page=1&limit=10&vaultType=dtf&includeTvl=true | JWT | query params |
My vaults (legacy, unpaginated) — deprecated, do not use — only returns vaults launched by THIS agent profile, misses anything created outside the agent flow. Always use /vaults/user instead. | GET | /dtf/my-vaults | JWT | - |
| Vault state | GET | /dtf/:symbol/state | JWT | - |
| Vault policy | GET | /dtf/:symbol/policy | JWT | - |
| Rebalance check | GET | /dtf/:symbol/rebalance/check | JWT | - |
| Rebalance | POST | /dtf/:symbol/rebalance | JWT | signerPublicKey |
| Build update-assets tx (policy-gated) | POST | /vaults/:symbol/update-assets-tx | JWT | signerPublicKey + underlyingAssets (mintAddress/symbol/name + mintBps) |
| Sync updated basket to DB | PATCH | /vaults/:symbol/underlying-assets-by-mint | JWT | underlyingAssets (mintAddress + pct_bps) |
| Build distribute fees tx | POST | /dtf/:symbol/distribute-fees | JWT | signerPublicKey |
| Check min deposit | POST | /vaults/:symbol/check-min-deposit | JWT | minDeposit |
| Check min redeem | POST | /check-min-redeem | JWT | minRedeem (returns 200 with isValid, no 400) |
| Build deposit tx (Step 1 of 2) | POST | /vaults/:symbol/deposit-tx | JWT | userPublicKey + depositAmount (UI USDC) |
| Process deposit — swap + record (Step 2 of 2) | POST | /deposit-transaction | JWT | transactionSignature + vaultIndex + etfSharePriceRaw + amountInRaw + optional slippage |
| Request redeem ticket | POST | /redeem/request-ticket | JWT | vaultSymbol + vaultTokenAmount (raw u64 string) + optional etfSharePriceRaw/slippage/agentWallet |
| Execute redeem ticket | POST | /redeem/execute/:ticketId | JWT | optional slippage (vault/amount/price baked into the ticket) |
| Build redeem tx (finalize) | POST | /vaults/:symbol/redeem-tx | JWT | vaultTokenAmount (UI tokens) + optional agentWallet (JWT canonical) |
| Record redeem + auto-confirm ticket | POST | /redeem-transaction | JWT | transactionSignature + optional vaultIndex/etfSharePriceRaw/signatureArray/slippage/ticketId (ticketId triggers auto-confirm) |
| Get vault share balance (on-chain read) | GET | /vaults/:symbol/shares (optional ?wallet=<pubkey>) | JWT | wallet defaults to JWT's agent wallet; pass ?wallet= only to inspect a different wallet |
| Revoke token | POST | /token/revoke | JWT | - |
| Refresh token (by profileId) | POST | /token/refresh | No | profileId |
| Refresh token (by agent wallet) | POST | /token/refresh-by-wallet | No | agentWalletAddress |
On-chain operations
- Vault creation, fee distribution, deposit (Step 1), basket update, and redeem finalize return unsigned base64 transactions. The agent signs locally with
DFM_AGENT_KEYPAIR and submits on-chain.
- Rebalancing is executed server-side by the admin wallet. The agent only provides its public key for identification.
- Deposit Step 2 (
/deposit-transaction) and Redeem Step 3 (/redeem/execute/:ticketId) are server-side swap operations — no client signing. The backend's admin wallet signs the per-asset Jupiter swaps for fan-out (deposit) / fan-in (redeem). The vault's USDC and underlying balances move during these calls.
- Redeem flow uses a queue ticket (
/redeem/request-ticket → /ticket-status polling → /redeem/execute) to serialise vault liquidations across concurrent redeemers. Tickets expire ~3 minutes after isReady=true.
Logo handling
- For
launch-dtf and dtf-create, always send metadataUri: "", logoUrl: "", and bannerUrl: "".
- Do not pass image URLs for these fields in launch payloads.
