Advances in large language models have enabled agentic AI systems that can reason, plan, and interact with external tools to execute multi-step workflows, while public blockchains have evolved into a programmable substrate for value transfer, access control, and verifiable state transitions. Their convergence introduces a high-stakes systems challenge: designing standard, interoperable, and secure interfaces that allow agents to observe on-chain state, formulate transaction intents, and authorize execution without exposing users, protocols, or organizations to unacceptable security, governance, or economic risks. This survey systematizes the emerging landscape of agent-blockchain interoperability through a systematic literature review, identifying 317 relevant works from an initial pool of over 3000 records. We contribute a five-part taxonomy of integration patterns spanning read-only analytics, simulation and intent generation, delegated execution, autonomous signing, and multi-agent workflows; a threat model tailored to agent-driven transaction pipelines that captures risks ranging from prompt injection and policy misuse to key compromise, adversarial execution dynamics, and multi-agent collusion; and a comparative capability matrix analyzing more than 20 representative systems across 13 dimensions, including custody models, permissioning, policy enforcement, observability, and recovery. Building on the gaps revealed by this analysis, we outline a research roadmap centered on two interface abstractions: a Transaction Intent Schema for portable and unambiguous goal specification, and a Policy Decision Record for auditable, verifiable policy enforcement across execution environments. We conclude by proposing a reproducible evaluation suite and benchmarks for assessing the safety, reliability, and economic robustness of agent-mediated on-chain execution.

翻译：大型语言模型的进步使得智能体AI系统能够推理、规划并与外部工具交互以执行多步骤工作流，而公共区块链已演变为可编程的价值转移、访问控制和可验证状态转换的基础设施。两者的融合带来了一个高风险的系统设计挑战：如何设计标准化、可互操作且安全的接口，使得智能体能够观察链上状态、制定交易意图并授权执行，同时避免用户、协议或组织暴露于不可接受的安全、治理或经济风险之中。本文通过系统性文献综述，对智能体-区块链互操作性这一新兴领域进行了系统梳理，从超过3000篇初始文献中筛选出317篇相关研究。我们提出了一个包含五类集成模式的分类法：只读分析、模拟与意图生成、委托执行、自主签名以及多智能体工作流；构建了一个针对智能体驱动交易流程的威胁模型，涵盖从提示注入、策略滥用到密钥泄露、对抗性执行动态以及多智能体共谋等多种风险；并创建了一个包含13个维度的比较能力矩阵，对20多个代表性系统进行了分析，维度包括托管模型、权限控制、策略执行、可观测性和恢复机制等。基于分析揭示的不足，我们提出了以两个接口抽象为核心的研究路线图：用于便携且无歧义目标定义的交易意图模式，以及用于跨执行环境可审计、可验证策略执行的政策决策记录。最后，我们建议建立一套可复现的评估框架与基准测试，用于评估智能体介导的链上执行的安全性、可靠性和经济稳健性。