🏛️ The Wrapper

Saturday, July 11, 2026

20 stories · Deep format

Generated with AI from public sources. Verify before relying on for decisions.

🎧 Listen to this briefing or subscribe as a podcast →

Today on The Wrapper: The industry is beginning to construct a dedicated legal system for machines. A consortium of major crypto players has just launched an 'Internet Court' for AI-to-AI disputes, while a new Harvard Law framework proposes categorizing autonomous agent liability using an animal-law analogy. In Washington, the clock is running out on the CLARITY Act, and Senator Wyden is making a final push to save the developer safe harbor provision.

Cross-Cutting

Crypto and AI Leaders Launch 'Internet Court' for Agent-to-Agent Disputes

A consortium of 27 crypto and AI firms, including OKX, MetaMask, and Matter Labs, has launched the 'Internet Court' protocol to resolve contractual disputes between autonomous AI agents. Led by the GenLayer Foundation, the initiative aims to create a machine-speed arbitration system for the agentic economy, handling low-value, high-frequency disagreements where traditional legal recourse is impractical. The system will use AI juries and a token-based validator system for transparent, blockchain-recorded adjudication.

The launch of a specialized court for AI agents marks a critical step in building the legal and social layers for an autonomous economy. For onchain organizations, this is a foundational piece of infrastructure. As AIs are deployed to manage treasuries, execute trades, or participate in governance, a mechanism for resolving disputes becomes essential for risk management and scalability. This moves beyond theoretical 'code is law' to a more nuanced system of 'code is contract, with a built-in arbiter,' creating a necessary trust layer for complex, multi-agent financial operations to function. The involvement of major players like MetaMask and OKX signals this is not an academic exercise but a core infrastructure buildout for the next wave of onchain activity.

The initiative is designed to address the 'last mile' problem in agentic commerce, where subjective judgments are needed for things like milestone completion or chargebacks, which smart contracts alone cannot handle. It integrates with MetaMask's Smart Accounts Kit, using technologies like ERC-7710 for delegation and the x402 Facilitator for payments, creating an interoperable stack for AI agents to make and enforce financial commitments. Critics, however, may question the enforceability of the court's rulings outside its own ecosystem and the potential for new vectors of attack or collusion within the AI jury and validator system.

Verified across 6 sources: Forbes (Jul 10) · Cryptonomist (Jul 10) · Blockchain Reporter (Jul 10) · Coin360 (Jul 10) · AINVEST.com (Jul 10) · Case Colomba (Jul 11)

Harvard Law Expert Proposes 'Canine Agentic Framework' for AI Legal Liability

Jordi Weinstock, a lecturer at Harvard Law School, has developed a new legal framework that uses analogies from animal law to assign liability for harms caused by autonomous AI agents. The 'Canine Agentic Framework,' published on Friday, classifies AI agents into four categories based on their 'domesticity' (level of control) and 'dangerousness': Pomeranian (fully controlled), pitbull (controlled but potentially dangerous), fox (partially controlled), and wolf (fully autonomous). Liability shifts from the user to the developer or potentially the AI itself as autonomy increases.

This framework provides a novel and intuitive taxonomy for the central problem of AI and onchain organizations: who is responsible when an autonomous system acts? As DAOs and protocols begin to deploy AI agents that can hold assets and execute transactions, the question of legal liability becomes paramount. This model offers a concrete path for courts and regulators to analyze liability without getting stuck on the philosophical debate over AI personhood. For onchain orgs, understanding these emerging legal models is critical for designing agentic systems with clear lines of accountability and managing liability exposure, especially for 'wolf' agents that may eventually require their own legal standing or insurance.

The framework suggests that for 'Pomeranian' and 'pitbull' agents, liability would likely fall on the user or owner, similar to pet ownership laws. For 'fox' agents, which have some autonomy, liability might be shared between the user and the developer. The most complex category, 'wolf' agents, which are fully autonomous and have no clear human principal, raises the prospect of needing to grant them a form of legal personhood to hold them accountable directly. This approach bypasses the need for a single, universal AI law, instead providing a flexible classification system that can be adapted by courts using existing legal principles of strict liability, negligence, and agency.

