Skip to main content

ERC-8211 Smart Batching: How Biconomy and the Ethereum Foundation Just Rewrote the Rules for On-Chain AI Agents

· 12 min read
Dora Noda
Dora Noda
Software Engineer

On April 7, 2026, Biconomy and the Ethereum Foundation quietly published a proposal that may turn out to be the most consequential agent-infrastructure standard since ERC-4337. It is called ERC-8211, and on the surface it looks like a bookkeeping update: a new way to encode batch transactions. Look closer, and it is something far bigger — the first protocol-level answer to a question that has haunted on-chain AI for two years: how does an autonomous agent actually transact safely on Ethereum without the user signing every single move?

The timing is not accidental. With roughly 62 million smart accounts now active across EVM chains, 2.4 billion cumulative UserOperations processed, and a fast-growing population of autonomous agents executing real DeFi strategies on behalf of users, Ethereum has hit the limit of what static batch transactions can express. ERC-8211 — branded "smart batching" — is the standard designed to break that ceiling.

The Problem Static Batching Couldn't Solve

For the last two years, ERC-4337 and EIP-5792 have done the heavy lifting for batched transactions. They let a smart account bundle multiple calls under a single signature: approve a token, swap it on Uniswap, deposit the proceeds into Aave, all atomically. That model works beautifully — until you remember that DeFi is a moving target.

Real DeFi flows produce dynamic, unpredictable outputs. A swap might return 1,000 USDC or 998 USDC depending on slippage. A vault withdrawal might yield principal plus 23.4 dollars of accrued interest, or 23.7. Static batching forces developers and agents into two bad options:

  • Hardcode optimistic amounts — and watch the entire batch revert when reality undershoots.
  • Underestimate conservatively — and leave value stranded in intermediate steps that the next call can't reach.

Either way, the user pays the cost: failed transactions, locked capital, or sub-optimal yields. For an AI agent running unsupervised, this is worse than inefficient. It is operationally untenable. An agent that has to wake the user up every time a swap returns an unexpected amount is not an agent — it is a Slackbot with a wallet.

ERC-8211 fixes this by introducing three primitives that turn a batch from "a frozen recipe" into "a program with embedded safety checks."

The Three Building Blocks: Fetchers, Constraints, and Predicates

The genius of ERC-8211 is in its compactness. It does not try to be a virtual machine. It adds exactly three things to the existing batch format, and lets the rest of the stack — ERC-4337 bundlers, EIP-7702 authorizations, ERC-7579 modular accounts — handle the plumbing.

Fetchers: Read state at execution time

Fetchers retrieve live on-chain data at the moment of execution, not at the moment of signing. When an agent says "swap my full WETH balance," the fetcher resolves "full WETH balance" by calling balanceOf against the WETH contract right before the swap fires. The user signs an intent ("swap whatever I have"), and the chain resolves the actual number when it executes.

Constraints: Validate before each call proceeds

Constraints check resolved values against predefined rules. A constraint can say: "the output of this swap must be at least 998 USDC, or revert." Unlike a vanilla minimum-output check baked into a single Uniswap call, a constraint travels with the batch and can reference outputs from any prior step.

Predicates: Gate the batch on on-chain conditions

Predicates are pure boolean checks — entries with target = address(0) that revert the entire batch if their condition fails. They sit between actions like guard rails. "Only proceed with the Aave deposit if my vault's health factor stays above 1.5." "Only execute the rebalance if the price oracle has updated within the last 60 seconds."

Each input parameter in an ERC-8211 batch carries three pieces of metadata: a fetcher type that defines how the value is sourced, routing information that decides whether it becomes a call target, value field, or calldata argument, and inline predicates that must hold or the entire batch reverts.

The result is a single signed payload that expresses something like:

Swap my entire WETH balance for USDC at no worse than a 0.3% slippage. Then deposit exactly the USDC I received into Aave's v3 pool, but only if my account health factor will remain above 1.8. Then check that the final position size matches what my strategy expected, or roll the entire batch back.

That used to require either three separate signatures over a 90-second window, or a custom Solidity router contract audited and deployed for one use case. ERC-8211 turns it into a single TypeScript program that compiles to a ComposableExecution[] array, signs once, and executes atomically.

