Aidra

A Programmable Wallet for Cross-Chain Transfers

Built at Zypherpunk

Created on 4th December 2025

•

Aidra

A Programmable Wallet for Cross-Chain Transfers

The problem Aidra solves

What Aidra Is

Aidra is a bridge-only smart wallet designed to make cross-chain transfers safe.
Instead of allowing raw, unrestricted sending like a normal wallet, Aidra routes every outbound action through a programmable security engine made of modular, plug-and-play policies.

Users can enable or disable any of the 13+ policy modules, giving them full control over how their wallet is allowed to behave.
This is the core value of the project: Aidra is a wallet that enforces the user’s intent before a bridge transfer can ever happen.

Once a transfer passes all policy checks, Aidra uses NEAR Intents to actually execute the cross-chain swap, giving users a secure, reliable, programmable path from Zcash to all supported chains and assets.

🔧 Programmable, Plug-and-Play Security Policies

Aidra introduces policy-restricted bridging.
Each policy is modular and can be toggled or configured independently. These include:

Daily and per-transaction spending limits
Velocity and burst protection
Cooldown periods and allowed hours
Blackout days
Asset and recipient whitelists
High-value guardian approvals
New-recipient confirmation
Suspicious-pattern detection

Every transfer must pass all active policies.
If any rule fails, the wallet stops the bridge request — even if the signature is valid.
This is something normal wallets and bridges simply cannot do.

1. Safer Cross-Chain Transfers by Default

People use Aidra to bridge ZEC without exposing themselves to:

malware
phishing prompts
malicious scripts
unapproved smart contract calls
accidental taps or clicks

Because the wallet layer blocks anything that violates user policies, a unauthorized operation cannot move funds.

2. Protection From Human Mistakes (Fat-Finger & Copy/Paste Errors)

Aidra removes common failure modes:

sending to the wrong chain
pasting the wrong recipient
extra zeros or decimal-place mistakes
sending more than intended
rapid misclicking

The policy engine prevents these errors from becoming irreversible losses.

3. Secure Bridging From Zcash Shielded Addresses

When ZEC leaves the shielded pool, all traces are gone.
Aidra enforces policies before funds exit, ensuring:

no unwanted operations
no accidental loss
no unreviewed outbound transfers

Shielded funds stay protected until the user’s exact conditions are met.

4. Team, DAO, and Small-Organization Spending Controls

Teams can use Aidra as a lightweight treasury wallet with:

multi-sig approvals
time-restricted spending
limits specific to or scenarios
tamper-resistant policies

5. A Wallet Where Users Define the Rules

Aidra makes bridging easier because users don’t have to think about safety each time.

They:

Set their policies once
Deposit ZEC
Bridge safely, every time

The wallet enforces the rules automatically.

Challenges I ran into

Major Hurdle #1 — Running Shielded Wallets in the Browser

I originally tried to build a fully self-custodial Zcash wallet directly in the web environment using zcash-devtools.
But:

The tools rely heavily on Rust and native bindings
I didn’t know Rust before the hackathon
Compiling and using them inside a browser environment was extremely difficult
This consumed a huge portion of my hackathon time

How I solved it

I pivoted to using Zingo CLI, which has a much simpler interface and allowed me to spin up shielded wallets quickly.

The tradeoff was significant:

I had to switch from self-custodial (user holds keys)
to
custodial (backend manages keys)

Major Hurdle #2 — Building a Modular Security Policy Engine

Aidra’s core innovation is its 13-module programmable security system, but:

policies had different data structures
some policies needed historical context
some required real-time locks and atomic reservations
concurrency issues led to race conditions
I had to prevent double-spending even under rapid requests

How I solved it

I redesigned the system as a plug-and-play policy pipeline with:

atomic DB transactions
“pending” state reservations
modular JSON schemas
consistent execution order
a unified evaluation framework

Some policies are still slightly buggy at the edges, but the core enforcement logic works reliably and is extendable.

Major Hurdle #3 — Learning the Zcash Ecosystem on the Fly

Zcash’s tooling, terminology, and shielded workflows were initially unfamiliar:

lightwalletd
unified addresses
shielded vs transparent flows

How I solved it

I spent a chunk of time reading docs, testing commands, and experimenting with real wallets.
This slowed early progress but ultimately helped me build a correct and safe integration.

Major Hurdle #4 — Couldn't Implement WebAuthn-Protected Policy Updates

Another feature I planned but couldn’t implement in time was WebAuthn-secured policy updates.

Originally, my vision was:

Users authenticate with WebAuthn to log in and
The same WebAuthn credential would be required to change any security policy
(limits, whitelists, guardian config, etc.)

This matters because without that second layer:

Anyone with access to the device (friend, sibling, coworker)
Could modify a user’s policy settings
Which could weaken their security posture
Even if they cannot directly sign outbound transfers

Why it didn’t make the final build

The limitation wasn’t technical difficulty, it was purely time.

Implementing:

WebAuthn ceremony prompts for policy changes
backend verification flows
signed mutation logs
re-authentication middleware

…would have required more time than I had left in the hackathon.

I chose to ship a stable core system rather than rush a critical security feature.

How I plan to fix it post-hackathon

The post-hackathon version will include:

WebAuthn-signed policy updates
Separate “admin” passkey for policy management
Tamper-proof policy mutation logs
Optional guardian approval for policy changes

This will harden the system so that policy changes are as secure as outbound transfers.

Tracks Applied (10)

Cross-Chain Privacy Solutions

Secure cross-chain communication requires a secure origin. While protocols like Axelar secure the transport of assets, A...Read More

Axelar Network

Cross-Chain Privacy Solutions

Osmosis is the gateway to the Interchain, and Aidra is the Smart Gate that makes entering that ecosystem safe for Zcash ...Read More

Osmosis

Self-Custody & Wallet Innovation

Self-custody usually means 'you are on your own.' Aidra changes that by introducing Programmable Self-Custody. We are a ...Read More

Osmosis

Private Payments & Transactions

Private payments fail when they lack controls. A corporate treasury cannot use a wallet that allows unlimited, anonymous...Read More

Osmosis

Self-Custody & Wallet Innovation

Unstoppable Wallet champions decentralized access; Aidra champions Decentralized Safety. We are applying the concept of ...Read More

Unstoppable Wallet

Privacy-Focused Content & Media

Bitlux enables private cross-border payments; Aidra ensures those payments are authorized. We built a Programmable Smart...Read More

Bitlux

Cross-Chain Privacy Solutions

You asked for a solution that connects Zcash to multiple chains using the NEAR Intents SDK. Aidra delivers this, but we ...Read More

NEAR Protocol

Private Payments & Transactions

For private real-world payments to scale on Zcash, users need more than just privacy; they need programmable control. Ai...Read More

NEAR Protocol

General Bounty

Project Tachyon fuels Zcash innovation, and Aidra represents the evolution of the wallet from a passive storage tool int...Read More

Project Tachyon

Private Payments & Transactions

This is the 'Shark Tank' pitch: Zcash is the best money, but it has the worst safety rails. If you get hacked, it's gone...Read More

Star Fun

Technologies used

React

Node.js

Tailwind CSS

Cheer Project

Cheering for a project means supporting a project you like with as little as 0.0025 ETH. Right now, you can Cheer using ETH on Arbitrum, Optimism and Base.

Discussion

Builders also viewed

See more projects on Devfolio