Verified across 1 sources: Harvard Gazette (Jul 10)

Report: Ethereum Foundation Restructures, Spawning Independent Organizations

Following up on the Ethereum Foundation's 20% staff reduction and 40% budget cut we tracked last month, recent reports confirm the formal dissolution of the EF's Protocol Support Team. This restructuring has spawned new independent non-profits, including the previously noted EthLabs (capitalized with $11 billion) and a new entity called Ethereum Institutional, which will handle functions formerly managed by the EF.

The hollowing out of the core protocol team is a real-time case study in forced decentralization. The EF is deliberately moving from a central guiding force to a 'plurality' model, relying on well-capitalized spin-offs like EthLabs. It's a high-stakes experiment in whether a fragmented, specialized ecosystem can maintain coordinated direction.

The hollowing out of the EF's core protocol team is seen by some as a sign of maturity for the Ethereum ecosystem, forcing it to develop more decentralized funding and coordination mechanisms. Others view it as a crisis, pointing to a potential funding gap and the loss of institutional knowledge. The rise of specialized entities like EthLabs, capitalized with former EF assets and talent, represents an experiment in spinning out core functions into more focused, independent bodies.

Verified across 2 sources: HTX News (Jul 10) · htx.com (Jul 10)

Legal Structures And Entity Design

Custodia Bank Petitions U.S. Supreme Court in Master Account Dispute with Federal Reserve

Wyoming-based Custodia Bank filed a petition for a writ of certiorari with the U.S. Supreme Court on Saturday, escalating its legal battle against the Federal Reserve. The crypto-focused bank is challenging the Fed's authority to deny master account access to eligible state-chartered financial institutions. The move follows unfavorable rulings from a Wyoming district court and the Tenth Circuit Court of Appeals, both of which affirmed the Fed's discretionary power.

This is a pivotal moment for the viability of state-level crypto banking charters and challenges the Federal Reserve's gatekeeping power over the U.S. payment system. A favorable Supreme Court ruling for Custodia could dismantle a major barrier for crypto-native banks, affirming that a state banking charter grants a right to Fed services and potentially unlocking a wave of innovation. Conversely, if the Supreme Court declines the case or rules for the Fed, it would solidify federal regulators' control and effectively sideline state-led efforts like Wyoming's to create alternative banking frameworks for digital assets, forcing the industry into federally-defined boxes.

Custodia's petition argues that the Federal Reserve is legally obligated to provide master accounts to all eligible depository institutions, as mandated by the Monetary Control Act of 1980. The bank contends that the Fed's denial was an arbitrary overreach of its authority. The Federal Reserve has consistently maintained that it has discretion in granting access to its payment rails, citing concerns about safety, soundness, and the novel risks associated with crypto-centric business models. The case puts the dual-banking system and states' rights at the center of the debate over the future of finance.

Verified across 3 sources: Crypto Times (Jul 11) · Eleanor Terrett (via X) (Jul 10) · Coinfomania (Jul 11)

Hyperliquid and Phantom Petition CFTC for DeFi Developer Safe Harbor, Bypassing Congress

Fleshing out the industry-led push to bypass Congress that we noted yesterday, the Hyperliquid Policy Center and wallet provider Phantom Technologies have submitted a joint comment letter to the CFTC. They are explicitly asking the agency to confirm that publishing open-source software does not trigger registration requirements, alongside requests for guidance on regulated entities using onchain tech and formalizing Phantom's existing no-action relief.

This petition represents a tactical shift, taking the fight for a developer safe harbor directly to agency regulators while the CLARITY Act remains stalled in the Senate. If successful, it would decouple non-custodial innovation from the gridlocked legislative process.

