Conduit – Self-hosted Bitcoin Lightning payments for AI agents

Self-hosted Bitcoin Lightning payment infrastructure for autonomous AI agents.

Conduit is software tooling you run on your own infrastructure, in front of your own LND node, with your own keys. It gives any AI agent a virtual Lightning wallet, a spending policy, and an API to send, receive, and account for Bitcoin payments — programmatically, with hard guardrails the agent cannot override.

There is no Conduit SaaS: you host it, Conduit never holds your funds and never phones home. At the operator level it's self-hosted — your node, your keys, your rules. The agents you create are virtual sub-balances in a ledger that you, the operator, control: they hold a scoped API key, not a signing key, and you can credit, debit, or sweep them at any time.

Status: v0.8.4 — running live on testnet and mainnet (testnet/regtest plus a live mainnet node; the first real mainnet payment has settled end-to-end — still early and small, single-operator, not production-at-scale). The operator treasury (added in 0.8.3) lets you see accrued platform-fee revenue and withdraw accrued BTC on-chain, gated by a solvency guard (node assets can never drop below what you owe agents). 0.8.4 adds a full audit/red-team pass, the complete operator console, and an agent-pays-over-Lightning demo (see DEMO.md

).

• Website: https://conduit.energy - Hosted demo API: https://api.conduit.energy(testnet) ·https://api-mainnet.conduit.energy(mainnet) - Docs: https://docs.conduit.energy

You deploy Conduit (a 5-minute Docker bring-up) against your LND node. Conduit sits in front of LND as a policy + accounting layer:

You hold the LND seed and macaroon. Conduit only ever talks to LND over the macaroonyou mount into it.You are the operator. The bootstrap API key isyour master key toyour own system — it mints the scoped keys you hand to your agents.You credit and debit the virtual sub-balances of the agents running onyour node — Conduit is custodialfor the agents by construction: the agent balances are operator-controlled IOUs in Conduit's ledger, and the underlying sats stay in your channels under your keys.You set a per-transactionplatform fee(in sats) that Conduit adds on top of each payment and keeps on settlement — that fee is** your**revenue, configured by you, never a Conduit cut.

Conduit's built-in monetization is a small, usage-based platform fee in satoshis that the operator who deploys Conduit configures. It is charged on top of each payment, kept when the payment settles, and refunded in full if the payment fails. Sats only — no fiat, no cards, no subscription.

Collected fees are reported at GET /v1/fees

(admin) and surfaced in GET /v1/metrics

. Set PLATFORM_FEE_PERCENT=0

to run Conduit with no fee.

.
├── website/         Landing page (deployed to conduit.energy)
├── core/            Conduit Core API — FastAPI server you run in front of your LND
├── sdk-python/      Python SDK (`conduit-btc` on PyPI; import `conduit`)
├── sdk-js/          TypeScript SDK (`@conduit-btc/sdk` on npm)
├── mcp-server/      MCP server (`conduit-btc-mcp` on PyPI; `conduit-mcp` command)
├── infra/           Bitcoin Core / LND configs, systemd units, install scripts
├── docs/            MkDocs documentation site
├── docker-compose.yml
└── Conduit_Whitepaper_v1.pdf

docker compose -f docker-compose.dev.yml up --build

curl http://localhost:8000/v1/health

cd sdk-python && pip install -e .
export CONDUIT_API_KEY=ck_test_dev_root
python examples/quickstart.py

The dev container ships with LND_MOCK=true

, an auto-created admin

-scoped bootstrap key ck_test_dev_root

(your master key in dev), and SQLite at /app/data/conduit.db

. No real Bitcoin moves until you point Conduit at a real LND node of your own.

Conduit is self-hostable today on testnet, regtest, and mainnet — all three run live. Mainnet is now real: a neutrino LND node with a real channel is up and the first real-money payment has settled end-to-end. It is still early and small, so treat a mainnet bring-up as new territory and test on testnet first. The order of operations against your own Lightning infrastructure:

• Install Bitcoin Core (pruned) on your host — infra/scripts/install_bitcoind.sh

• Install LND (testnet today; mainnet supported) — infra/scripts/install_lnd.sh

• Configure UFW — infra/scripts/setup_firewall.sh

• Wait for chain sync (1–3 days)

• Open channels — infra/scripts/setup_channels.sh

• Point the Core API at your LND macaroon and TLS cert (LND_MOCK=false

) - Set your PLATFORM_FEE_*

values to whatever revenue you want to charge - Deploy with docker compose -f docker-compose.yml -f docker-compose.prod.yml up -d

Mainnet is live but early and small. The deployment today is a single neutrino LND node with one ~20k-sat channel. The first real-money payment has settled end-to-end: 2000 sats sent via Lightning keysend, a 10-sat platform fee (0.5%) collected, 1-sat routing fee, settled in ~15s — with the full lifecycle verified (debit → route → settle → platform-fee capture → refund-on-failure → exact ledger reconciliation). This is a first real-money validation, not production-at-scale; do not assume throughput or battle-testing. The live mainnet API is at https://api-mainnet.conduit.energy.

Full runbook: infra/README.md

.

Conduit is self-hosted by construction — it is software you operate, not a service that holds your money. Be clear about who custodies what:

At the operator level you are self-hosted. There is no Conduit SaaS; Conduit never holds your funds and never phones home. The LND seed phrase isyours and isnever stored on the VPS by Conduit; the sats stay in channels under your keys.At the agent level Conduit is custodial. Agent balances are virtual IOUs in Conduit's ledger that you, the operator, credit, debit, and can sweep. Agents hold a scoped API key, not a signing key — they never touch a Bitcoin private key.- LND gRPC / REST is never exposed publicly — only your Conduit API is - The Conduit policy engine evaluates every payment before it reaches your LND andfails closed on any error - API keys are bcrypt-hashed at rest and shown to you, the operator, exactly once

• The bootstrap API key is your master key — guard it like the macaroon
• All transit is HTTPS; webhook deliveries are HMAC-signed

Conduit is the policy + accounting layer in front of a node you control. If you turn Conduit off, your sats are still in your channels.

See infra/README.md

→ "Security checklist".

Authorization in Conduit is scope-based, not per-agent. An API key carries one of three scopes — read

< write

< admin

— and that scope is the only boundary:

• A read

key can read theentire fleet— every agent, balance, and transaction. - A write

key can act onany agent— send a payment from, or create an invoice for, any agent in the ledger. - An admin

key can create/delete agents, move balances, manage policies and webhooks, and mint keys across the whole instance.

There is no per-agent boundary: a key is not tied to a specific agent, and no route filters by which key created or "owns" an agent. Agents are an accounting and policy unit, not a security boundary between mutually distrusting parties.

Concretely: Conduit today is a single-operator tool. Hand scoped keys to agents you run, not to third parties you don't trust with each other. If you need hard isolation between tenants, run a separate Conduit instance (and node) per tenant.

Roadmap:multi-tenant, per-agent scoping — where a key is bound to one agent (or set of agents) and cannot read or act on the rest of the fleet — is a planned enhancement. As a first step toward it,create_agent

now records the minting key onAgent.api_key_id

for provenance. This isprovenance only: it does not yet change or enforce any authorization.

MIT.