Skip to main content

What is Steward?

Steward is a governance layer for autonomous AI agents. It provides encrypted wallet management, credential storage, policy enforcement, and audit logging — so agents can interact with blockchains and external APIs without ever touching raw private keys or API credentials.

Wallet Vault

AES-256-GCM encrypted key storage with multi-chain signing (EVM + Solana). Agents request signatures — they never see private keys.

Secret Vault

Encrypted credential storage with automatic injection. Agents never see API keys — Steward’s proxy injects them at request time.

Policy Engine

Declarative policies evaluated before every action. Spending limits, rate limits, address whitelists, time windows — all configurable per agent.

Audit Logging

Every signing request, every API call, every policy decision is logged. Immutable, queryable, exportable.

The Problem

Today, most agent platforms inject plaintext credentials directly into agent containers: 
# What agent containers look like today 😬
OPENAI_API_KEY=sk-proj-abc123...
ANTHROPIC_API_KEY=sk-ant-def456...
EVM_PRIVATE_KEY=0xdeadbeef...
DATABASE_URL=postgres://user:pass@host/db
Any code running inside the container — including code triggered by prompt injection — can read these credentials, exfiltrate them, or drain wallets. There’s no spending control, no audit trail, and rotating a credential means redeploying every container that uses it.

The Solution

With Steward, agent containers only receive two environment variables: 
# What agent containers look like with Steward ✅
STEWARD_PROXY_URL=http://steward-proxy:8080
STEWARD_AGENT_TOKEN=stwd_jwt_...
Every API call and every transaction flows through Steward, where it’s authenticated, policy-checked, logged, and metered before being forwarded with the real credentials injected.

Who Uses Steward?

  • Milady Cloud — Production deployment managing 17+ AI agents across 6 nodes with on-chain transactions on Base mainnet.
  • Agent developers — Anyone building autonomous agents that need wallet access or API credential management.
  • Platform operators — Teams running multi-tenant agent hosting who need security, cost control, and compliance.

Quickstart

Get up and running with Steward in 5 minutes.

Architecture

Understand how the three pillars work together.

SDK Reference

Install the TypeScript SDK and start building.

API Reference

Explore the full REST API.