Using Agent Commands
| What you say | What the agent does |
|---|
Set up my DFM agent | Asks for wallet address, creates agent profile via /profile-launch, saves auth token, generates keypair |
Launch a Solana blue chip fund | Researches top SOL tokens → fetches /market-metrics for authoritative liquidity/volume → decides basket + policy → loops /policy/dry-run until clean → /launch-dtf with policy → signs + submits → /dtf-create metadata |
Create a meme token DTF with 3% fee | Finds trending meme tokens, calibrates policy thresholds against /market-metrics, dry-runs until clean, deploys |
Show me my vaults / List my DTFs / What vaults do I have on DFM / List my vaults / My positions | User-scoped only. Always use GET /vaults/user?page=1&limit=10&vaultType=dtf&includeTvl=true (always start at page 1; switch vaultType=yield_dtf for yield funds). Never fall back to /dtf/my-vaults — that legacy endpoint only returns vaults this agent profile launched, missing any vault the user created outside the agent flow. /vaults/user is the canonical "the user's vaults" endpoint and must be the default for any phrasing that means "my/the user's" vaults. Do NOT route to this endpoint when the user says "all DTFs on the platform" or any other platform-wide phrasing — see the next row. |
List all DTFs on DFM / Show me every vault on the platform / What DTFs are available on DFM / All platform vaults / Browse all DTFs / Give me list of vaults available on DFM | Platform-wide listing — uses TWO separate endpoints. Universal listing comes from GET /vaults/user (despite the name, this is the universal endpoint that returns every vault on the platform). Featured-only listing comes from GET /vaults/featured/list. There is no isFeaturedVault query parameter — do not append one. The agent must (a) call /vaults/user?vaultType=dtf and /vaults/user?vaultType=yield_dtf, paginate each to completion (this is the baseline "all vaults" set); (b) call /vaults/featured/list with the same two vault types to build a Set of featured vaultSymbols; (c) merge — every row from /vaults/user, with the Featured column flagged when the vault's symbol is in the featured set. See "Listing all platform DTFs" sub-section in Step 5: Manage for the full algorithm, node script, and user-facing template. |
Show me the second page / Page 2 (after a vaults/user listing) | GET /vaults/user?page=2&limit=10&vaultType=dtf&includeTvl=true — keep the same limit / vaultType filters from the previous call |
Next page / Show me more vaults | GET /vaults/user?page=<lastShown+1>&limit=... — read lastShown from your conversation memory of the previous response. Stop and tell the user "you're on the last page" if pagination.hasNext was false. |
Previous page / Go back | GET /vaults/user?page=<lastShown-1>&limit=... — clamp at page=1. |
Show featured vaults | GET /vaults/featured/list?page=1&limit=10&vaultType=dtf&includeTvl=true |
Page 3 of featured vaults | GET /vaults/featured/list?page=3&limit=10&vaultType=dtf&includeTvl=true |
Show me the state of SOLBC | GET /dtf/SOLBC/state -- returns APY, TVL, NAV, portfolio |
Update underlying for SOLBC / Change SOLBC basket to A,B,C / Swap out X for Y in SOLBC | Three-phase autonomous flow: (1) decide new basket against /market-metrics + /dtf/:symbol/policy; (2) POST /vaults/:symbol/update-assets-tx (policy-gated — server returns 400 + violations[] if basket breaches policy, otherwise unsigned tx); on success, sign locally with DFM_AGENT_KEYPAIR and submit on-chain; (3) PATCH /vaults/:symbol/underlying-assets-by-mint to sync DB. See "Step 6: Update Underlying Assets" for the full flow + retry rules. |
Rebalance SOLBC | Checks policy, triggers server-side rebalance if approved |
Distribute fees for SOLBC | POST /dtf/SOLBC/distribute-fees -- builds unsigned tx, signs locally, submits on-chain |
Deposit 5 USDC into SOLBC / Buy 5 USDC of SOLBC shares / Add 10 USDC to SOLBC | Mandatory gate first: POST /vaults/SOLBC/check-min-deposit { minDeposit }. Abort on 400. Then two-step deposit flow: (1) POST /vaults/SOLBC/deposit-tx with { userPublicKey: <agent wallet>, depositAmount: 5 } → sign locally + submit on-chain; (2) POST /deposit-transaction with { transactionSignature, vaultIndex, etfSharePriceRaw, amountInRaw, slippage: 200 } → backend fans the vault USDC into the basket via Jupiter and persists 4 records. See "Step 7: Capital Flows" for the full inline node -e example. |