The letter argues that applying traditional intermediary regulations to software developers is inappropriate for decentralized systems where users maintain self-custody. Proponents believe this approach would allow regulated entities to confidently interact with DeFi protocols, unlocking institutional capital. However, some legal observers, like those at AMBCrypto, anticipate that traditional financial players like the CME Group might legally challenge any DeFi-favorable guidance from the CFTC, potentially leading to prolonged court battles.

Verified across 12 sources: Crypto Briefing (Jul 10) · Incrypted (Jul 10) · Capwolf (Jul 10) · The Cosmic Meta (Jul 10) · Unknown (Jul 9) · Unknown (Jul 9) · Unknown (Jul 9) · Bitcoin News Invest (Jul 10) · Coinfomania (Jul 10) · ainvest.com (Jul 10) · NURCAC.org (Jul 11) · AMBCrypto (Jul 10)

Senator Wyden Pushes to Keep Developer Safe Harbor in CLARITY Act

Senator Ron Wyden (D-OR) has entered the intense fight over the CLARITY Act's developer safe harbor (Section 604) that we've been tracking. In a formal letter sent to Senate leaders on Wednesday, Wyden made a strong push to retain the provision, which protects non-custodial developers and node operators from Bank Secrecy Act money transmitter classification.

The safe harbor has been the primary sticking point for law enforcement groups, making Wyden's vocal support a crucial counterweight. His backing could be the difference-maker in keeping the provision intact as the Senate races toward a potential floor vote.

Coin Center's Peter Van Valkenburgh praised the move, highlighting that the provision is vital for reversing the chilling effect of enforcement actions like the case against Tornado Cash developer Roman Storm. Opponents, primarily from law enforcement groups, have argued that such a safe harbor could create loopholes for illicit finance. The ongoing debate, now with a powerful advocate in Wyden, will be a key battleground as the Senate races to finalize the bill before the August 7 recess.

Verified across 4 sources: TFTC.io (Jul 9) · Eleanor Terrett (via Fox Business) (Jul 8) · Peter Van Valkenburgh (via X) (Jul 8) · MarketsFeedback (Jul 10)

Token Holder Liability And Daolegal Personhood

Federal Court Allows Arbitrum DAO to Transfer $71M in Hacked Funds to Aave

A federal judge in Manhattan has authorized the Arbitrum DAO to transfer $71 million worth of Ethereum to Aave LLC. The funds were frozen by Arbitrum's Security Council following a North Korea-linked exploit of Kelp DAO, and this ruling is a key step in the 'DeFi United' coalition's effort to make Aave users whole.

This court order is a significant moment for DAO legal precedent. By granting the Arbitrum DAO, a decentralized entity, permission to perform a specific action with contested assets, the U.S. judicial system is implicitly treating it as a capable actor with recognized responsibilities. This ruling moves beyond the theoretical debate on DAO legal personhood and into practical application. It sets a powerful precedent for how DAOs can interact with the legal system to recover funds and manage the fallout from exploits, reinforcing the idea that onchain governance actions can have legally recognized weight and effect.

The decision allows the multi-protocol recovery effort, led by Aave, to proceed with its plan to cover user losses from the Kelp DAO exploit. This demonstrates a court's willingness to engage with and validate the decisions of onchain governance bodies in complex, multi-party security incidents. While a positive step for asset recovery, this also establishes a paper trail of a DAO acting under court authority, which could be used in future litigation to argue that DAOs are subject to the jurisdiction and orders of traditional courts, further eroding the 'code is law' defense.

Verified across 1 sources: bankb.it (Jul 11)

Governance Mechanism Design

Cardano's 'van Rossem' Hardfork Nears Ratification, Governance Project Completes

While earlier coverage indicated Cardano's 'van Rossem' hardfork had fully executed, the latest update clarifies it is actually pending one final Constitutional Committee vote, with a target enactment date of July 18. Meanwhile, Intersect announced the completion of its 'Beyond Minimum Viable Governance' (BMVG) project, delivering actionable recommendations to refine the onchain governance system.

