AEGIS — private execution for shared treasuries.
Aegis turns multisig treasury payments into privacy-preserving, auditable transfers without breaking existing approval workflows. Built on Squads and powered by Cloak, it enables Solana-based treasuries to run payroll, invoicing, and audits without exposing sensitive on-chain data, with scoped, time-bound audit access and signed exports. v0 live on Devnet.
Overview
AEGIS is a privacy layer for Solana treasuries, built on Squads Protocol v4 and powered by Cloak's zero-knowledge shield pool. It turns multisig treasury payments into private, auditable transfers without changing the N-of-M approval flows a team already runs. The aim is confidentiality with regulated disclosure rather than full anonymity, so treasuries can handle payroll, invoices, and audits without exposing sensitive data on-chain.
The challenge
Every multisig transfer on Solana is public by default, exposing salaries, vendor relationships, and strategic moves to anyone watching the chain. That creates operational security risk, front-running exposure, and identity correlation attacks. The real tension is delivering privacy without breaking threshold approval or the ability to audit later, since regulated treasuries still need to prove where funds went.
Outcome
AEGIS extends Squads v4 with an Anchor and Rust gatekeeper program that issues short-lived licenses, and routes funds through Cloak using Groth16 proofs generated in the browser, so the link between vault and recipient cannot be proven on-chain. Auditors get scoped, revocable, time-boxed access, every view and export is logged, and CSV and JSON exports are signed and verify offline. v0 is live on Devnet, with a security audit planned before mainnet. It was built for the Cloak Track and placed 3rd, winning 750 USDC among 95 submissions.