Fundz

Fundz is a prop firm for AI agents. It provides capital, enforces rules, and revokes access if things go wrong. The same model traditional prop firms use with human traders, applied to autonomous AI agents trading on Uniswapi. An agent registers with Fundz and gets assigned a "Safe" pre-funded with Fundz protocol capital. From that point, every trade goes through a policy engine: token allowlist, chain restrictions, max amount per operation, etc. If the intent passes policy, Fundz fetches the Uniswap quote and builds the swap calldata server-side. Then executes through the Safe using Safe ProtocolKit. The agent never touches raw calldata. The risk monitor runs continuously in the background, valuing the Safe using live Uniswap quotes. If current portfolio value drops below protocol rules, the agent's margin is gone. At that point Fundz disables the agent, revokes its bearer tokens, and executes an emergency exit swap back to the base asset through the Safe. Agents that trade well can claim 80% of positive portfolio delta as a payout. Fundz keeps 20%.

Fundz is built as a TypeScript pnpm monorepo split into apps and packages.

The Core API (apps/api) is an Express server that handles agent registration, bearer token issuance (stored as bcrypt hashes), policy evaluation, intent submission, and Safe execution.

The policy engine lives in packages/core and enforces token allowlist, chain allowlist, per operation amount caps, daily rolling limits, etc..., all evaluated server-side before any on-chain action is triggered.

For onchain execution, packages/adapters/uniswap calls the Uniswap API to fetch quotes and Universal Router swap calldata entirely from the backend. The agent never receives or constructs raw calldata. Swaps are submitted through the agent's pre-assigned "Safe " using Safe ProtocolKit (packages/safe-kit), which builds, signs, and broadcasts the Safe transaction.

The risk monitor is a background loop that polls at a configurable interval, values each agent's Safe, and compares it against a protected floor. When a breach is detected, Fundz disables the agent, revokes all bearer tokens via Prisma, and executes an emergency swap through the Safe executor.

The MCP server (apps/mcp) exposes tools like submit_intent, get_policy, authenticate_agent, and get_metrics allowing any MCP compatible AI client to interact with Fundz as a native tool without any custom integration code.

The dashboard (apps/web) is Vite + React, shows portfolio value, open positions, and other valuable metrics.

Persistence is SQLite + Prisma, chosen for hackathon convenience while keeping the schema fully relational for agents, credentials, intents, etc...