Basic Information
- Project Name: Sentinel
- Project Track: infra-security
- Team Name: SigIntZero
- Team Members: 6 (mix of engineering and business development), led by Alex Rybalko (CEO, posting from this account) and Aron Turner (CTO).
Social Info
- Telegram: @sashrbs
- X (Twitter): @sigintzero_
- Discord: N/A (reachable via Telegram or X)
- Website: https://sentinel.sigintzero.com (parent: AI Smart Contract Audit Engine: Sentinel | SigIntZero)
Project Overview
Project Goal
Port Sentinel, a peer-benchmarked AI audit pipeline currently running for Ethereum-native projects, to fully support TRON smart contracts within 90 days. Deliver free Sentinel audits to TBL ecosystem projects and to named TRON DeFi protocols. Publish a public TRON ecosystem benchmark report mirroring the format of our existing peer-comparison work.
Unique Value Proposition
In March 2026 we submitted PR #22 to z0r0z/majeur, a DAO governance framework whose creator deliberately ran 33 separate audit tools and firms against the same codebase as a public benchmark. Our peers on that benchmark include Trail of Bits, Cantina, Certora, Cyfrin, Zellic, Pashov, Hacken, Ackee, Plainshift, Octane, QuillShield, and the major AI coding assistants.
Sentinel’s results:
| Metric | Value |
|---|---|
| Total findings | 46 |
| Critical | 1 |
| High | 1 |
| Medium | 10 |
| Low | 25 |
| Informational | 9 |
| Hit rate on documented active findings | 18 of 21 (~86%) |
| Novel critical/high findings none of the other 32 tools caught | 2 |
The two novel findings:
- C-01:
ShareSalecontains an unchecked overflow that lets an attacker acquire tokens for free - H-01:
LPSeedSwapHookcancel-after-seed mechanism permanently breaks pool function
Public PR, reviewable in 5 minutes by any TRON DAO evaluator: audit: SigIntZero by AronTurner · Pull Request #22 · z0r0z/majeur · GitHub
This is a clean apples-to-apples benchmark. Same codebase, same scope, 33 tools competing for findings. Sentinel placed in the top tier and produced novel findings that established firms missed.
Why this matters for TRON: TRON settles a significant share of global stablecoin volume. Stablecoin contracts are high-value attack surface. Bringing peer-benchmarked audit capability to TRON-native contracts is a direct security upgrade for builders on the network. OpenZeppelin Defender sunsets July 1 2026, leaving TRON builders without a hosted security tool option. Sentinel covers the pre-deploy audit slot in that gap.
What Sentinel actually is: Not a single AI auditor. A proprietary multi-stage audit pipeline combining:
- Industry-standard static analysis with custom rule packs
- Property-based dynamic testing
- Formal verification
- AI-driven review across multiple frontier models
- Independent validation of every reported finding against a forked copy of the live network. No pass on the fork means the finding is discarded as a false positive
Architecture and orchestration are proprietary. The Majeur PR is the public receipt for output quality. Deeper technical detail available under NDA for TRON DAO evaluators.
Why a Real Port is Needed (TRON is EVM-Compatible at the Bytecode Level, Not the Audit-Toolchain Level)
A reasonable evaluator question: if TRON runs an EVM-compatible bytecode layer, doesn’t current Sentinel work? No. Bytecode-level compatibility does not mean audit-toolchain compatibility. The pipeline has 7 concrete TRON-specific gaps:
| Gap | Why it matters |
|---|---|
| Project detection | TRON projects use TronBox / TronWeb / TronIDE, not Hardhat or Foundry. Sentinel auto-detects Foundry and Hardhat today; TRON projects fail to parse |
| TRON-aware compilation | TRON supports a different Solidity version range and adds non-standard opcodes. Compile with stock Ethereum solc and you audit code that does not match what deploys on TRON |
| TVM-specific opcodes | BATCHCALL, FREEZE, UNFREEZE, WITHDRAW_BALANCE exist on TRON and not EVM. No off-the-shelf detector flags vulnerabilities involving them |
| Token standards | TRC10 is chain-native, not Solidity-level. TRC20 has TRON-specific fee mechanics. TRC721 has royalty and transfer differences. Stock token-standard rule packs miss TRON-specific issues |
| Energy and bandwidth attack patterns | TRON’s resource model creates exploit classes that do not exist on EVM (energy farming, bandwidth exhaustion, delegation attacks). Static analysis and AI Council both need TRON-aware rules |
| Fork validation infrastructure | Sentinel validates each finding by running it against a forked copy of the live network. TRON has no Foundry equivalent, so a Nile-testnet fork validator must be built from scratch |
| TRON exploit history training | AI Council needs training context on TRON-specific incidents (USDD depeg patterns, JustLend events, SunSwap-class issues). Generic crypto exploit context misses TRON DeFi semantics |
Without this work, Sentinel will technically run on TRON Solidity contracts but produce EVM-flavored findings on a TRON codebase, missing chain-specific attack surface and creating a false sense of security. The 90-day port closes those 7 gaps.
Project Demo
- Hosted Sentinel: https://sentinel.sigintzero.com
- Public peer benchmark: audit: SigIntZero by AronTurner · Pull Request #22 · z0r0z/majeur · GitHub
Expected Completion Date
90 days from grant approval (TRON port milestone). Ongoing maintenance and ecosystem benchmark updates beyond.
Current Progress
- Ethereum-native pipeline: 100% production
- Majeur public peer benchmark: complete (PR pending merge)
- TRON port: 0%, scoped and ready to start on grant approval
Overall project progress: 30% (production pipeline + benchmark complete, TRON-specific port remaining).
