Audited by Halborn. Guardian enforced. MPC signed. Fail-closed by design.

Halborn Audited
The DeFi infrastructure was audited by Halborn, covering cross-chain logic, smart contracts on EVM and non-EVM, Soroban on Stellar and execution stack penetration testing.
Guardian Layer + MPC
The Guardian Layer is the core safety system between Surf and your funds. It defines what is allowed on-chain. Surf proposes actions; the Guardian Layer decides if they can execute.
Fail-Closed Architecture
The system is designed to fail closed. Any single rule violation rejects the action. No overrides. No backdoors. Every rejected action is logged.
Funds move across chains, but custody stays inside the user vault.
No single role has full control. Permissions are scoped and enforced on-chain.
Custody
Funds never leave vault except via approved execution or user withdrawal
Exposure
Max per protocol, per asset class, per vault
Liquidity
Minimum exit depth. No stranding capital.
Execution
Atomic only. No partial states.
Risk
Health factor minimums. Oracle deviation tolerance.
Temporal
Cooldown periods. Emergency freeze conditions.