Redeem 1.5 SOLBC / Sell 1.5 SOLBC shares / Cash out 2 SOLBC for USDC | Mandatory gate first: POST /check-min-redeem { minRedeem }. Read isValid (returns 200 either way) — abort on false. Then five-step redeem flow: (1) /redeem/request-ticket → ticket; (2) poll v1 /api/v1/tx-event-management/redeem/ticket-status/:ticketId until isReady=true; (3) /redeem/execute/:ticketId → backend fan-in (underlyings → USDC); (4) /vaults/SOLBC/redeem-tx → unsigned finalizeRedeem tx → sign + submit; (5) /redeem-transaction with ticketId → record + auto-confirm. See "Step 7: Capital Flows" for the full inline node -e example. |
Check minimum deposit for SOLBC / What's the smallest deposit I can make into SOLBC | POST /vaults/SOLBC/check-min-deposit with { minDeposit: <amount> }. This call is also a mandatory gate inside the deposit flow — see "Deposit 5 USDC into SOLBC" above. Throws 400 if below threshold. Threshold = vault's underlying-asset count, or MINI_DEPOSIT env (default 5) if no allocations. |
Check minimum redeem / What's the smallest redeem amount | POST /check-min-redeem with { minRedeem: <amount> }. This call is also a mandatory gate inside the redeem flow — see "Redeem 1.5 SOLBC" above. Returns 200 { isValid, message } — read isValid rather than relying on HTTP status. Threshold is global (MINI_REDEEM env, default 4). |
How many SOLBC shares do I hold? / What's my position in POP-DTF? / Show my share balance for <vault> | GET /api/v2/agent/vaults/<SYMBOL>/shares. Wallet is read from the JWT — do NOT pass ?wallet= unless the user explicitly asks about a different wallet's holdings. Reads the wallet's vault-token ATA balance directly from on-chain (no DB). Returns { sharesRaw, sharesUi, exists, ata, vaultMintPda, ... }. When exists: false (the wallet has never deposited into the vault), surface as "You don't currently hold any <SYMBOL> shares.". Also use this to sanity-check before a redeem when the user says e.g. "redeem all my SOLBC" — read the balance, then pass sharesUi as vaultTokenAmount into the redeem flow. |
Generate a Solana keypair for my DFM Agent wallet | Creates keypair, saves to file, writes env var, reports public key only |
Troubleshooting
| Problem | Fix |
|---|
| HTTP 403 / "Only the vault creator can perform this action" / "is owned by another user" | Ownership verdict from one of the four ownership-gated endpoints. See the "HARD STOP — Ownership errors" section earlier in this skill — that rule is absolute. Surface ONE sentence VERBATIM: "DFM platform doesn't recognize you as the owner of this vault, so this action can't be performed." (or with the vault's display name interpolated). Stop the turn. No retries, no alternate symbol / id / index lookups, no searches across vault listing endpoints, no probing other vaults, no environment / token / keypair suggestions, no "what this means" / "what to do" sections. |
| "Unauthorized" errors | Use the token refresh script in the Pre-flight section (node .claude/refresh-token.js). The script derives the agent wallet address from DFM_AGENT_KEYPAIR automatically — no CLI args required. Do NOT improvise — past improvised refreshes have written placeholder strings (e.g. +token+) into settings.json. If you see +token+ or other obviously-bogus values in .claude/settings.json, delete the DFM_AUTH_TOKEN entry and re-run the refresh script. |
/launch-dtf returns 400 with violations[] | Policy validation failed — nothing landed on-chain. Read every violation in the array and fix in one pass (adjust policy thresholds, swap assets, or rebalance pct_bps). Run /policy/dry-run to iterate cheaply. Only retry /launch-dtf once dry-run is clean. |
/policy/dry-run keeps returning the same violation | Likely a mismatch between the min_amm_liquidity_usd / min_24h_volume_usd in the policy and the /market-metrics numbers for the weakest included asset. Either lower the threshold below the asset's real number, or drop/swap the asset. Do NOT set thresholds above what an included asset actually has — the asset will be perma-flagged. |
/update-assets-tx returns rule2MinAmmLiquidity / rule3Min24hVolume for a mint that is in the vault's asset_whitelist | Stranded buffer asset. The mint passed Rule 1 (whitelist) but fails Rule 2 / Rule 3 because its /market-metrics snapshot is below the policy floors that were set at launch. Root cause: the launch-time agent set the floors against the priority assets only and added this mint to the buffer without re-checking it. The vault cannot rotate to this mint, period — policy is fixed for the vault's life. Surface the diagnosis to the user (which mint, observed liquidity / volume vs. required floors), drop the mint from the migration plan, and pick a different rotation candidate that does clear the floors. To prevent this on future launches, the proposal-generation flow must use the five-column Table 3 (with Floor check column) and run the Future-proofing checklist rule #6 (Buffer rotatability) before presenting the proposal. |