Technical & Governance Details
Project Test Instructions
- Visit
sentinel.sigintzero.com - Submit a Solidity contract or GitHub repository URL
- Receive a full audit report containing severity-ranked findings and sub-reports per analysis layer
- For benchmark verification, review PR #22 at audit: SigIntZero by AronTurner · Pull Request #22 · z0r0z/majeur · GitHub and compare to the 32 peer audit reports in the repository’s
audit/directory
Technical Details
Proprietary multi-stage audit pipeline. Chain-specific runners orchestrate static, dynamic, formal, and AI-based analysis layers. Every reported finding is validated against a forked copy of the live network before publication; findings that do not reproduce on the fork are discarded. The TRON port adds a Nile testnet fork validator alongside the existing Ethereum-native one.
Output includes an audit report, JSON findings, and sub-reports per analysis layer.
Smart Contract Links
Not applicable. Sentinel is off-chain audit infrastructure, not on-chain contracts. The project audits TRON contracts; it does not deploy contracts itself.
How is the Project Governed?
Centralized by SigIntZero Pty Limited (sigintzero.com).
Funding & Business Model
Funding Request
$180,000 USDT or USDD over 90 days, milestone-gated:
| Tranche | Amount | Trigger | Use of funds |
|---|---|---|---|
| 1 | $90,000 | Grant approval | TronBox / TronWeb / TronIDE project detection, TRC10 / TRC20 / TRC721 token standard rule packs, TRON Solidity compiler chain integration, AI Council TRON exploit context training |
| 2 | $90,000 | Milestone 4 delivery (Nile fork validator working end-to-end) | TVM exploit pattern library, Nile testnet fork validation, free audits for named TRON projects + TBL participants, public TRON ecosystem benchmark report |
Revenue Model
- Free during beta. Currently free for all users while we benchmark, refine, and build adoption
- Post-beta usage tiers. Pricing scaled to lines of code audited, scan frequency, and report depth
- Token-based access. Eventual token-gated tier for power users, audit firm partnerships, and cross-DAO governance integration
Interested in TRON Having a Stake?
Yes. SigIntZero is open to staking grant TRX into TRON validators or to energy provisioning for the Sentinel hosted scanner. This aligns company incentives with long-term TRON ecosystem performance and signals durable commitment beyond a single grant cycle.
Preferred Collaboration Method
Direct grant plus co-marketing with TRON DAO when TRON support ships. Cross-link Sentinel in TRON developer documentation, HackaTRON resources, and TBL onboarding materials. Open to integration partnerships with TRON RPC providers (TronGrid, GetBlock) and TRON-native dev tooling teams.
Ecosystem Impact
Partnerships
Notable projects audited with Sentinel on Ethereum-native pipelines include ETH Strategy, IMF, BEAM, Ethereans, Tripwire, and Origami. Many others currently use the tool. Available for reference checks.
Committed free TRON audits on grant approval:
- JustLend core contracts
- SunSwap core contracts
- USDD stablecoin contracts (subject to TRON DAO coordination)
- Top 10 TRC20 stablecoin and DeFi contracts by TVL
- 5+ TBL-program participants of TRON DAO’s choice
Time on TRON
Currently 0. Net-new to the TRON ecosystem. This grant explicitly funds the formal port plus initial relationships and ecosystem entry. We see this as a feature, not a bug: TBL exists to fund exactly this kind of high-quality external infrastructure entering TRON for the first time.
Project Milestones
| # | Milestone | Target Day | Status |
|---|---|---|---|
| 1 | TronBox / TronWeb / TronIDE project detection in Sentinel CLI | 21 | Planned |
| 2 | TRC10 / TRC20 / TRC721 token standard rule packs | 30 | Planned |
| 3 | TVM-specific exploit pattern library (energy and bandwidth attacks, DELEGATECALL quirks, multi-signature variants) | 45 | Planned |
| 4 | Nile testnet fork validator (mirrors the Ethereum-native fork validator) | 60 | Planned |
| 5 | Free Sentinel audits delivered to named TRON projects and 5+ TBL track projects | 75 | Planned |
| 6 | Public TRON ecosystem benchmark report (Sentinel run against top TRON DeFi protocols, mirroring the Majeur PR format) | 90 | Planned |
We will post forum updates as each milestone lands.
Project in 5 Years
By 2031, Sentinel is the default pre-deploy audit layer for any team shipping smart contracts on TRON, Ethereum, and the major EVM and non-EVM chains. The hosted scanner is integrated into TRON developer tooling at the IDE level. Sentinel transitions from free beta to a sustainable revenue model balancing per-LOC pricing, audit-firm partnerships, and a token-based access tier with cross-DAO governance integration. SigIntZero operates a TRON validator and contributes a meaningful share of audit-tool tax revenue back to the TRON DAO treasury, completing the ecosystem alignment loop.
The Ask in One Paragraph
We are requesting $180,000 over 90 days under TBL’s Infrastructure & Security track to port Sentinel to TRON, build a Nile testnet fork validator, and deliver free audits to named TRON DeFi protocols and TBL participants. The program receives a peer-benchmarked security tool with public receipts. Sentinel’s PR #22 against z0r0z/majeur, where it produced 2 novel critical/high findings that 32 other audit tools and firms missed (including Trail of Bits, Cantina, and Certora), is the entire diligence package. It is auditable by any TRON DAO reviewer in 5 minutes.
Direct link: audit: SigIntZero by AronTurner · Pull Request #22 · z0r0z/majeur · GitHub