This marks a key milestone in Cardano's transition to a fully on-chain governed system. The near-ratification of a major protocol upgrade via its new governance structure is a live test of the mechanism's effectiveness. For those studying governance design, the completion of the BMVG project is equally important, as it provides a formal, structured output on evolving a 'minimum viable' system into a more robust and scalable one. This process of iterative, community-driven improvement is a valuable case study for any organization building out its own onchain governance.

The weekly update also noted that the election for the Constitutional Committee is ongoing, though it was briefly paused due to technical issues with the Hydra Voting platform. This highlights the operational challenges that can arise even in advanced onchain governance systems. The successful execution of the van Rossem fork will be a strong validation of the Voltaire era of governance on Cardano.

Verified across 1 sources: Intersect MBO (Jul 10)

Arbitrum OpCo Hires Head, Advances Operational Handover from Foundation

Arbitrum's new operational company, the OpCo, announced in its July update that it has hired a Head of OpCo and is making significant progress in taking over operational responsibilities from the Arbitrum Foundation. The update details the formalization of processes, including the transfer of the AGV (Arbitrum Gov-Chain Validators) and support for AAEs (Arbitrum-Aligned Enterprises). The Oversight and Transparency Committee (OAT) is also now actively approving and denying allocation proposals.

This update provides a concrete look at the nuts and bolts of progressive decentralization. The establishment of an independent OpCo and the formal transfer of duties from the founding entity is a crucial step in maturing a DAO's governance and operational capacity. For onchain organizations, this is a practical example of how to build out the necessary legal and operational structures to manage a large-scale protocol independently. The active role of the OAT in financial oversight demonstrates the implementation of checks and balances within the decentralized framework.

The OpCo's progress report highlights the complex, multi-faceted process of operationalizing a DAO. Key activities include finalizing incentive mechanisms for service providers (Entropy Advisors), managing grant proposals, and establishing clear lines of responsibility for different arms of the ecosystem. This move towards a more structured, corporate-like operational body within the decentralized framework is a key trend to watch in DAO governance.

Verified across 1 sources: Arbitrum Forum (Jul 10)

Major DAO Governance Events

MakerDAO's D3M Debt Ceiling Hits New All-Time High

MakerDAO's Direct Deposit Module (D3M) has reached a new all-time high for its debt ceiling, according to a report on Friday. This milestone indicates growing utilization of the module, which allows Maker to extend credit lines directly to other DeFi protocols, and signals increasing institutional interest.

The growth of the D3M is a key indicator of MakerDAO's success in integrating itself as a core piece of infrastructure within the broader DeFi ecosystem. By acting as a decentralized central bank for other protocols, Maker is enhancing capital efficiency across DeFi and solidifying DAI's role as a dominant stablecoin. For organizations studying onchain finance, the D3M's expansion is a powerful example of protocol-to-protocol collaboration and effective treasury management at scale, driven by onchain governance.

The increasing debt ceiling reflects both market demand for liquidity and the MakerDAO governance process's confidence in managing the associated risks. As Maker continues its 'Endgame' transition, the performance and growth of modules like the D3M are crucial for validating its long-term strategy of becoming a more scalable and resilient financial backbone for the decentralized web.

Verified across 1 sources: Coinfomania (Jul 10)

AI Agents Meet Onchain Orgs

Ethereum Foundation's AI Security Audit Uncovers Critical Bug in Core Protocol Layer

The Ethereum Foundation's Protocol Security team has been using swarms of AI agents to audit Ethereum's core infrastructure. In a report from Thursday, the team disclosed that this effort successfully identified a critical, remotely exploitable bug (CVE-2026-34219) in libp2p's gossipsub implementation, a fundamental networking layer for Ethereum and other protocols. While the agents generated numerous false positives, their ability to surface a genuine critical vulnerability is a significant proof-of-concept.

