// whitepaper — v0.1 — May 2026

System Assurances,
F**k You.
Deterministic Wallet Coverage
for the Onchain Economy

SAFU is a smart contract protocol that pays out when your wallet gets drained. No committee. No vote. Same inputs, same output, every time. Use the sidebar to navigate.

Contract: 0xB24A...1480 ↗ github ↗ hashlock audit ↗ etherscan ↗
0.015Ξ
STAKE TO ENROLL
0.25Ξ
MAX COVERAGE
7d
CLAIM COOLDOWN
45d
PAYOUT STREAM
37/37
FORGE TESTS PASS
10/10
HALMOS PROPERTIES
// 01

Abstract

Every year, billions in crypto are drained from wallets through phishing, approval exploits, and key compromise. The protocols designed to cover these losses require a committee to vote on your claim. Your payout depends on whether strangers with governance tokens believe you.

SAFU removes the vote. The same transaction inputs always produce the same payout calculation. When a verified drain event occurs, a 7-day cooldown starts, then a 45-day payout stream begins. No committee. No quorum. No waiting room.

Stakers deposit 0.015 ETH to secure a period of wallet coverage. The pooled ETH will earn Lido staking yield as protocol revenue in the production vault. Stakers earn SAFU points during their lock period, convertible to SAFU tokens at network launch in Q1 2027.

This document describes how the protocol works, how the economics hold, and where it is heading.

// 02

The Problem

Wallet-level drain is the most consistent attack surface in crypto. Phishing, approval abuse, and key compromise collectively account for billions in annual losses. These are not smart contract failures. They are wallet-layer events, and they fall through every existing coverage category.

[ phishing ]
User signs a transaction that sweeps their wallet to a drain address. Often triggered by a fake dApp or malicious link.
[ approval exploit ]
A previously granted token approval is used to drain the wallet. No new signature required from the victim.
[ key compromise ]
Private key exposed. Wallet emptied programmatically. Nothing on-chain can stop it once the key is out.

Existing protocols don't cover this

Nexus Mutual, InsurAce, and Sherlock cover smart contract bugs: protocol-level failures where code behaves unexpectedly. A wallet drain is not a code failure. None of these protocols pay out on it.

For the protocols that do attempt wallet-level coverage, every claim goes to a vote. Your payout depends on DAO participation rates you didn't choose. The result is slow, unpredictable, and discretionary.

The agent gap

AI agents managing capital on hot wallets cannot exercise human judgment. Coverage for these wallets is not optional. It is a runtime dependency, the same way gas is. No existing product serves this segment. SAFU builds the API that does.

// 03

What SAFU Is

SAFU is a deterministic verification layer for wallet-drain events. Not DeFi insurance. Not a mutual. Not a governance-governed claims pool.

The protocol runs a fraud scanner against every submitted transaction hash. The scanner scores the transaction for drain patterns: sweep completeness, receiver classification, automation signals. That score, combined with the staker's tier and policy terms, produces one output: an entitlement amount, or a rejection reason.

Same inputs. Same output. Every time. The payout calculation is deterministic. No vote can change it. No governance proposal can delay it.

What this means for AI agents

An agent submits a transaction hash to the SAFU Verify API and receives a signed payout decision programmatically. No human in the loop on either side. Coverage becomes a runtime call, not a claims process.

Conventional coverageSAFU
File a claimPayout activates automatically
Human adjusterOracle + math
Governance voteNo vote
Waiting room45-day stream, starts in 7 days
DiscretionaryDeterministic
// 04

How It Works

A wallet stakes 0.015 ETH to enroll. Before enrollment, the fraud scanner classifies the wallet by tier based on its on-chain history. Tier determines the share of the pool's coverage cap the staker is eligible for.

TierMax payoutWallet profile
A80% of pool capClean history, low risk signals
B70% of pool capMixed history, moderate signals
C50% of pool capHigher risk signals detected

The staker sets a beneficiary address at enrollment. All payouts go to the beneficiary, never to the staked wallet. This protects the payout address from the same attack that triggered the claim.

Claim flow

01
Submit drain transaction
The staker submits the transaction hash of the drain event to the SAFU Verify API.
02
Fraud scanner scores it
The off-chain scanner checks sweep completeness, receiver classification, and automation signals. Score determines the entitlement amount.
03
Verification pipeline runs
Sequential checks: wallet enrolled and active, drain within coverage window, loss above minimum threshold, entitlement within tier cap. Pipeline short-circuits on first failure.
04
7-day cooldown
Approved claims wait 7 days before payout begins. Stake is permanently forfeited at submission.
05
45-day payout stream
Linear payout to beneficiary over 45 days. A 2%/day outflow cap prevents any single event from draining the pool.
// 05

Security

SAFUPool v6 is deployed at:

0xB24Aee4bd963ca9f35b27fec7FbCA678d1201480 ↗
AuditResultDate
Hashlock AI Audit ↗ 18 findings reviewed, all addressed or accepted May 2026
Halmos Symbolic Execution (a16z) 10 / 10 properties, zero counterexamples May 2026
Internal security review 0 critical · 0 high · 0 medium · 0 low May 2026
Forge test suite 37 / 37 tests pass May 2026

Verified by symbolic execution

  • Claiming permanently forfeits your stake, enforced by the contract, not just policy
  • Pool balance stays accurate when a claim is cancelled
  • Once a claim is filed, the original stake cannot be withdrawn
  • The two approval keys are always held by different addresses
  • Contract ownership cannot be transferred to the co-approval address
  • The contract never owes more than it holds in ETH
  • Payouts above coverage limits are always blocked
  • A cancelled claim can never release further payments
✓ all properties verified across every possible contract state

Oracle and wallet safety

The payout oracle is an off-chain signing key held in a hardware wallet, not on the server. All signed messages include the contract address and chain ID, preventing replay attacks. A 2-of-2 override mechanism (owner + co-signer, separate keys) handles disputes without bypassing rate limits.

Staking sends exactly 0.015 ETH to the pool. No token approvals. No spending permissions. The contract cannot access any other asset in your wallet, before, during, or after staking.

// 06

Economic Model

The staking pool is ETH-only. Claims are paid from this pool. The 2%/day outflow cap and 45-day vesting period ensure no single event can drain it.

The initial deployment is a test pool designed to stress-test the system under real conditions. Coverage caps are small by design. Production economics require a larger pool and higher stake amounts, scoped for Q3 2026.

Revenue streams

[ forfeited stakes ]
When a claim is filed, the 0.015 ETH stake stays in the pool after payout. Excess over entitlement is protocol revenue.
● live now
[ lido staking yield ]
In the production vault, pooled ETH will be deposited into Lido as wstETH. ~3-4% APY accrues to the protocol. Not active in the current test pool.
● planned Q3 2026
[ custom pool deployments ]
Communities and protocols deploy their own SAFU pool with custom coverage rules and tier logic. SAFU earns a protocol fee on each pool.
● planned Q3 2026
[ verify api ]
Per-call fee for enterprise and agent integrations. Scoped after first customer cohort is onboarded.
● planned Q3 2026

Why stake?

Stakers provide the pool capital that makes coverage possible. In return: wallet-drain protection for the duration of the lock, plus SAFU points earned linearly over the lock period. Points convert to SAFU tokens at network launch. Principal is returned at the end of the lock if no claim is filed.

// 07

SAFU Points and Token

No token exists today. No token is being offered. This section describes the intended design, subject to legal review before implementation.

How points work

Every staker earns SAFU points linearly over their lock period. Points are non-transferable. The longer you stake without claiming, the more you accumulate.

When a claim is filed, accumulated points are burned as a side effect. The payout flows normally. Stakers who complete their full lock without claiming retain all points and convert them to tokens at launch.

Tokens and payouts are mutually exclusive

A staker either files a claim and gets the payout (burning their points), or holds to full term and gets their tokens (principal returned). There is no path to collecting both. This removes the moral hazard present in most DeFi token designs.

What the token does

[ governance ]
Vote on protocol parameters: coverage caps, yield allocation, policy terms. Token holders are structurally honest stakers who never extracted from the pool.
[ pool backstop ]
Token holders can stake tokens to provide additional coverage capacity, earning a share of protocol revenue in return.
[ revenue share ]
A portion of Lido yield and forfeiture revenue distributes to token stakers.

Why the token is not a security

Coverage is the primary product. The token is a byproduct of honest participation in that product, not an investment in a profit-sharing enterprise. You stake to get wallet protection. At launch, accumulated points convert to tokens that give you a voice in how the protocol runs.

There is no ICO, no presale, no token being sold. Tokens only reach wallets that provided coverage capacity and did not extract from the pool. Tokenomics, supply, and allocation are Q4 2026 work, subject to full legal review.

// 08

Roadmap

Q2 2026
Low-value mainnet live
SAFUPool v6 deployed on Ethereum mainnet. Test pool live to stress-test the system under real conditions. First staker cohort onboarded. Whitepaper published.
Q3 2026
Seed fundraise + high-value vault
Lido wstETH integration, higher coverage caps, agent wallet tier engine, new contract audit. SAFU Verify API launched. Custom pool deployments open for communities and protocols.
Q4 2026
Community + token design
Community building. SAFU Points season opens to public staking. Token design finalised and legal-reviewed. Exchange and market maker conversations begin.
Q1 2027
Token launch
SAFU Token launch. Points-to-token conversion window. DEX listing. Protocol governance goes live.