Why This Beats Weiroll, x402, and the Vendor SDKs

ERC-8211 is not the first attempt at composable batching. The closest predecessor is Weiroll, an embedded VM that lets contracts express multi-step flows. The team behind ERC-8211 has been explicit about the comparison: Weiroll is "scripts" — a dumb sequence of calls. ERC-8211 is "programs" — sequences with embedded safety checks, runtime resolution, and constraint validation that any bundler can verify without trust.

But the more consequential comparison is with the vendor-specific stacks that have multiplied over the last 18 months:

FrameworkOriginScopeStandard?
Coinbase x402Coinbase, 2024HTTP-native USDC paymentsOpen spec, single facilitator
Coinbase AgentKitCoinbase, 2024Full agent SDK, wallet + actionsVendor SDK
ElizaOS Agent Frameworka16z-funded, 2024Multi-chain agent runtimeOpen source, no protocol standard
Solana Agent PrimitivesAI Rig Complex, ElizaOS-on-SVMSolana-native agent executionChain-specific
ERC-8211Biconomy + Ethereum Foundation, 2026Multi-step composable executionEIP-track standard

Each of those stacks solves a piece of the agent problem. x402 has done remarkable work on payments — over 119 million transactions on Base, 35 million on Solana, and roughly $600 million in annualized volume as of March 2026. AgentKit gives developers a one-stop kit for agent wallets. ElizaOS-on-Solana has shipped real production agents.

But none of them are protocol-level standards. They are vendor SDKs, payment rails, or chain-specific frameworks. An agent built on Coinbase AgentKit cannot trivially execute a strategy designed for ElizaOS, even though both run on Ethereum-adjacent infrastructure. As the agent population scales — and 2026's data suggests roughly 250,000 daily active on-chain agents now cross vendor boundaries routinely — that fragmentation becomes the bottleneck.

ERC-8211's contribution is not "a better SDK." It is "a shared semantic layer that any SDK can target." Once a smart account speaks ERC-8211, any agent runtime — Biconomy's, Coinbase's, a future Eliza-on-EVM, or something nobody has built yet — can submit an execution payload that the account understands.

How ERC-8211 Fits the Broader Agent Stack

The Ethereum Foundation has been deliberate about positioning ERC-8211 alongside its siblings:

  • ERC-4337 (account abstraction) — the smart-account substrate. ERC-8211 batches execute inside ERC-4337 accounts. EIP-7702 delegations, with roughly 14 million EOAs already signed up since Pectra mainnet in May 2025, give ERC-8211 a path to ordinary EOAs as well.
  • ERC-7579 (modular accounts) — the plug-in interface. ERC-8211 is implemented as a module, not a fork.
  • ERC-7683 (cross-chain intents) — the standard for expressing "I want this outcome anywhere." ERC-8211 is the standard for "execute this outcome here."
  • ERC-8004 (trustless agents) — the identity and reputation layer. An ERC-8004-registered agent uses ERC-8211 to act.
  • ERC-8183 (agent-to-agent commerce) — the negotiation primitive. Agents that close deals via ERC-8183 settle them via ERC-8211.

That layering matters. Each standard does one thing. ERC-8211 does execution semantics, and explicitly does not try to be identity, payments, or cross-chain routing. That discipline is what makes it likely to actually ship: the proposal can be implemented as a contract-layer encoding without any Ethereum protocol fork. No hard fork means no five-year activation timeline. The standard could see production deployment by Q3 2026 if the rollups and major smart-wallet vendors choose to integrate.

Why Session Keys Suddenly Matter for Agents

The unspoken star of ERC-8211 is session keys. The standard composes naturally with wallet_grantPermissions — a wallet RPC method that lets a user approve, once, a time-limited and scope-limited delegation to an agent. The agent then operates inside those bounds without further user prompts.

Combine session keys with ERC-8211 and the picture sharpens dramatically:

  1. The user signs once: "For the next 30 days, this agent can execute swaps and Aave deposits on my behalf, up to 50,000 USDC per transaction, only on Base and Arbitrum, and only if my health factor stays above 1.5."
  2. The agent constructs an ERC-8211 batch that respects those constraints.
  3. The bundler validates the batch against the session-key scope before relaying.
  4. The execution either succeeds atomically or reverts atomically.