This is one of the first high-profile examples of AI agents being successfully deployed to secure a major Layer 1 blockchain at the protocol level. It moves the use of AI in security from a theoretical advantage to a practical, value-additive tool. For onchain organizations, this signals a future where continuous, autonomous security auditing could become standard practice. The key takeaway from the EF's report is that the agents' primary value was in 'triage at scale'—sifting through code to highlight potential issues for human experts to validate. This man-machine teaming model is a powerful template for how DAOs can leverage AI to augment, not replace, human oversight in security and governance.

The Ethereum Foundation's report emphasizes that the role of human security researchers shifted from generating hypotheses about where bugs might be to judging and validating the large volume of findings produced by the AI agents. Cotabe.eth, a core developer, noted that while the AI 'hallucinated' many non-existent issues, its ability to find even one critical bug that humans had missed made the experiment a success. This outcome demonstrates both the current power and limitations of AI in protocol security.

Verified across 5 sources: Coinspeaker (Jul 10) · Ethereum Foundation (Jul 9) · Cotabe.eth (Jul 9) · Club Laura (Jul 10) · Coinfomania (Jul 10)

Circle Open-Sources Starter Kits to Integrate USDC Payments into AI Agents

Building on the momentum of the x402 agent payment standard we've been tracking, Circle has open-sourced 'Agent Stack' starter kits for popular AI frameworks LangChain and the Claude Agent SDK. Announced Friday, the kits allow developers to natively embed USDC payments and wallet interactions directly into their AI agents.

This is a significant move to standardize and accelerate the adoption of crypto payments within the burgeoning AI agent economy. By providing open-source, off-the-shelf tools for the most popular AI frameworks, Circle is lowering the barrier for developers to make their agents financially native. For onchain organizations, this means a larger ecosystem of AI agents will be built from the ground up with the ability to transact using stablecoins, creating a richer environment for developing autonomous financial services and onchain agent-based governance.

The starter kits build on Circle's broader Agent Stack, which was launched in May 2026. The explicit support for the x402 protocol is key, as it helps create a common language for agents to request and process payments for services. This move further positions USDC as a potential default currency for the machine-to-machine economy, competing with other stablecoins and networks vying for the same role.

Verified across 1 sources: Crypto Briefing (Jul 10)

Policy And Regulation

CLARITY Act Faces Critical August Deadline as Merged Draft Looms

The legislative window for the CLARITY Act is rapidly closing, aligning with the 50-50 odds we covered recently. A merged draft incorporating 70 new pages of consumer protections is expected the week of July 13, with the Senate pushing for a floor vote the week of July 20. However, the August 7 pre-election recess deadline looms large, and the developer liability safe harbor and stablecoin yield restrictions remain hotly contested.

Failure to pass the Act before the August recess would likely kill the bill for this session, tabling comprehensive federal digital asset frameworks until after the 2028 election cycle and extending the current era of regulation by enforcement.

Proponents argue the bill is essential to provide clear jurisdictional lines between the SEC and CFTC and create stable pathways for registration and compliance. Opponents and unresolved issues present major hurdles. The White House has not endorsed the bill, and a dispute over filling vacant commissioner seats at the SEC and CFTC further complicates the path forward. Securing the necessary 60 votes in the Senate remains a significant challenge.

Verified across 4 sources: TechTimes (Jul 10) · BitRSS (Jul 11) · Cointribune (Jul 11) · KuCoin Blog (Jul 10)

CFTC Approves First Regulated Crypto Perpetual Futures Contract in the U.S.

The CFTC has officially approved Kalshi's BTCPERP contract, finalizing the regulatory move that prompted the CME Group's recent antitrust lawsuit against the agency. Announced Saturday, this makes it the first regulated crypto perpetual futures product available to U.S. firms, moving a highly liquid derivative instrument onshore.

