∇ZNABLAZ
Mainnet
Open AppTokenizationLiquidityOrchestrationCompanySecurity

SECURITY

SECURITY &
TRANSPARENCY

Math you can verify. Not our word.

Arbitrum One mainnetIndependent auditsZK verification

AUDITS

NablaZ smart contracts are undergoing independent audits by leading security firms. Reports will be published in full upon completion.

OpenZeppelin

IN PROGRESS

Audit in progress. Report published upon completion.

openzeppelin.com

Zellic

IN PROGRESS

Audit in progress. Report published upon completion.

zellic.io

CONTRACTS

All NablaZ protocol contracts are deployed on Arbitrum One mainnet. Every address is verifiable onchain.

NablaZ has deployed two ZK proof gates. The current gate is used by all accounts created after April 2026. The legacy gate remains active for existing accounts — both are live and verifiable.

CONTRACTADDRESSVERIFY
Registry Resolver0x2508...2225View
Account Registry0x9557...5265View
NablaAccount Implementation0xe715...B05BView
NablaAccountFactory0xbaad...D032View
Default Onboarding Hook0x8050...3e0cView
Consumer AI Mandate Resolver0x2B12...CF6BView
ZK Proof Gate0x2555...3b34View
Jurisdiction Verifier0xC04C...2774View
Risk Config0xaa96...2827View
RiskConfigTimelock0x2f57...3Ff9View
Yield Adapter (sUSDe)0x11f9...2598View
Yield Adapter (wstETH)0x1A67...3DddView
Lending Adapter0x7331...316CView
Payment Adapter0x7d50...9FDdView
Distribution Vault0x7467...0636View
IncomeVerifier0x1724...59acView
NullifierRegistry0x1A74...E6fDView
CapabilityRegistry0xD2E6...Daf1View

COVERAGE

PROTOCOL

2145

tests across 165 suites · 0 failures

FoundryALL PASSING
ZK VERIFICATION

Every capital operation requires cryptographic proof of eligibility. Proof requirements are enforced at the contract layer — not the application layer. Eligibility cannot be bypassed by the UI, the AI, or any operator.

SECURITY BY DESIGN

Deterministic Enforcement

Transfer restrictions, eligibility rules, and lifecycle states are encoded in contracts. No operator, broker, or legal opinion can override them. Normal operation excludes human discretion by design.

AI With Onchain Validation

The AI surfaces proposals. Onchain guards validate them. The AI cannot execute, cannot create exposure, and cannot bypass eligibility. Every AI action operates within declared bounds enforced by the protocol.

Non-Custodial By Architecture

User funds are held in individually deployed account contracts. NablaZ Labs does not hold custody of any user assets at any point.

BUG BOUNTY

Responsible Disclosure

Report vulnerabilities to security@nablaz.io

Critical findings are reviewed within 48 hours.

Responsible disclosure48-hour critical reviewsecurity@nablaz.io

ZK CEREMONY

These hashes prove the trusted setup ceremony produced the verifier keys — independently verifiable.

income_n6_final.zkeydf712cf54d...209f956c
verification_key_n6.json972a52942e...57b8ced3

Verify everything yourself.

Every contract is public. Every proof is verifiable. Every audit will be published.

View on Arbiscan
∇ZNABLAZ

NablaZ is developed by NablaZ Labs, Inc., a Delaware-incorporated entity. NablaZ provides technology infrastructure only and does not offer investment, legal, or tax advice. Nothing on this site constitutes an offer or solicitation of securities.

NablaZ is not a registered investment advisor. Nothing on this site constitutes financial advice. Yield rates are variable and provided by third-party protocols. Past performance is not indicative of future results.

hello@nablaz.io

© 2026 NablaZ Labs, Inc. All rights reserved.

∇Z