Transparency report · Cinder

Built by
one person.

No team. No investors. No VC allocation. Just one person who thought auto-compounding XRP yield on Flare was a problem worth solving — and decided to build it instead of waiting for someone else to.

Solo founder Open source 10% founder allocation No VC / private sale Unaudited — $50K cap Timelock treasury Gelato automation
Origin

The problem was obvious.
Nobody had built it.

Flare Network has real XRP staking yield through Firelight. Deposit XRP, receive stXRP, watch it accrue value — roughly 8–9% APY just sitting there. But the yield compounds slowly unless you harvest it regularly and re-stake. Do that manually and you miss hundreds of dollars per year. Automate it and the compounding adds up meaningfully.

That's a solved problem in DeFi. Yearn built vaults for this years ago. But nobody had built one for stXRP on Flare. So I built it. The vault harvests yield automatically, compounds it back in, and takes 10% as a protocol fee. EMBER token holders govern those fees. That's the entire protocol.

No roadmap to "become the liquidity layer of Web3." No "ecosystem partnerships" slide deck. One vault, one token, one clear value proposition. If it works, the fees fund more development. If it doesn't, the contracts keep running autonomously anyway.

💡
The keeper bot is not running on my laptop. Harvests are automated via Gelato Network — a decentralized execution protocol. The CinderGelatoResolver contract tells Gelato when to call harvest(), and Gelato executes it on-chain. If I'm asleep, on holiday, or gone: harvests still happen. You can verify this on Flarescan.
What this means for you

The honest
tradeoffs.

A solo founder isn't inherently worse than a team — it's different. Here's what you're actually signing up for.

What gets better

No investors to answer to — the protocol does exactly what it says, not what maximizes a VC's return.

No team salaries. Fees go to the treasury, not payroll. Lower structural cost = more sustainable at low TVL.

No consensus needed to move. If a bug needs fixing or a feature needs shipping, it happens in hours, not weeks of meetings.

The code is simple on purpose. Boring DeFi code that does one thing reliably beats clever code with a bug in the seventh feature.

What you're taking on

If I stop building, active development stops. The contracts run autonomously — but no new vaults, no new features, no responses to governance proposals.

No audit yet. I'm doing it the honest way: static analysis, Code4rena contest, TVL cap. But it's not Certik, and you should know that.

My voting power is real. I hold 10% of EMBER. Combined with early mining rewards, I could approach quorum alone. I've committed not to — but that's a social commitment, not code.

Support is me, personally. Response times depend on my timezone and workload. I will respond — but not instantly.

Tokenomics

Why 10%, not 20%.

The standard "team" allocation in DeFi is 20%. I took 10% — 100M EMBER — with a 2-year linear vest starting day 1 (no cliff). Two reasons.

First: as a solo founder, 20% is hard to justify to users. "Team" implies people. There's one person. 10% is still a massive incentive if this works — and my incentives are now more aligned with yours, since a smaller founder cut means more EMBER went to mining rewards and treasury.

Second: I chose no cliff deliberately. A cliff rewards a founder who shows up for 6 months then walks. Linear from day 1 means I earn tokens every day I'm actively building. The vesting contract is on-chain and public — you can verify exactly how many tokens I've claimed at any moment.

🔒
There is no team multisig. A 2-of-3 multisig requires 3 people. Instead, the treasury is behind a timelock — all spending requires a passing EMBER governance vote followed by a mandatory 2-day delay before execution. I cannot touch treasury funds unilaterally. Not today, not ever, without a vote.
Token allocation — 1B EMBER total
Mining
450M · 45%
Treasury
250M · 25%
Public Sale
150M · 15%
Founder vest
100M · 10%
Community
50M · 5%
No inflation · No admin mint · All vesting on-chain · No VC or private round
Security

No Certik.
Here's what instead.

A full Certik audit costs $50–150K. I don't have that, and I won't pretend to. Here's what I'm doing instead — in order of what's already done to what's planned.

🔍
Slither + Mythril static analysis
Run on every contract before deploy. All flagged issues resolved. Output published on GitHub.
Done
📖
100% open source, verified on Flarescan
Every line of every contract is public. No proxy obscuration, no unverified bytecode. Read it yourself.
Done
🔒
$50K TVL hard cap at launch
Built into the vault contract. Limits blast radius if there's a bug. Raised only after audit completes via governance vote.
At launch
🏆
Code4rena competitive audit
$5–10K EMBER prize pool funded via treasury governance vote (FIP-1). Hundreds of security researchers compete to find bugs — same people who audit Uniswap and Aave.
In progress
🐛
Ongoing bug bounty via Immunefi
Critical bugs rewarded from treasury after the Code4rena contest completes. Reporting contact: security@cinder.finance.
Post-audit
⚠️
These contracts are unaudited. The $50K TVL cap is there to protect you, not me. Only deposit what you can afford to lose until the Code4rena audit is complete and the results are published. I will announce when the cap is raised via Discord and X.
Where this is going

A realistic
roadmap.

