Skip to main content
Sign in
← avoid.net

Verify a decision

Every moderation decision on AVOID.NET is anchored to the Solana blockchain. You don't have to trust us — you can verify cryptographically that we committed to a verdict at a specific moment and have not rewritten it.

How verification works

  1. We commit. When a moderator accepts/rejects a submission, we serialize the decision into deterministic UTF-8 bytes (payload_canonical_string), hash it with SHA-256, encode the digest as base58, and write it to Solana inside an SPL Memo v2 transaction.
  2. We store the bytes. The exact bytes we hashed are stored alongside the decision in our database. Anyone can read them and recompute the hash in any language.
  3. You compare three values. Database hash, your independently-recomputed hash, and the hash inside the on-chain memo. If all three match, the decision is authentic and timestamped.
The on-chain memo format is AVOID.NET|v1|h:<b58-sha256>|d:<id>|t:<iso>

Find a signature on any investigation page's decision log, or run python -m src.verify_decision --signature <sig> for a CLI check.

Decision
publish · Slope Wallet
View on Solana ↗
Sequence
#1
Score
Cluster
mainnet-beta
Slot
422555086
Off-chain at
2026-05-27T18:18:05.041Z
Anchored at
Block time

Independent verification

1. Database (off-chain)
4HQUL4X2pT3GuRLXoUxDxNga1uJncTaKkNHxrXsVU9v4
2. Recomputed (your browser)
computing…
3. On-chain (Solana memo)
fetching…
Canonical bytes hashed (6497 chars)
{"actor":"system:backfill","investigation_id":"cfabca4b-5d49-449c-847e-9a2e980c614c","kind":"publish","page_slug":"slope-wallet","published_at":"2026-05-27T18:18:04.996Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"Slope Wallet","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://solana.com/news/8-2-2022-application-wallet-incident","type":"other","url":""},{"credibility":3,"name":"https://www.coindesk.com/business/2022/08/03/solanas-latest-6m-exploit-likely-tied-to-slope-wallet-devs-say","type":"other","url":""},{"credibility":3,"name":"https://slope-finance.medium.com/slope-wallet-sentry-vulnerability-digital-forensics-and-incident-response-report-d7a5904e5a39","type":"other","url":""},{"credibility":3,"name":"https://hackmd.io/@prastut/SJoJUzKz3","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://slope-finance.medium.com/slope-wallet-sentry-vulnerability-digital-forensics-and-incident-response-report-d7a5904e5a39","type":"other","url":""},{"credibility":3,"name":"https://www.theblock.co/post/161425/slope-wallet-provider-saved-user-seed-phrases-in-plain-text-solana-security-researchers-find","type":"other","url":""},{"credibility":3,"name":"https://ackee.xyz/blog/2022-solana-hacks-explained-slope-wallet/","type":"other","url":""},{"credibility":3,"name":"https://blog.sentry.io/2022/08/10/slope-wallet-solana-hack/","type":"other","url":""},{"credibility":3,"name":"https://cointelegraph.com/news/experts-find-private-keys-on-slope-servers-still-puzzled-over-access","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://crypto.news/slope-wallet-hacker-bridged-funds-to-tron-cashed-out-through-otcs/","type":"other","url":""},{"credibility":3,"name":"https://www.binance.com/en/feed/post/2023-10-10-slope-finance-s-4m-hack-funds-traced-in-recent-on-chain-analysis-by-zachxbt-1300002","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://beincrypto.com/slope-offers-solana-wallet-hackers-bounty-threatens-legal-action/","type":"other","url":""},{"credibility":3,"name":"https://slopeaction.org/","type":"other","url":""},{"credibility":3,"name":"https://slope-finance.medium.com/slope-wallet-sentry-vulnerability-digital-forensics-and-incident-response-report-d7a5904e5a39","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://crypto.news/slope-wallet-hacker-bridged-funds-to-tron-cashed-out-through-otcs/","type":"other","url":""},{"credibility":3,"name":"https://www.binance.com/en/feed/post/2023-10-10-slope-finance-s-4m-hack-funds-traced-in-recent-on-chain-analysis-by-zachxbt-1300002","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.globenewswire.com/news-release/2022/02/24/2391653/0/en/Slope-Finance-announces-the-close-an-8m-Series-A-funding-co-lead-by-Solana-Venture-and-Jump-Capital","type":"other","url":""},{"credibility":3,"name":"https://www.coindesk.com/business/2022/02/23/solana-wallet-slope-finance-raises-8m","type":"other","url":""},{"credibility":3,"name":"https://cointelegraph.com/press-releases/slope-finance-completes-8m-series-a-funding-led-by-solana-ventures","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://blog.sentry.io/2022/08/10/slope-wallet-solana-hack/","type":"other","url":""}]}],"sources_used":[],"summary":"Slope Wallet (Slope Finance) was a Solana-based mobile cryptocurrency wallet that suffered a catastrophic security breach on August 2, 2022, in which over 9,200 wallets were drained of approximately $4–8 million in assets due to the app transmitting users' unencrypted seed phrases to a third-party telemetry service (Sentry). The root cause was a severe security misconfiguration by Slope Finance, in which the mobile application logged plaintext private key material without proper scrubbing. No formal victim compensation was established, the team declined to publicly accept responsibility, and founder Leal Cheung subsequently launched a new project (zkME) without resolution for affected users.","timeline":[{"date":"2021-09","event":"Slope Finance launches Slope Wallet mobile application on Solana.","source":""},{"date":"2022-02-24","event":"Slope Finance closes $8 million Series A funding round co-led by Solana Ventures and Jump Capital.","source":""},{"date":"2022-08-02","event":"Attack begins at 22:37 UTC. Attacker drains 9,229 wallets over approximately 7 hours, stealing an estimated $4.1–8 million in assets.","source":""},{"date":"2022-08-03","event":"Solana developers and security researchers publicly attribute the exploit to Slope Wallet's Sentry misconfiguration. Solana Foundation confirms no protocol-level vulnerability.","source":""},{"date":"2022-08-03","event":"Slope Finance offers a 10% bounty to the attacker for return of 90% of stolen funds within 48 hours. No response from attacker.","source":""},{"date":"2022-08-04","event":"Security firm OtterSec and others confirm that Slope's app transmitted seed phrases in plaintext to centralized Sentry servers. The Block publishes findings.","source":""},{"date":"2022-08-10","event":"Sentry publishes its own post-mortem, clarifying that Slope Finance failed to configure available data-scrubbing settings.","source":""},{"date":"2022-08","event":"Slope Finance publishes its Digital Forensics and Incident Response (DFIR) report acknowledging the Sentry vulnerability but concluding it cannot 'conclusively explain' the full hack.","source":""},{"date":"2022-08","event":"Victims organize under slopeaction.org seeking reimbursement and a formal acknowledgment of culpability.","source":""},{"date":"2023-03","event":"ZachXBT observes hacker addresses becoming active again, laundering funds from original theft addresses on Solana.","source":""},{"date":"2023-10","event":"ZachXBT publishes on-chain analysis tracing stolen funds from Solana through Binance nested exchanges, Tornado Cash (322 ETH), SWFT bridge to TRON, and into OTC cash-out addresses.","source":""},{"date":"2023-10","event":"ZachXBT warns the public to avoid zkME, a new project allegedly founded by Slope Wallet's Leal Cheung following abandonment of Slope Finance.","source":""}]},"v":1}