Crypto-agility, on Solana.
AGORA is the crypto-agility layer for Solana. We build a unified map of every cryptographic primitive, dependency, program, and infrastructure component in your stack. Surface where post-quantum migration lands hardest. Provide a migration plan. Then commit the proof on-chain.
PQC Risk Analysis in Minutes
From zero visibility to on-chain proof
RUN AGORA ON YOUR CODE
Point the AGORA command line at your program source, so it reads the cryptography in place. Your code never leaves your machine.
GET THE AGILITY AUDIT
A CycloneDX CBOM 1.6 inventory with a NIST IR 8547 transition-phase traceability matrix and ranked exposure.
VERIFY ON-CHAIN
Every scan commits an attestation to Solana devnet, so a counterparty can verify the result independently.
Five protocols. Five real attestations.
Squads · Marinade · Jito · Kamino · Drift. Each card is a full source → CBOM → on-chain commit. The signature is verifiable on Solscan; the hash is reproducible locally.
- Squads Protocol v4 (multisig)
SQDS4e…j52pCf
MultisigModerate PQ exposure6 high6High31Medium83Info- hash
- 99820da6…4ea993
- sig
- 22qDPyJ…QA8Dz
- Marinade Finance
MarBms…gjq7aD
Liquid stakingHigh PQ exposure35 high35High17Medium0Info- hash
- e0ec9809…8c53b4
- sig
- SKpYTGY…chLdd
- Jito Restaking
RestkW…H96z4Q
RestakingHigh PQ exposure21 high21High6Medium0Info- hash
- 4b4c7102…3d8257
- sig
- crxJqAb…nQ2Mz
- Kamino Lend
KLend2…avgmjD
LendingLow PQ exposure2 high2High33Medium0Info- hash
- 79b4a5fe…ed59a6
- sig
- 49HKJvm…pWAVH
- Drift Protocol
dRifty…cn33UH
PerpetualsModerate PQ exposure7 high7High136Medium0Info- hash
- ed48453c…38d490
- sig
- 3XbkKou…JtN9S
What AGORA inventories
Crypto-agility checks across three surfaces of your Solana program. AGORA reports what it finds and where the blast radius is largest. The migration itself stays protocol-layer-owned by Anza and Firedancer.
- CA-001Info
Algorithm enumeration
Every verify, hash, signature site with file:line.
- CA-008Medium
Hardcoded curve params
Curve25519 constants baked in code, not behind an abstraction.
- CA-009Medium
Revealed pubkey exposure
Public keys leaked through logs, account data, or IDL.
- INVInfo
SHA-256 hash sites
Every hash site logged for inventory completeness.
- CA-002Medium
Authority pinning
Single-signer authorities flagged as migration targets.
- CA-004High
Mint · freeze · upgrade
Critical token authorities tied to single-signer keys.
- CA-006Medium
Oracle operator keys
Pyth, Switchboard, custom feed operators inventoried.
- CA-007Medium
Multisig topology
M-of-N slots and thresholds, mapped slot by slot.
- L5Medium
Validator vote · stake
LST-backed validator authorities, ranked by delegated stake.
- CA-003Medium
Cross-program assumption
CPIs that assume a signature scheme on the callee side.
- INVInfo
Latent dependency crypto
Crypto crates in the build that no instruction invokes.
- INVInfo
PDA seed classification
Crypto-relevant content embedded in PDA seeds.
PQ audit + migration plan, in minutes.
AGORA inventories every classical primitive in your Solana program and pairs each one with the NIST FIPS algorithm slated to replace it, so when Anza and Firedancer ship the protocol-layer migration you already know exactly what changes for you.
Inventory only · migration = protocol layerReferences: FIPS 203 (ML-KEM), FIPS 204 (ML-DSA), NIST IR 8547 (post-quantum transition roadmap).
Runs on your code, from the CLI
AGORA runs where your program lives. Point the command line at your source and it reads the cryptography in place, then writes the audit pack and commits the attestation. Your code never leaves your machine.
$ pinpoint agora scan ./my-solana-program AGORA | Post-quantum crypto-agility for SolanaReading cryptographic usage across 4 modules… CA-004 HIGH Mint authority on Ed25519 single signer state/liq_pool.rs:142CA-002 MEDIUM Stake authority held by single signer lib.rs:88CA-001 INFO Ed25519 verification site enumerated checks.rs:33 ✓ CBOM 1.6 + NIST IR 8547 traceability written to ./agora-audit/✓ Attestation committed to Solana devnet
What ships in every pack
CycloneDX CBOM 1.6
A machine-readable cryptographic bill of materials, emitted in the CycloneDX CBOM 1.6 format.
NIST IR 8547 traceability
Each rule maps to a transition-roadmap phase, so reviewers can trace findings against the published guidance.
Ranked exposure
Mint, freeze, upgrade and single-signer authorities surfaced with file:line and ranked by blast radius.
On-chain attestation
An independently verifiable Solana devnet record committed for every scan.
{
"bomFormat": "CycloneDX",
"specVersion": "1.6",
"components": [
{
"bom-ref": "agora:122c0a99…b15f",
"cryptoProperties": {
"assetType": "related-crypto-material",
"relatedCryptoMaterialProperties": {
"algorithmRef": "ed25519",
"type": "public-key"
}
},
"name": "Single-signer authority …",
"properties": [
{ "name": "pinpoint:rule_id",
"value": "CA-002" },
…
]
},
…
]
}Evidence a reviewer can stand behind
AGORA is built for the people who sign off on cryptographic risk. Every pack is structured so a GRC reviewer, custodian, or regulator can read the inventory and verify it on-chain.
CycloneDX 1.6 + NIST IR 8547
Findings map directly to the published transition guidance, so reviewers can trace exposure against industry references they already use.
On-chain devnet attestation
Every scan commits the audit-pack hash to Solana devnet. A reviewer can verify the result on Solscan without taking our word for it.
Powered by SPECTRE
AGORA is built on the SPECTRE engine, scanning real Solana programs in production. The PQ surface is one rule pack on a battle-tested core.
The team building AGORA.
A small team obsessed with making Solana programs post-quantum ready, on hackathon time.
Royce Carbowitz
Co-founder
JP McCorley
Co-founder
Dheeraj Kumar
ML Engineer
Early access
Join the AGORA waitlist.
AGORA is rolling out post-quantum crypto-agility audit packs for Solana programs, built on SPECTRE and running on devnet today. Early teams get first access as we open it up.