Not a 47-point ecosystem vision. What I'm actually building, in order.

Core protocol + governance
CinderVault, EMBER token, CinderMining, CinderGovernor, CinderFounderVest, CinderTimelock, CinderGelatoResolver — all written and ready to deploy.
Complete
Frontend + documentation
Main app, governance page, about page (this), Gitbook docs. Static HTML — no server required.
Complete
Coston2 testnet + static analysis
Full deployment on Coston2. Slither + Mythril on all contracts. Fix everything flagged before mainnet. Results published publicly.
Now
Mainnet launch — $50K TVL cap
Deploy to Flare Mainnet when Firelight Phase 2 goes live with stXRP. Gelato automation live. EMBER sale open. $50K hard cap enforced.
Q3 2026 — pending Firelight
Code4rena audit + FIP-0
Run audit contest funded by treasury (FIP-1 governance vote). Ship FIP-0 to raise governance quorum from 4% to 10%. Remove TVL cap after clean audit.
Post-launch
FBTC vault — governance vote required
If Firelight supports FBTC staking, propose a second vault via governance. EMBER holders vote. If passed, I build it.
Depends on Firelight + community vote
Full transparency

Everything
on the table.

Protocol facts Verifiable on Flarescan
Team size
1 person
VC / investors
None
Private sale
None
Founder allocation
10% · 100M EMBER
Founder vesting
2yr linear · no cliff · on-chain
Admin mint function
Does not exist
Upgrade mechanism
None · immutable contracts
Treasury control
Timelock only · requires governance vote
Keeper infrastructure
Gelato Network · not my server
Performance fee
10% of yield · changeable only by governance
Withdrawal fee
0.1% · goes to remaining depositors
TVL cap at launch
$50,000 · removed post-audit via governance
Audit status
Unaudited · Code4rena planned
Source code
github.com/cinderfinance ↗
Questions

Things people ask
solo founders.

The contracts keep running. The vault keeps accepting deposits and withdrawals. Gelato keeps calling harvest(). Governance keeps working. Your funds don't go anywhere. What stops: new vaults, new features, active development, responding to governance proposals. The protocol is designed to be autonomous — I'm the builder, not the operator. If I'm gone for more than a month with no communication, the community can fork the contracts and governance will decide what to do with the treasury.
Let's be specific. I cannot: touch treasury funds without a governance vote, mint new EMBER, upgrade contracts without governance, or block withdrawals permanently. I can: deploy a new contract and try to convince the community to migrate (they'd vote on it), propose governance changes to my advantage (community can vote no), and stop developing (doesn't affect existing contracts). The honest answer is no multisig can substitute for trust in a solo founder at early stage. What I can offer is aligned incentives: my 100M EMBER vests over 2 years and is worth something only if the protocol works. Rugging it destroys the thing that makes my allocation valuable.
Honestly, at launch: no. With 45% in the mining contract (locked, not yet voting), 15% in the sale, and 5% in the airdrop, the circulating voting power at TGE is mostly mine. This changes as EMBER distributes through mining and the sale. I've committed to two things: not voting my founder allocation on treasury spending proposals, and submitting FIP-0 to raise quorum from 4% to 10% once distribution makes that viable. These are social commitments, not code. Governance decentralizes over time — but you should know it starts centralized and make your own decision about that.
Because none of them support stXRP on Flare. Yearn, Beefy, and Convex are on Ethereum/BSC/Polygon. Flare has its own ecosystem and stXRP is specific to Firelight's protocol. There was a gap — I built the thing to fill it.
Discord — best for questions, governance discussion, and general chat. Link in the footer. security@cinder.finance — for bug reports and security issues. I respond within 24 hours, often faster. X/Twitter — for announcements. I post less frequently there. I won't respond to DMs asking for investment, partnership proposals from random protocols, or "when moon" questions.
Not yet. I built this in evenings and weekends. If the protocol generates meaningful revenue and TVL, that changes. The 10% founder allocation and ongoing protocol fees create the conditions for it to become full-time — that's the honest incentive structure. Right now: I'm building because I think it should exist, and I want to be the one who built it.

That's the whole story.

One person. Open source contracts. On-chain governance. A $50K cap until it's audited. Use it or don't — but now you know exactly what you're using.

Open the app → Read the code Governance →