Fundamental security assumptions

Core principles for Safer Safes

A Safer Execution Model for Multisigs

Organizations that rely on multisigs often execute recurring transactions—such as salary disbursements or vesting fund claims. Each transaction proposal and signature introduces a surface for potential exploitation. The goal of this solution is to significantly reduce that risk.

This approach draws inspiration from the spells architecture used by Sky (formerly MakerDAO) and Spark, additionally avoiding the use of DELEGATECALL that requires extreme carefulness on each call, because of the risk of changing the contract storage (catastrophic).

At the core of this system is the concept of Actions: Solidity smart contracts that encapsulate all the necessary transaction logic and parameters. These Actions are designed to be:

Simple – Focused and easy to reason about.

Immutable – Once deployed, they cannot be altered.

Independent – Self-contained, with no external dependencies.