Smart Contracts - Documentation

The smart contracts are the final layer of defense in the three-layer security architecture. They enforce your organization’s policies directly on-chain, blocking any transaction that does not meet policy requirements, even if every off-chain system is compromised.

Open source

The complete smart contract codebase is open source and available on GitHub:

OnChainDen/mls-contracts

Source code, tests, deployment scripts, and technical documentation

Anyone can read the code, verify the deployed contracts against the source, and independently review the security properties of the system.

Technical documentation

Extensive, in-depth technical documentation lives alongside the code in the repository. If you want to understand exactly how the contracts work, start with the repository README, then explore the detailed deep-dives:

Topic	Description
Merkle Tree Architecture	How policies are stored as a Merkle tree and verified with proofs
Guardian Protection	Guardian architecture, `SafeExecutorModule`, and update flows
Signatures	Signature encoding formats, EIP-712, nonces, and signed message types
Disaster Recovery	Guardian recovery and transaction recovery mechanisms
Deployment	Deployment instructions and configuration

Security audits and deployments

Security Audits

Independent third-party audit reports from Certora and yAudit

Deployments

Supported networks and deployed contract addresses

Security AuditsThe Multi-Layer Security Wallet smart contracts have been audited by independent third-party security firms.

​Open source