Despite the ongoing legal challenge from traditional exchanges like CME, the CFTC is moving forward with bringing crypto-native instruments into the U.S. regulatory perimeter. This approval provides a domestic venue for onchain treasuries to hedge risk, significantly reducing their reliance on offshore platforms.

The approval is seen as a major win for the crypto industry, which has long sought to bring perpetual futures into the U.S. regulatory perimeter. It highlights the CFTC's focus on enabling risk management tools and fostering price discovery. The move could pressure the SEC on its own stance regarding more complex crypto derivatives and will likely prompt other U.S. exchanges to seek approval for similar products.

Verified across 1 sources: YSR Racing (Jul 11)

CFTC Blocks CME's Plan for 24/7 Crude Oil Futures Trading

On Thursday, the Commodity Futures Trading Commission (CFTC) intervened to stay the launch of CME Group's 24/7 crude oil futures contract, which was scheduled to begin trading on July 10. The regulator exercised its authority to halt the self-certified product, citing an ongoing public comment period on the topic of 24/7 futures trading for energy markets.

The CFTC's move to block a major traditional asset from adopting a 24/7 trading model—a standard feature of crypto markets—is a significant data point on the regulator's thinking. It highlights the cultural and procedural gap between legacy finance and digital asset markets. This cautious approach could signal headwinds for the convergence of the two, suggesting that regulators are not yet prepared to allow traditional markets to adopt crypto's 'always on' nature without extensive review. For onchain finance, it underscores the regulatory moat that still separates it from the established financial world.

CME argued that the move would align oil markets with the continuous nature of global news and events. The CFTC's decision, however, suggests it is prioritizing a deliberative, public process over a single exchange's push to innovate. This action reinforces the CFTC's power to overrule the self-certification process of the exchanges it oversees, a dynamic that is central to the ongoing debates about how new crypto derivatives should be brought to market.

Verified across 4 sources: FinanceFeeds (Jul 10) · Gibson Dunn (Jul 10) · Coinfomania (Jul 10) · ExchangeInvest (Jul 10)

Treasury And Onchain Finance

JPMorgan Analysts See Private Blockchains as Long-Term Threat to Public Crypto Networks

Analysts at JPMorgan, led by Nikolaos Panigirtzoglou, have warned that the greatest long-term structural threat to public blockchains is the rise of private, permissioned networks favored by financial institutions. According to their Friday report, traditional finance firms prefer private chains for RWA tokenization and stablecoin issuance due to superior control over compliance, governance, and operational efficiency.

This analysis from a major TradFi player highlights a critical strategic battleground for the future of onchain finance. If institutional capital and high-value assets migrate primarily to permissioned, private ledgers, it could marginalize public, permissionless chains, relegating them to more speculative use cases. For organizations building on public blockchains, this poses a long-term risk to liquidity, interoperability, and the overall network effect. It suggests that the future may not be a single onchain world, but a fragmented one with walled gardens for institutional players, fundamentally altering the calculus for treasury and finance strategies.

The JPMorgan report argues that the benefits of transparency and decentralization offered by public chains are outweighed by the compliance and control needs of regulated institutions. This preference is already visible in the choices made by many banks and asset managers for their initial tokenization pilots. The counter-argument is that private chains will lack the composability and broad developer ecosystem that drives innovation on public networks, and that hybrid models or public chains with permissioned layers will ultimately prevail.

Verified across 1 sources: Daily Bitcoin News (Jul 10)

Network States And Onchain Societies

Report: Crypto-Funded 'Network States' Raise Questions of Plutocracy

A BBC News investigation published Friday delves into Liberland, a self-proclaimed micronation heavily funded by crypto wealth, which aims to operate as a digital country with a token-based voting system. The project, and others like it such as Praxis and Próspera, are based on Balaji Srinivasan's 'network state' concept. Governance in Liberland is explicitly tied to wealth, as holding more 'Liberland Merits' (its native token) grants greater voting power.