/market-metrics returns null values for some assets | Transient Jupiter fetch miss. Retry the call; the service caches per mint so the second call usually succeeds. If persistent, drop the asset — the policy engine can't validate Rule 2/3 for it either. |
| "Keypair file not found" | Re-generate wallet (Step 4). Check: ls -la $AGENT_WALLET_PATH |
| "No signer keypair" / empty DFM_AGENT_KEYPAIR | DFM_AGENT_KEYPAIR not set. Re-export (Step 5). Verify: echo $DFM_AGENT_KEYPAIR |
| Transaction fails on-chain | Agent Wallet needs SOL for tx fees + USDC for vault creation fee. Fund the wallet first. |
Policy flagged: true on rebalance | Rebalance is non-blocking — the operation already proceeded. Inspect policyCheck.reviewFlags to see which rules were violated and surface them to the user as a warning. Same flags are persisted on the latest RebalancingSuggestion.policyReviewFlags. |
| Token revoked unexpectedly | Tokens are only invalidated by an explicit POST /token/revoke call. Refresh issues a new token without touching existing ones — multiple active tokens per agent are supported. |
| 409 Conflict on launch-dtf | A policy (or vault) already exists for this name/symbol. Use a unique pair. Note: the 409 now fires at /launch-dtf (policy commit), not /dtf-create. |
/update-assets-tx returns 400 + violations[] | Policy gate failed — nothing on-chain. Read every entry in violations[], adjust the basket per the table in "Step 6: Update Underlying Assets", and retry. Free — no signing, no on-chain cost. Loop up to 3 times before surfacing to the user. |
/update-assets-tx returns 400 "asset not available" | A symbol or name you passed isn't in asset-allocation. Either pass the mintAddress directly OR pick a different asset whose symbol the platform knows about (verify against /market-metrics). |
/update-assets-tx returns 404 "No constitutional policy found" | Vault was not launched via /launch-dtf, so it has no policy to validate against. Updates are blocked at the agent layer for safety. Surface to the user — there's nothing the agent can fix here. |
Every /update-assets-tx attempt fails policy: rule4 (asset count) + rule on per-update movement, on a vault the agent can't migrate at all | Vault was launched with a structurally locked policy — typically min_assets == max_assets (no room to grow/shrink) and/or max_rebalance_pct < 2 × max_asset_pct (single-asset swaps mathematically exceed the cap). Compounding the lock-in: an included asset's volume often dips below min_24h_volume_usd, so any intermediate basket that still contains it fails the gate. The agent cannot self-heal this — the policy is fixed for the vault's life, and migration requires a platform-supported policy update. Surface the diagnosis to the user (which combination of min_assets/max_assets/max_rebalance_pct/floors is incompatible with the desired migration) and stop. Do not launch new vaults with these traps: run the "Future-proofing checklist" in Step 4a before sending /launch-dtf. |
On-chain update succeeded but PATCH /underlying-assets-by-mint failed | Do NOT re-run /update-assets-tx (the on-chain change already happened — re-running would double-update and likely fail re-validation). Retry the PATCH with the same body. If PATCH keeps failing, surface the on-chain signature to the user; the chain-event pipeline will eventually sync the DB. |
Field-name confusion: mintBps vs pct_bps | Phase 2 (/update-assets-tx) uses mintBps (matches on-chain instruction). Phase 3 (/underlying-assets-by-mint) uses pct_bps (matches DB schema). Same numeric values, different keys — don't copy-paste between payloads without renaming. |
/deposit-tx returns 400 Vault "<symbol>" has no on-chain vaultIndex | The vault was launched via /launch-dtf but the on-chain submit (or /dtf-create) never landed. Surface to the user — the vault is unusable for deposit/redeem until it's actually on-chain. |
/deposit-tx returns 400 Signed price vaultPubkey ... does not match derived vault PDA | KMS signer is mis-configured for this vault (operator-side issue). Do NOT retry. Surface to user. |
/deposit-transaction returns 200 with swap.failedSwapsInfo populated | A subset of per-asset Jupiter swaps failed and the backend already returned the USDC to the vault. The deposit is still recorded (with the successful swap signatures). Treat as success, warn the user about the failed swap count. Never re-call with the same signature — the deposit record already exists. |
