Welcome to VANTA
Private AI Agent Protocol on Solana. Execute agent strategies with encrypted intents, zero-knowledge proofs, and MEV protection.
VANTA is an open protocol that enables AI agents to execute on-chain strategies privately. Instead of broadcasting raw transactions to public mempools, agents submit encrypted intents that are verified via ZK proofs and routed through private relays — shielding strategies from front-runners, sandwich bots, and MEV extractors.
Why VANTA?
Current on-chain AI agents leak their entire strategy the moment they submit a transaction. VANTA fixes this by encrypting the intent at the agent layer, proving execution validity with ZK circuits, and routing via private mempools.
Key Features
Encrypted Intents
Agent strategies are encrypted client-side before submission. Only the relay and solver can decrypt the execution parameters.
ZK Proofs
Zero-knowledge circuits prove that encrypted intents are valid and solvent without revealing the underlying strategy.
MEV Shield
Transactions are routed through Jito bundles and private mempools, eliminating front-running and sandwich attacks.
Quick Links
Architecture
How VANTA routes AI agent intents through encryption, proof generation, and private execution.
Encrypted Intent Flow
When an AI agent wants to execute a strategy (e.g., swap, provide liquidity, rebalance), it never broadcasts a raw transaction. Instead, the flow works as follows:
Agent --> Encrypt Intent --> VANTA Relay --> Solver Network --> Private Execution
1. Agent constructs intent (action + params + constraints)
2. SDK encrypts intent with relay's public key (X25519)
3. Encrypted payload submitted to VANTA Relay
4. Relay verifies ZK proof of solvency & validity
5. Solver decrypts, finds optimal execution path
6. Transaction bundled via Jito for MEV protection
1. Agent constructs intent (action + params + constraints)
2. SDK encrypts intent with relay's public key (X25519)
3. Encrypted payload submitted to VANTA Relay
4. Relay verifies ZK proof of solvency & validity
5. Solver decrypts, finds optimal execution path
6. Transaction bundled via Jito for MEV protection
The agent's strategy details (which token, how much, what price, timing) remain encrypted from submission to execution. Only the solver — selected by stake-weighted reputation — can decrypt the intent.
ZK Proof Circuit
VANTA uses Groth16 proofs on BN254 to verify that an encrypted intent satisfies protocol constraints without revealing the intent itself:
- Solvency proof — the agent's wallet has sufficient balance to cover the intent at submission time
- Validity proof — the intent conforms to protocol rules (valid action types, reasonable slippage, non-negative amounts)
- Commitment binding — the encrypted payload matches the proof's public input commitment (Poseidon hash)
Proof Generation
Proofs are generated client-side in the SDK using a WASM-compiled prover. Average proof time is ~200ms on modern hardware. The circuit is open-source and audited.
MEV Shield
Even with encrypted intents, the execution layer can still leak value. VANTA's MEV Shield addresses this at two levels:
Layer 1: Private Mempool
Transactions never enter Solana's public mempool.
Routed directly to block producers via Jito bundle tips.
Layer 2: Execution Ordering
Solver commits to execution price before decryption.
Commit-reveal scheme prevents solver front-running.
Layer 3: Slippage Guarantees
Intent contains max slippage. If breached, tx reverts.
Solver bond is slashed for failed executions.
Transactions never enter Solana's public mempool.
Routed directly to block producers via Jito bundle tips.
Layer 2: Execution Ordering
Solver commits to execution price before decryption.
Commit-reveal scheme prevents solver front-running.
Layer 3: Slippage Guarantees
Intent contains max slippage. If breached, tx reverts.
Solver bond is slashed for failed executions.
Network Components
| Component | Role | Trust Assumption |
|---|---|---|
| VANTA SDK | Client-side encryption + ZK proof generation | Fully trustless (open-source) |
| Relay | Receives encrypted intents, verifies proofs, routes to solvers | Cannot see intent content, only verifies proofs |
| Solver Network | Decrypts intents, finds optimal execution, submits bundles | Bonded; slashed for misbehavior |
| Solana Program | On-chain settlement, proof verification, bond management | Immutable, audited |
$VANTA Token
The native token powering governance, privacy tier access, and protocol fee settlement.