This report offers a critical, mainstream examination of the network state thesis in practice. While proponents champion these projects as experiments in innovative governance, critics argue they are exercises in modern plutocracy, replacing democratic principles of 'one person, one vote' with 'one token, one vote'. For the onchain community, this highlights a core philosophical and practical tension in governance design. The story serves as a cautionary tale about the reputational risks and ethical questions that arise when onchain governance models are applied to real-world societies, potentially undermining the movement's broader goals.

Vít Jedlička, the founder of Liberland, frames the project as a libertarian paradise free from coercive government. Major crypto figures like Justin Sun are heavily involved, with Sun serving as Prime Minister. However, the project's location on disputed land between Croatia and Serbia and its reliance on wealthy backers raise serious questions about its legitimacy, sovereignty, and claims of creating a more equitable society.

Verified across 3 sources: BBC News (Jul 10) · Crypto Briefing (Jul 10) · Value the Markets (Jul 10)

Governance Tooling And Infrastructure

Analysis Identifies Widespread Security Flaw in LayerZero Applications

A new study published on Dune Analytics has revealed a significant security risk across the LayerZero ecosystem. The analysis found that nearly half of the 2,665 OApp (Omnichain Application) contracts examined are using minimal security configurations for their Default Verifier Networks (DVNs). This setup is reportedly similar to the vulnerability that enabled the recent, high-profile exploit of KelpDAO's rsETH.

This finding is a major red flag for any organization relying on LayerZero for cross-chain operations. The widespread use of weak security defaults indicates a systemic risk that could lead to further exploits, undermining trust in one of the industry's most prominent interoperability protocols. For DAOs and protocols with multi-chain treasuries or governance, this analysis is an urgent call to audit their cross-chain dependencies and DVN configurations. It highlights a critical tension between ease of deployment and robust security, a tradeoff that has repeatedly proven costly.

The analysis suggests that many developers may be opting for the simplest DVN setup without fully understanding the security implications, leaving their applications vulnerable. While LayerZero provides the tools for more robust security, the default settings appear to be a point of failure. The KelpDAO hack served as a painful case study, and this Dune dashboard now quantifies the potential blast radius, suggesting a large number of other projects are similarly exposed.

Verified across 1 sources: BitRss (Jul 11)

Vercel Breach Exposes Crypto API Keys, Highlighting Supply Chain Risk

A security breach at Vercel, a popular web infrastructure provider, has sent ripples through the Web3 development community. Hackers reportedly gained access to sensitive project settings and API keys by compromising a third-party AI tool, Context.ai, that was integrated into Vercel's systems. The incident has forced numerous crypto teams to urgently rotate their keys and conduct security audits.

This breach is a stark reminder that onchain organizations are only as secure as their weakest off-chain dependency. The compromise of a foundational infrastructure provider like Vercel demonstrates a critical supply chain vulnerability for the entire crypto ecosystem. For DAOs and protocols, this means that even with audited smart contracts, their operations, front-ends, and user data can be put at risk by a security failure in a service provider many layers removed. The incident underscores the urgent need for stricter AI governance and a defense-in-depth approach that extends to all third-party tooling.

The attack vector, originating from a compromised AI tool, adds a new dimension to infrastructure security concerns. It highlights how the rush to integrate novel AI technologies can introduce unforeseen risks if not properly governed and secured. Crypto teams are now scrambling to assess their exposure, with many expressing concern over the cascading potential of such a breach. The incident serves as a real-world stress test for the operational security of projects that rely on modern CI/CD and hosting platforms.

Verified across 1 sources: FirstTruths.org (Jul 11)

Certora Completes Formal Verification of Aave V4 Core Contracts

Security firm Certora announced on Saturday that it has completed the formal verification of Aave V4's core contracts, specifically the Liquidity Hub and Spoke components. This mathematical-based auditing process provides a higher degree of security assurance for the protocol's upcoming major upgrade.

