Nyxora AI

Nyxora is Your Personal Web3 Assistant—a highly secure, non-custodial AI Middleware that bridges on-chain DeFi execution with off-chain OS automation. Built with a Zero-Trust 3-Tier IPC Architecture and an advanced 4-Layer Cognitive Memory, it empowers users to execute natural language smart-swaps, automate DeFi habits, and connect external agents via MCP on Arbitrum—all without ever exposing their private keys to the AI.

ビデオ

テックスタック

React

Node

Rust

Web3

@napi-rs/keyring

viem

Solidity

Arbitrum

説明

Nyxora is a Local-First, Zero-Trust AI Middleware designed to help users safely navigate the complexity of DeFi on Arbitrum and other EVM chains. Through natural language, users can execute cross-chain swaps, monitor portfolios, automate recurring DeFi workflows, and interact with on-chain protocols without dealing with fragmented interfaces or complex transaction flows.

Unlike most Web3 AI agents, Nyxora is built around a security-first architecture where the AI reasoning engine never has direct access to private keys. By combining an Isolated Signer Vault, OS-native credential storage, policy-based transaction enforcement, and persistent user memory, Nyxora delivers autonomous on-chain execution without sacrificing self-custody.

The Problem

DeFi remains powerful but difficult to use safely.

Current AI-powered crypto agents introduce several critical problems:

Insecure Key Management — Many agents require users to store private keys in environment variables, local files, or centralized cloud vaults, creating unnecessary security risks.
Prompt Injection Risks — AI agents often rely heavily on system prompts and model behavior for security, making them vulnerable to malicious instructions or unexpected model outputs.
Repetitive User Workflows — Most agents lack meaningful long-term memory, forcing users to repeatedly provide the same instructions and preferences.
MEV Exposure — Transactions submitted through public mempools can be exposed to front-running and sandwich attacks, leading to poor execution and unnecessary losses.

How Nyxora Solves It

Nyxora addresses these challenges through four core pillars:

1. Zero-Trust Signer Architecture

The AI can plan and reason about transactions, but it cannot directly access private keys.

All cryptographic signing is isolated inside a dedicated Signer Vault process that integrates with the operating system's native credential manager:

Linux: Secret Service / GNOME Keyring
macOS: Keychain Access
Windows: Credential Manager

This separation significantly reduces the impact of compromised prompts, plugins, or AI behavior.

2. Policy-Based Transaction Enforcement

Every transaction passes through a dedicated Policy Engine before reaching the signer.

The Policy Engine enforces hard security constraints such as:

Maximum transaction size
Slippage limits
Asset restrictions
Approval requirements

This creates a security boundary that operates independently of the LLM.

3. On-Chain AI Kill-Switch (Decentralized Registry)

To provide absolute trustless control, Nyxora embeds a core security layer natively on the Arbitrum Network via the NyxoraAgentRegistry Smart Contract.

Before the local AI can execute any transaction, the system forces an asynchronous RPC check against the blockchain. If a user suspects their local machine is compromised, they can interact directly with the smart contract from any secure device to instantly revoke their agent's status. The local Gateway immediately detects this and terminates the execution thread, making it physically impossible for the AI to transmit the payload.

4. Persistent 4-Layer Memory System

Nyxora continuously learns user preferences and recurring DeFi habits.

Over time, the agent can streamline repetitive workflows such as:

Scheduled swaps
Portfolio monitoring
Position management
Routine treasury actions

This reduces friction while preserving user control and approval flows.

5. MEV-Aware Transaction Routing

Transactions are routed through MEV-protected infrastructure whenever possible, reducing exposure to front-running and sandwich attacks while improving execution quality.

Vision

To make interacting with Web3 as simple as having a conversation while preserving the principles of self-custody, transparency, and user ownership.

Mission

To build secure, autonomous AI infrastructure that enables everyday users to interact with complex blockchain ecosystems safely, efficiently, and confidently.

Why Nyxora Matters

Most AI agents focus on what the AI can do.

Nyxora focuses on what the AI should never be allowed to do.

By combining autonomous execution with a Zero-Trust architecture, Nyxora enables users to benefit from AI-powered DeFi automation without surrendering control of their assets.