Token Utility
- Governance — $VANTA holders vote on protocol upgrades, solver parameters, and treasury allocation via on-chain proposals
- Privacy Tier Staking — stake $VANTA to unlock higher privacy tiers with faster execution, dedicated solvers, and priority bundling
- Fee Payment — protocol fees for intent submission and execution are paid in $VANTA (with SOL auto-conversion available)
- Solver Bonds — solvers must bond $VANTA as collateral; slashed if they fail to execute or attempt manipulation
Tokenomics
| Allocation | Percentage | Amount | Vesting |
|---|---|---|---|
| Community | 40% | 400,000,000 | Linear over 3 years |
| Investors | 20% | 200,000,000 | 6-month cliff, 24-month linear |
| Team | 15% | 150,000,000 | 12-month cliff, 36-month linear |
| Treasury | 15% | 150,000,000 | Governed by DAO |
| Ecosystem | 10% | 100,000,000 | Grants + partnerships |
Total Supply
1,000,000,000 $VANTA — fixed supply, no inflation. All tokens are minted at genesis and distributed according to the vesting schedule above.
Staking Tiers
Basic
Free
- Standard encryption
- Public solver pool
- Up to 10 intents/day
- Standard bundle priority
Pro
10,000 VANTA staked
- Enhanced encryption
- Priority solver routing
- Up to 100 intents/day
- Jito bundle priority
- Execution analytics
Enterprise
100,000 VANTA staked
- Maximum encryption
- Dedicated solver cluster
- Unlimited intents
- Top-priority bundling
- Custom proof circuits
- SLA guarantees
SDK Reference
TypeScript SDK for building private AI agents on VANTA Protocol.
Installation
bash
npm install @vanta/sdkOr with yarn / pnpm:
bash
yarn add @vanta/sdk
pnpm add @vanta/sdkQuick Start
Initialize an agent and submit an encrypted intent:
typescript
import { VantaAgent } from '@vanta/sdk';
const agent = new VantaAgent({
rpc: 'https://api.mainnet-beta.solana.com',
privacyLevel: 'maximum',
mevShield: true
});
// Submit an encrypted swap intent
const result = await agent.submitIntent({
action: 'swap',
input: { mint: 'SOL', amount: 10 },
output: { mint: 'USDC' },
encrypted: true
});
console.log('Intent ID:', result.intentId);
console.log('Privacy score:', result.privacyScore);Configuration
typescript
interface VantaConfig {
/** Solana RPC endpoint */
rpc: string;
/** Privacy level: 'standard' | 'enhanced' | 'maximum' */
privacyLevel: 'standard' | 'enhanced' | 'maximum';
/** Enable Jito MEV Shield routing */
mevShield: boolean;
/** Custom relay endpoint (optional) */
relayUrl?: string;
/** Wallet keypair or adapter */
wallet?: Keypair | WalletAdapter;
/** Network: 'mainnet-beta' | 'devnet' */
network?: string;
}API Reference
| Method | Parameters | Returns | Description |
|---|---|---|---|
submitIntent() |
IntentParams |
Promise<IntentResult> |
Submit an encrypted intent for execution |
getPrivacyScore() |
intentId: string |
Promise<number> |
Get the privacy score (0-100) of a submitted intent |
encryptPayload() |
payload: object |
EncryptedPayload |
Encrypt arbitrary data using the relay's public key |
verifyProof() |
proof: ZKProof |
Promise<boolean> |
Verify a ZK proof locally before submission |
getIntentStatus() |
intentId: string |
Promise<IntentStatus> |
Check execution status of a submitted intent |
estimateFees() |
IntentParams |
Promise<FeeEstimate> |
Estimate protocol + network fees before submission |
Note
The SDK is currently in beta. API surface may change before v1.0 release. Pin your dependency version in production.
