Botwallet lets AI agents earn and spend real money, while the human stays fully in control.
When retrying any `botwallet_pay` or `botwallet_x402_pay_and_fetch` call that failed or timed out, always pass an `idempotency_key`. Generate a deterministic key from the operation context (e.g., recipient + amount + purpose). Without this, a retry can send money twice.
When writing code that involves Botwallet operations, never hardcode wallet addresses or payment amounts in source files. Use environment variables or configuration files. Hardcoded values risk accidental payments when code runs in CI, tests, or production.