This is the missing primitive that has held back genuinely autonomous agents. Until now, "agent autonomy" has meant either trust the agent's keys (Coinbase Agentic Wallet's model) or prompt the user every step (the failed Web2-style flow). Session keys plus ERC-8211 give us a third option: constrained autonomy with on-chain verification, where the user defines the box and the agent operates inside it without phoning home.

The Infrastructure Implication: RPC Providers Become Agent-Aware

Here is where the ripple effect hits API and node infrastructure. Once ERC-8211 batches enter production, RPC providers can no longer treat agent traffic as "regular user traffic that happens to come from a script." A correctly behaving relayer needs to:

  • Parse the batch format to identify fetcher calls, constraints, and predicates.
  • Validate session-key scope before submission, so it can reject batches that exceed delegated authority before spending gas.
  • Simulate execution paths with live state, so it can preview likely revert reasons.
  • Surface predicate failures to agent developers in a structured format, not just as raw EVM revert strings.

This is a new product surface. Conventional Ethereum RPC was designed for human-driven dApps where each call is a discrete user action. Agent-driven RPC is a different workload entirely: high-frequency, programmatic, dependent on accurate simulation of multi-step batches. Providers that recognize the shift early — exposing ERC-8211-aware endpoints, agent-traffic dashboards, and session-key validation as first-class APIs — will sit at the center of the agent economy.

The Open Question: Standard or Vendor SDK?

ERC-8211 has the Ethereum Foundation's name attached. That gives it credibility no vendor SDK can match. But credibility is not adoption. Two outcomes are plausible.

Optimistic case: Major smart-wallet vendors (Safe, Coinbase, Argent, Rabby) ship ERC-8211 modules within six months. Bundler infrastructure (Pimlico, Stackup, Biconomy itself) adds first-class support. Agent runtimes converge on ERC-8211 as their execution target. By Q4 2026, the standard becomes the de facto way agents transact on EVM, much as ERC-4337 became the de facto way smart accounts work.

Pessimistic case: Coinbase doubles down on AgentKit and x402 as a vertically integrated stack, the same way it did with Smart Wallet. Major DeFi protocols ship vendor-specific agent integrations rather than waiting for the standard. ERC-8211 becomes a niche choice for sophisticated builders while the mass-market agent flow runs through commercial toolkits. The fragmentation continues.

The early signals favor the optimistic case. The Ethereum Foundation's "Improve UX" track has been remarkably effective at coordinating wallet vendors around shared standards — EIP-7702 went from proposal to 14 million authorizations in under a year. ERC-8211 has the same structural ingredients: clear problem, clean solution, no protocol fork required, and immediate utility for builders already shipping agents.

What to Watch Next

The next 90 days will reveal whether ERC-8211 is destined to be the default or just another well-intentioned proposal. Three signals matter most:

  1. Wallet integration timelines. If Safe and Coinbase Smart Wallet ship ERC-8211 modules by Q3, adoption is on track.
  2. Bundler economics. ERC-8211 batches are more expensive to simulate than static batches. Bundler-side fee models will need to evolve.
  3. Audit ecosystem. Composable execution introduces new attack surfaces — fetcher manipulation, constraint bypass, predicate ordering. The first major audit reports on production ERC-8211 deployments will set the security baseline for the entire agent economy.

For builders deciding where to invest in 2026, the strategic answer is increasingly clear: build to standards, not to vendor SDKs. ERC-8211 is the strongest signal yet that Ethereum's agent infrastructure will be a layered cake of public standards, not a walled garden of proprietary kits. The 250,000 agents transacting daily today will be 25 million by 2028 if current trends hold, and the rails they run on will look much more like ERC-8211 than like any single company's product surface.

The execution layer for autonomous on-chain agents has a name. It just took the Ethereum Foundation and a small team in Bangalore to give it one.

BlockEden.xyz provides production-grade RPC, indexing, and account-abstraction infrastructure for builders deploying AI agents across Ethereum, Base, Arbitrum, and other EVM chains. As ERC-8211 and the broader agent stack mature, our endpoints are designed to handle the high-frequency, simulation-heavy workloads that autonomous agents demand. Explore our API marketplace to start building on infrastructure designed for the agent economy.

Share on Twitter