Contracts & Security
On-chain programs, audit status, and security disclosures.
Solana Program
| Property | Value |
|---|---|
| Program ID | VANT4xKzE7mGv2rFqbUKdHPiVnXWBkG9HjCREAT0R11 |
| Network | Solana Mainnet-Beta |
| Language | Anchor (Rust) |
| Upgrade Authority | Multisig (3/5 council) |
| Source Code | github.com/vantaagent/vanta |
Audit Status
OtterSec Audit
A comprehensive security audit by OtterSec is currently in progress. The audit covers the on-chain program, ZK circuit, and relay components. Results will be published upon completion.
Security Scope
- On-chain program — intent settlement, proof verification, bond management, treasury operations
- ZK circuits — Groth16 circuit soundness, Poseidon hash integrity, proof generation correctness
- Relay infrastructure — encrypted intent handling, solver selection, bundle submission
- SDK — client-side encryption, key management, proof generation
Security Model
| Vector | Mitigation |
|---|---|
| Front-running | Intent encryption + private mempool routing via Jito |
| Sandwich attacks | Encrypted intent parameters; max slippage enforcement |
| Solver manipulation | Commit-reveal execution; bonded solvers with slashing |
| Relay censorship | Decentralized relay set; intent can be resubmitted to any relay |
| Proof forgery | On-chain Groth16 verification; trusted setup ceremony |
Bug Bounty
VANTA runs an active bug bounty program for responsible disclosure of security vulnerabilities.
| Severity | Reward |
|---|---|
| Critical (fund loss) | Up to $100,000 |
| High (privacy breach) | Up to $25,000 |
| Medium | Up to $5,000 |
| Low | Up to $1,000 |
Report vulnerabilities to security@usevanta.xyz with a detailed description and reproduction steps.
FAQ
Frequently asked questions about VANTA Protocol.
How does VANTA protect my agent's strategy?
Your agent's intent (what tokens, how much, at what price) is encrypted client-side using the relay's public key before it ever leaves your machine. A ZK proof is generated to prove the intent is valid and solvent, but without revealing any details. The encrypted intent is then routed through private mempools so it never appears in public transaction queues where bots could analyze and front-run it.
What are the gas costs compared to normal Solana transactions?
VANTA transactions cost approximately 15-30% more than a standard Solana transaction. This premium covers ZK proof verification on-chain (~5,000 compute units), the relay fee, and the Jito bundle tip. For most agents, the MEV savings from not being front-run significantly outweigh the additional cost. The exact overhead depends on your privacy tier — Basic tier uses batched proofs which are cheaper.
Which chains does VANTA support?
VANTA currently supports Solana Mainnet-Beta and Devnet. The architecture is designed to be chain-extensible — the encrypted intent format and ZK circuits are chain-agnostic. EVM chain support (Ethereum, Base, Arbitrum) is planned for Q3 2026 via cross-chain relay integration.
Can I use VANTA without staking $VANTA tokens?
Yes. The Basic tier is free and provides standard encryption and MEV protection with up to 10 intents per day. You only need to stake tokens if you want higher throughput, dedicated solver routing, or maximum-tier encryption. Protocol fees can be paid in SOL via automatic conversion.
Is the ZK proof generation done on-chain or off-chain?
Proof generation happens entirely client-side (off-chain) in the SDK. The WASM-compiled prover runs in your agent's environment and generates Groth16 proofs in approximately 200ms. Only proof verification happens on-chain, which is computationally cheap (~5,000 compute units on Solana). This design keeps your private data local while still providing on-chain verifiability.
What happens if a solver fails to execute my intent?
If a solver accepts an intent but fails to execute it within the timeout window, their bond is partially slashed, and the intent is automatically re-routed to another solver. Agents are never charged for failed executions. Persistent solver failures result in removal from the active solver set. You can track intent status in real-time via
agent.getIntentStatus(intentId).