Custody layer

100% non-custodial

Soroban 2-of-3 vault. The client holds the keys. Nirium can never move your funds. Period.

Three keys. Two signatures.

Any critical vault operation requires 2 of 3 signatures. No one can move funds alone.

Owner

Founder, CEO or primary decider

Cosigner 1

CTO, Operations or Admin

Cosigner 2

Legal, Board or external advisor

What requires 2-of-3 multisig

Automatic operations

The agent can execute without additional signature under preconfigured limits:

USDC ↔ CETES rebalancing under daily threshold
Routine operations < $10K USDC
Reports and queries (read-only)

Critical operations

These require 2 human signatures, no exceptions:

Withdrawals > $10K USDC
Cosigner changes
Emergency vault pause
Vault closure

What Nirium CANNOT do

Not a legal disclaimer — a technical impossibility at the Soroban contract level.

Move your funds without your signature

Change your cosigners

Withdraw funds to a Nirium wallet

Access your private keys

Unilaterally pause your vault

Modify vault code once deployed

The real contract

NiriumVault is deployed on Stellar Testnet and is verifiable.

Contract IDStellar Testnet

CAU2XBJTQUBTMPAUFRX7GMZ337I5WLBI4GYPWHZEVXTMJ66D3CP6DEL4

View on Stellar Expert View source code

Audit

JARGUS Audit v2 (internal)

78/78

Vectors PASS · 0 critical · proprietary framework

External audit

Pending

Mainnet blocker · funded by SCF Build

JARGUS Internal Security AuditINTERNAL ONLY

This platform has undergone internal security verification using the JARGUS Automated Framework (78/78 vectors passed). JARGUS is a proprietary self-assessment tool — it does not replace professional third-party audits from firms such as OpenZeppelin, Trail of Bits, Halborn, or CertiK. A formal external audit is required before mainnet. Testnet only.

TESTNET ONLY