Aledgerly

A Clear Signing assistant that protects users from blind signing and scam transactions.

Aledgerly

Created At

ETHGlobal Cannes

Winner of

Ledger - DOCUMENTATION IMPROVEMENT

Project Description

Aledgerly is a Ledger-focused cybersecurity copilot that helps users understand exactly what they’re signing before confirming a transaction. It combines the power of ERC-7730 Clear Signing metadata with educational formatting to prevent blind signing and phishing in dApps, particularly on chains where support is limited.

This project makes it possible to view human-readable transaction data—such as “Stake 100 CORE to validator X”—instead of raw hexadecimal, reducing the risk of signing malicious contracts. It includes a fully valid ERC-7730 metadata file created for the Core DAO staking contract (CoreStake), built entirely by hand for compatibility with Ledger devices. The project also features a Gen Z–friendly feedback guide to help developers write metadata that’s accessible, understandable, and security-conscious, especially for onboarding newer users to Web3.

Aledgerly is your security sidekick for Web3 — built to help people actually understand what they’re signing. No more mystery hex codes, no more “hoping for the best.”. We combined Ledger’s Clear Signing (ERC-7730) with a privacy-first cybersecurity agent to create a human-readable, scam-spotting signing flow. Users get readable transaction explanations like “Stake 100 CORE to validator X,” backed by verified contract metadata. Behind the scenes, our agent flags sketchy behavior like infinite approvals or spoofed delegate calls, all without exposing your data.

It’s built for crypto newcomers, and anyone tired of getting rekt by blind signing. Built with Ledger + Oasis at ETHGlobal Cannes.

How it's Made

We started with Ledger Clear Signing and manually created a full ERC-7730 metadata file for the CoreStake contract on Core DAO (chain ID 1116). This included: Writing out all method definitions: mint, redeem, and withdraw, Adding readable descriptions + display instructions, Validating against Ledger’s official JSON schema using ajv, Creating .hex test txs + a PR-ready registry submission.

Then we added a backend cybersecurity agent using Oasis ROFL, running in a TEE (Trusted Execution Environment). It privately scans transaction patterns and flags risk: Sketchy delegate calls? Reusable signature attacks? Infinite token approvals? Our ROFL bot handles that — confidentially. User preferences and feedback stay encrypted inside the TEE using Oasis KMS.

Frontend is React + ethers.js. We also wrote a Clear Signing style guide for developers — Gen Z-coded, with helpful labels, emojis, and examples to improve safety UX for everyone. This doc was also the feedback submission doc too for the Ledger prize.

background image mobile

Join the mailing list

Get the latest news and updates