Sam Altman's World Launches AgentKit: Iris Scans Are Now 'Power of Attorney' for AI Shopping Agents
March 30, 2026 · Happycapy Guide
The Problem AgentKit Is Solving
AI shopping agents are already a reality. Amazon Rufus suggests and re-orders products autonomously. ChatGPT's Operator browses e-commerce sites and adds items to carts. Visa's Trusted Agent Protocol lets AI initiate payments with stored credentials. Google and Mastercard are building their own agentic checkout flows.
But every merchant enabling these systems faces the same question: when an AI agent places an order, is a real human behind it — or is it one of the millions of bots that now make up 50% of internet traffic? (HUMAN Security's March 26 report found AI bot traffic grew 7,851% in 2025 alone.)
Without an answer, merchants risk:
- Scalper bots: A single actor deploys thousands of agents to buy limited-inventory items (concert tickets, limited-edition sneakers, PlayStation consoles) before real buyers have a chance.
- Fake returns and fraud: Agents can submit return requests, dispute charges, and exploit promotional pricing at machine speed — far outpacing human fraud detection.
- Sybil attacks: One attacker creates hundreds of fake wallet addresses to bypass per-account purchase limits, making rate limiting ineffective.
World's AgentKit is the first production tool designed to solve this problem at the infrastructure level rather than with band-aid CAPTCHA or IP-blocking measures.
How AgentKit Works
The system has three components that work together:
1. World ID — The Iris Credential
World ID is generated by scanning a user's iris with World's Orb device — a silver sphere about the size of a bowling ball that uses near-infrared imaging to capture the unique pattern of your iris. The scan is converted into an encrypted digital code. World does not store the raw image; it stores only the encrypted mathematical representation. The resulting credential is a zero-knowledge proof that you are a unique human — verifiable without revealing who you are or any other personal data.
2. x402 Protocol — The Payment Layer
The x402 protocol, developed by Coinbase and Cloudflare, uses HTTP status code 402 (“Payment Required”) as a machine-readable signal for automated micropayments. When an AI agent hits a 402 response, it knows it needs to initiate a payment before the request will be fulfilled — no human needs to open a wallet or click a “pay” button. This is the plumbing that allows AI agents to transact programmatically across the web.
3. AgentKit — The Trust Bridge
AgentKit connects World ID to x402. When a merchant using AgentKit receives an agent-initiated transaction, it can request a World ID proof alongside the payment. If the agent can produce it, the merchant knows: (a) a real human exists behind this agent, (b) that human has explicitly delegated authority to this agent, and (c) no other agent is using the same human's identity. TFH CPO Tiago Sada describes it as giving the agent “power of attorney” — the agent acts, but a verified human is legally and cryptographically accountable.
Why This Matters Beyond Shopping
AgentKit is being positioned as a shopping tool, but the underlying infrastructure — a cryptographic proof that a specific human authorized a specific agent action — has much broader implications:
- Legal accountability:As AI agents sign contracts, book flights, make medical appointments, and file government forms, the question of who is legally responsible for the agent's actions becomes urgent. World ID provides a mechanism to attach human identity to agent actions without exposing personal data.
- Anti-spam at scale: If every AI-generated email, form submission, or API call could be linked to a verified human, the economics of bot spam collapse. One person, one verified identity — no matter how many agents they run.
- Fair-access policies: Merchants can enforce genuine per-human purchase limits rather than per-IP or per-account limits that bots trivially circumvent. One verified human gets one ticket to the concert — regardless of how many agents they deploy.
- The foundation of a trusted agentic web: If AgentKit adoption grows, it could become the identity layer for the entire agentic internet — the way SSL became standard for secure web connections. Every major player (Amazon, Mastercard, Google) is already building agentic commerce features that would benefit from this layer.
Agentic Commerce: Who Is Building What
| Company | Agentic Commerce Feature | Identity Verification | Status |
|---|---|---|---|
| World (Sam Altman) | AgentKit — iris-based human verification for agent purchases | World ID (iris scan) | Beta — March 17, 2026 |
| Visa | Trusted Agent Protocol — AI initiates payments with stored card credentials | Account-level only | Live |
| Amazon | Rufus AI — autonomous product suggestions and reorders | Amazon account | Live |
| Mastercard | Agent Pay — programmable card rails for AI checkout | Card network identity | Piloting |
| Gemini Shopping — agent-driven product search and checkout | Google account | Live | |
| Happycapy | Browser skills for research and shopping workflows | Account-linked | Live — Pro plan |
Frequently Asked Questions
What is World AgentKit?
AgentKit is a beta developer tool launched by World on March 17, 2026. It combines World ID — a biometric credential from scanning a user's iris with World's Orb device — with the x402 protocol, an open standard for automated micropayments from Coinbase and Cloudflare. The result lets websites cryptographically verify that an AI agent placing an order is acting on behalf of a real, verified human.
What is the x402 protocol?
x402 is an open standard for automated micropayments built by Coinbase and Cloudflare. It uses HTTP status code 402 (“Payment Required”) as a machine-readable signal that enables AI agents to initiate payments programmatically without human intervention at checkout. World's AgentKit extends x402 with identity verification alongside payment.
Do I need to scan my iris to use AI shopping agents?
Only if a specific merchant requires World ID verification through AgentKit. As of March 2026, AgentKit is in beta and merchant adoption is not yet widespread. For most AI agent tools today — including Happycapy — you can use agentic shopping and browsing features without an iris scan. AgentKit is an optional trust layer designed for high-stakes or high-volume transactions where merchants want to enforce per-human limits and prevent bot fraud.
What is the Sybil problem in AI agents?
The Sybil problem is the ability of one bad actor to create many fake identities that all appear to be distinct individuals. In agentic commerce, a scalper could deploy thousands of bots — each with a different wallet — to buy limited-stock items before real humans can. World's AgentKit solves this by linking each agent back to a single iris scan, making it impossible for one person to create multiple verified human identities.
Happycapy Pro — Claude-powered agents you control, from $17/mo- TechCrunch — World launches tool to verify humans behind AI shopping agents (March 17, 2026)
- eWeek — Sam Altman-Backed Startup Aims to Verify Humans Behind AI Transactions (March 2026)
- Dataconomy — World Launches AgentKit To Verify Humans Behind AI Shopping Agents (March 18, 2026)
- CNBC — AI and bots have officially taken over the internet (March 26, 2026)