∇ZNABLAZ
Mainnet
Open AppTokenizationLiquidityOrchestrationCompanySecurity

SECURITY

SECURITY &
TRANSPARENCY

Math you can verify. Not our word.

Arbitrum One mainnetIndependent auditsZK verification

AUDITS

NablaZ has engaged leading security firms for independent smart contract audits. Reports will be published in full upon completion.

OpenZeppelin

IN PROGRESS

Audit in progress. Report published upon completion.

openzeppelin.com

Zellic

IN PROGRESS

Audit in progress. Report published upon completion.

zellic.io

CONTRACTS

All NablaZ protocol contracts are deployed on Arbitrum One mainnet. Every address is verifiable onchain.

NablaZ has deployed two ZK proof gates. The current gate (V4) is used by all accounts created after the May 2026 cutover. The legacy gate (V3) remains active for existing accounts — both are live and verifiable.

CONTRACTADDRESSVERIFY
Registry Resolver0x2508...2225View
Account Registry0x9557...5265View
NablaAccount Implementation0x886B...fb2dView
NablaAccountFactory0x8Fea...b2bFView
Migration Helper0xf7a2...196DView
Migration Sweep Adapter0xDc32...46A0View
Default Onboarding Hook0x8050...3e0cView
Consumer AI Mandate Resolver0x2B12...CF6BView
ZK Proof Gate (current)0x767D...c1EBView
ZK Proof Gate (legacy)0x2555...3b34View
Jurisdiction Verifier0xC04C...2774View
Risk Config0xaa96...2827View
RiskConfigTimelock0x2f57...3Ff9View
Yield Adapter (sUSDe)0x11f9...2598View
Yield Adapter (wstETH)0x1A67...3DddView
Lending Adapter0x7331...316CView
Vault Registry0x46d3...59c2View
Encumbrance Registry0xd1da...73feView
Payment Adapter0x7d50...9FDdView
Distribution Vault0x7467...0636View
IncomeVerifier0x1724...59acView
NullifierRegistry0x1A74...E6fDView
CapabilityRegistry0xD2E6...Daf1View
CCTP Bridge Provider0x19B4...837EView
Cross-Border Adapter0x5e9f...988dView
Destination Adapter Registry0x63EF...2D15View
Authorized Relayer Registry0x3795...AB3aView
Bootstrap Attestor0x7283...6d23View

COVERAGE

PROTOCOL

2594

tests across 205 suites · 0 failures

FoundryALL PASSING
ZK VERIFICATION

Every capital operation requires cryptographic proof of eligibility. Proof requirements are enforced at the contract layer — not the application layer. Eligibility cannot be bypassed by the UI, the AI, or any operator.

SECURITY BY DESIGN

Deterministic Enforcement

Transfer restrictions, eligibility rules, and lifecycle states are encoded in contracts. No operator, broker, or legal opinion can override them. Normal operation excludes human discretion by design.

AI With Onchain Validation

The AI surfaces proposals. Onchain guards validate them. The AI cannot execute, cannot create exposure, and cannot bypass eligibility. Every AI action operates within declared bounds enforced by the protocol.

Non-Custodial By Architecture

User funds are held in individually deployed account contracts. NablaZ Labs does not hold custody of any user assets at any point.

BUG BOUNTY

Responsible Disclosure

Report vulnerabilities to security@nablaz.io

Critical findings are reviewed within 48 hours.

Responsible disclosure48-hour critical reviewsecurity@nablaz.io

ZK CEREMONY

These hashes prove the trusted setup ceremony produced the verifier keys — independently verifiable.

income_n6_final.zkeydf712cf54d...209f956c
verification_key_n6.json972a52942e...57b8ced3

Verify everything yourself.

Every contract is public. Every proof is verifiable. Every audit will be published.

View on Arbiscan
∇ZNABLAZ

NablaZ is developed by NablaZ Labs, Inc., a Delaware-incorporated entity. NablaZ provides technology infrastructure only and does not offer investment, legal, or tax advice. Nothing on this site constitutes an offer or solicitation of securities.

NablaZ is not a registered investment advisor. Nothing on this site constitutes financial advice. Yield rates are variable and provided by third-party protocols. Past performance is not indicative of future results.

hello@nablaz.io

© 2026 NablaZ Labs, Inc. All rights reserved.

∇Z