Formal verification is the gold standard for smart contract security, and its application to a protocol as significant as Aave V4 is a major step forward for institutional-grade DeFi. For onchain organizations, this demonstrates a commitment to provable security that goes beyond standard audits. As DeFi protocols become more complex and integrated with traditional finance, formal verification will likely become a prerequisite for attracting significant institutional liquidity and managing treasury assets. This move by Aave sets a new benchmark for risk management in the space.

The verification process uses formal methods to prove that the code behaves according to its specification, aiming to eliminate entire classes of bugs and vulnerabilities that traditional testing might miss. Coming after a series of high-profile DeFi exploits, the investment in this level of security by Aave is a clear signal to the market that it is serious about protecting user funds and building resilient infrastructure for the future of finance.

Verified across 1 sources: Coinfomania (Jul 11)


The Big Picture

Legal Infrastructure for AI Agents Takes Center Stage Following the rapid buildout of payment rails like x402, the focus is now shifting to legal and governance frameworks for autonomous agents. The launch of an 'Internet Court' for AI disputes and the proposal of new legal liability models from academia signal a concerted effort to create enforceable, machine-speed adjudication for the agentic economy.

DeFi Protocols Bypass Congress, Petition CFTC Directly for Developer Clarity Frustrated with the legislative deadlock over the CLARITY Act, a coalition of DeFi projects including Hyperliquid and Phantom is now directly petitioning the CFTC. They are requesting formal guidance to exempt non-custodial software developers from broker registration, a move that attempts to achieve regulatory clarity through agency interpretation rather than waiting for new laws.

Wyoming's Crypto-Banking Push Escalates to the Supreme Court Custodia Bank's petition to the U.S. Supreme Court marks a major escalation in the conflict between state-chartered crypto banks and federal regulators. The case challenges the Federal Reserve's authority to deny master account access, with the outcome poised to redefine the balance of power in U.S. banking regulation and either validate or dismantle Wyoming's legal framework for digital asset banks.

Institutional-Grade Security Becomes a Key Differentiator for Onchain Infrastructure As exploits continue, security is becoming a primary selling point for onchain infrastructure. Certora's formal verification of Aave V4, Mantle's migration to Chainlink CCIP to secure its $2.5B token bridge, and Dune's analysis revealing widespread security vulnerabilities in LayerZero apps all highlight a market that is increasingly prioritizing provable security and risk mitigation to attract institutional capital.

Tokenization of Real-World Assets Expands Beyond Treasuries The RWA ecosystem is maturing, with new offerings moving beyond tokenized T-bills. Recent launches include tokenized funds for private credit, AI-themed stock portfolios, and even shares in private companies like SpaceX. This expansion provides more diverse and sophisticated options for onchain treasury management, though institutional adoption remains concentrated in private, permissioned environments.

What to Expect

2026-07-13 A merged draft of the CLARITY Act is expected to be released by the US Senate.
2026-07-15 DTCC plans to begin limited production transactions of tokenized real-world securities.
2026-07-18 Tentative enactment date for Cardano's van Rossem hard fork, pending final ratification.
2026-07-20 The US Senate aims for floor action on the CLARITY Act during this week.
2026-08-11 The AI Risk Summit 2026 will convene in San Francisco to discuss enterprise AI governance and security.

Every story, researched.

Every story verified across multiple sources before publication.

🔍

Scanned

Across multiple search engines and news databases

455
📖

Read in full

Every article opened, read, and evaluated

146

Published today

Ranked by importance and verified across sources

20

— The Wrapper

🎙 Listen as a podcast

Subscribe in your favorite podcast app to get each new briefing delivered automatically as audio.

Apple Podcasts
Library tab → ••• menu → Follow a Show by URL → paste
Overcast
+ button → Add URL → paste
Pocket Casts
Search bar → paste URL
Castro, AntennaPod, Podcast Addict, Castbox, Podverse, Fountain
Look for Add by URL or paste into search

Spotify isn’t supported yet — it only lists shows from its own directory. Let us know if you need it there.