Docs: https://nyxoraai.github.io/Nyxora/

Note for Judges: The smart contract address shown in the pitch video originates from an earlier staging deployment. The final backend infrastructure has since been migrated to Foundry, and the official contract deployed on Arbitrum Sepolia is:

0x6C811587ce9A50f1CF1fE5a42bF2b18a9787318F

ハッカソンの進行状況

During this Buildathon, we evolved Nyxora into a highly resilient, Zero-Trust, Defense-in-Depth Cryptographically AI middleware specifically optimized for the Arbitrum ecosystem, pushing the boundaries of local-first execution and data sovereignty: [1] On-Chain Arbitrum AI Registry (The Kill-Switch): Engineered a natively deployed Smart Contract on Arbitrum Sepolia (NyxoraAgentRegistry) that acts as an immutable, decentralized fail-safe. If the local machine is compromised, users hold the absolute cryptographic power to globally paralyze the AI's execution by simply toggling the contract status via Arbiscan. [2] Guarded Autonomy & OS-Level Keyring Vault: Engineered a strict "Bring-Your-Own-Keys" (BYOK) and Zero-Trust architecture. We completely eliminate plain-text private key storage by encrypting and delegating all credentials natively to the user's Operating System Keyring. We also implemented an onboard localhost Legal/Privacy generator to bypass centralized Google verifications. [3] Isolated Tri-IPC Architecture: Designed a highly secure 3-node Inter-Process Communication (IPC) network. Nyxora strictly segregates its core execution into independent local processes: the AI Core, the Policy Guardrail Engine, and the Signer Vault. This isolation prevents single-point-of-failure exploits. [4] MEV-Protected Web3 Execution: Developed a dynamic Web3 Multi-Router system to seamlessly execute NLP-driven swaps across Arbitrum DEXs. Upgraded the core config to route transactions through Private RPCs (Flashbots, MEV-Blocker) by default, shielding users from Sandwich Bot attacks. [5] Universal MCP Integration: Implemented the Model Context Protocol (MCP), transforming Nyxora into a universal bridge that allows any external AI client (like Claude Desktop) to securely interact with Arbitrum DeFi within a strictly sandboxed environment. [6] Untrusted Plugin Sandbox VM: Solved the "Rogue Plugin" dilemma by building an airtight Node.js isolated-vm execution chamber. Users can safely install community-built third-party Web3 skills without giving the code any read/write access to the local filesystem. [7] Cryptographic Nonce Guard (Replay Protection): Engineered an institutional-grade validation layer within the transactionManager. Every pending UI approval payload is cryptographically signed with a randomized 16-byte Nonce, completely eliminating Double-Spending and Replay Attacks. [8] 4-Layer Cognitive Memory & Anti-Injection Shield: Pioneered a state-of-the-art 4-Layer Memory Architecture powered by persistent background reflection. The AI autonomously learns user behaviors to seamlessly autocomplete repetitive DeFi workflows. We deployed a Hard-Coded RegExp Validator that proactively intercepts and annihilates Private Keys or Prompt Injection attempts before reaching the database. [9] Decentralized Portfolio Multicall: Built a hyper-fast, localized Portfolio Scanner utilizing parallel Multicall smart contracts. The AI natively detects obscure/custom tokens dynamically and integrates DexScreener caching to compute real-time USD valuations. [10] High-Concurrency AI Engine & Self-Healing Infrastructure: Optimized the Core AI Engine using a Semantic Keyword Router and SQLite WAL-mode memory, delivering zero-latency execution. Additionally, we fortified the gateway daemon with robust anti-crash resilience and intelligent auto-migration capabilities on boot. [11] Emergency Death-Loop Lockdown: Implemented a critical emergency monitoring protocol. If a core microservice crashes catastrophically, the system autonomously triggers an absolute lockdown to protect the global state and broadcasts a high-priority SOS alert to Telegram.

資金調達の状況

Bootstrapped (Self-funded). Currently open to ecosystem grants and early-stage seed investments to scale our Zero-Knowledge security infrastructure and expand our Arbitrum on-chain AI capabilities.

チームリーダー

PPrasetyo Yudhanto

プロジェクトリンク

業界

InfraAIDeFi