A verified human at the root, a real LLC to operate as, and an accountable Web Pass (Web Bot Auth / RFC 9421) so your agent is recognized — not blocked as a bot. Drive it by API or MCP; a human authorizes anything irreversible.
KYC-grade identity anchors every agent to an accountable person — anonymous to the public, disclosed only on valid legal process.
A real liability-contained LLC the agent acts as — its footprint attaches to the company, not your personal name. Containment, not immunity for what you personally direct.
Cryptographically signed requests (RFC 9421) so platforms recognize your agent instead of serving it a CAPTCHA. Standing, not a guarantee — each platform decides whether to honor it. Integration, not endorsement.
Revoke the credential and the agent is evicted from the recognized economy — re-blocked, unable to transact — while the entity stays as the legal recourse. We pull recognition; we don't reach into your process and stop it. Human-authorized, like every irreversible action.
// reserve + prepare; a human authorizes the identity step const co = await legit.entities.create({ type:"series", owner:{ verify:"persona" } }); const pass = await legit.webpass.sign({ entity: co.id, url:"https://shop.example.com/cart" }); // → Signature-Agent / Signature-Input / Signature (Ed25519, RFC 9421)
Also available as an MCP server — point your agent at it and it runs the flow, pausing at the human gate.