/deposit-transaction returns 200 with deposit.events[].vaultDepositUpdateError | On-chain swap succeeded but the DB record-write threw. The chain-event pipeline will eventually reconcile. Surface to user; do not retry (the duplicate-signature guard will surface the existing record on a re-call anyway). |
/deposit-transaction times out, returns 5xx, gateway error, or any non-200 after PHASE_3_OK | HARD STOP. DO NOT RETRY. This endpoint is NOT idempotent — every call dispatches a fresh agentSwap. A retry on a lost-response triggers a second swap fan-out against remaining vault USDC, breaking NAV (this is the SOLCORE incident pattern: deposit 7 USDC, only 1.7 lands in the basket, shares minted at the wrong price). Surface the on-chain signature to the user with the verbatim message in the capital-flows error table — "deposit landed, swap step couldn't be confirmed, operator will reconcile, please don't retry". End the turn. Backend-side reconciliation is the only safe recovery; agent-side retry is forbidden regardless of how transient the error looks. |
/redeem/execute/:ticketId throws | The backend has already auto-cancelled the ticket — do NOT call /redeem/cancel/:ticketId. Surface the error to the user and end the turn. |
Ticket polling exceeds 5 minutes without isReady=true | Cancel via v1 DELETE /api/v1/tx-event-management/redeem/cancel/:ticketId, surface to user, then call /redeem/request-ticket fresh if they want to retry. Don't poll forever. |
/redeem-tx returns 400 InvalidPriceSignature after the on-chain submit | The KMS-signed share price baked into the tx expired between build and submit. Re-call /redeem-tx for a fresh price; do NOT submit the stale tx again. |
/redeem-transaction returns 400 No position found for agent in this vault | The agent's UserVaultPosition keyed on agentProfile doesn't exist. They must /deposit under the agent flow first — vaults funded outside the agent flow won't have an agent-keyed position. Surface to user. |
/redeem-transaction returns 400 Insufficient shares. Have X, trying to redeem Y | The on-chain redeem already happened but the recorded position has fewer shares than requested. Likely a previous redeem that wasn't recorded. Surface the on-chain signature to the user and stop — re-running won't help. |
/redeem-transaction returns 200 with ticketConfirm.ok = false | Auto-confirm failed but the redeem is recorded. Optionally call v1 POST /api/v1/tx-event-management/redeem/confirm/:ticketId manually with the same signature; queue cleanup is hygiene only and the on-chain redeem is final regardless. |
/redeem-transaction returns 400 redeemAgentTransaction requires performedByProfileId | The JWT didn't carry agentId. Re-run the token refresh script (node .claude/refresh-token.js) — the new token will populate agentPayload.agentId correctly. |
| 409 "Username is already taken" on profile-launch | The profile-launch.js script auto-retries up to 5 times with a random 4-char hex suffix appended to the sanitized base username. If you see this error surface to the user, the script ran out of retries — pick a more distinctive base username and re-run. |
| 409 "An agent profile already exists for this wallet address" on profile-launch | The wallet has already been onboarded — do NOT call profile-launch again (and the script does not retry on this 409). Use node .claude/refresh-token.js to issue a fresh JWT for the existing agent profile instead (the script derives the agent wallet from DFM_AGENT_KEYPAIR). |
/vaults/featured/list or /vaults/user "returns no vaults" but the user has them | Almost always a misread of the response shape, not an empty list. These endpoints carry a pagination field, so the global ResponseMiddleware does not wrap them — the array is at body.data (not body.data.vaults, not body.data.data, not body.vaults). Only /dtf/my-vaults (legacy) returns { vaults: [...], total }. See "Step 5: Manage" → "Common mistakes" table for every wrong-access pattern. Re-run the call and read body.data.length first; if > 0, the bug is downstream of the fetch. |
Security
- NEVER display sensitive values in terminal output. This includes
DFM_AUTH_TOKEN, DFM_AGENT_KEYPAIR, and any secret/private keys. Only public keys may be printed. Secrets are written silently to files.
- Agent Wallet file --
0o600 permissions, gitignored, never committed.
DFM_AGENT_KEYPAIR -- base58 secret key in env only, never in code, git, or terminal output.DFM_AUTH_TOKEN -- JWT token in env only, never printed or logged in terminal.- No secret keys sent to backend -- only public keys are included in API payloads. Transaction signing happens locally.
- Agent Wallet = on-chain authority -- treat it like any crypto wallet. Back up securely.
- Policy engine = safety net -- even a fully autonomous agent can't bypass policy constraints.
