Xypher

Xypher is a confidential credit oracle that brings institutional-grade credit scoring to DeFi without exposing any financial data on-chain.
Today, DeFi has no way to assess a borrower's real creditworthiness. Every protocol — from Aave to Compound — forces everyone to overcollateralize at 150% regardless of their actual financial health. A hedge fund with $500M in credit lines and a perfect repayment history gets treated identically to an anonymous wallet from yesterday. $1.5 trillion in institutional capital sits on the sidelines because DeFi cannot privately verify who is creditworthy.
Xypher solves this by running a proprietary risk engine inside a Chainlink CRE Trusted Execution Environment that is a hardware-secured enclave where computation is mathematically tamper-proof. The engine privately queries a user's positions across Aave, Morpho, Compound, and traditional bank accounts via Plaid using Chainlink's Confidential HTTP. It computes a Unified Health Factor, a Contagion Risk Score across correlated positions, and a Debt Serviceability Score — then outputs a single credit tier from 1 to 5. The raw financial data never leaves the chip.
Only the tier number is written to the blockchain, issued as a soulbound ERC-5192 NFT that auto-burns on expiry. Any lending protocol can verify it with a single function call — zero financial data exposed. Xypher's own ConfidentialLender contract uses this attestation to unlock tiered LTV ratios: Tier 1 borrowers access 90% LTV versus Aave's 66%, a 36% capital efficiency gain from one cryptographic number. Chainlink CCIP broadcasts the attestation cross-chain automatically, and Chainlink Automation monitors positions every five minutes — firing a rebalancing signal if health factor drops below threshold.

Xypher is built across three layers which consist of confidential compute workflow, a suite of smart contracts, and a real-time frontend dashboard.

• Confidential Compute Layer The credit intelligence engine is a TypeScript workflow compiled to WebAssembly and deployed on Chainlink's CRE runtime. It runs inside a hardware-secured TEE where Chainlink's Confidential HTTP fetches live position data from Aave, Morpho, Compound, and Plaid without exposing credentials or responses to any node operator. The risk algorithm computes three scores — Unified Health Factor, Contagion Risk Score, and Debt Serviceability Score — and outputs a single credit tier. The entire computation is hardware-attested, meaning the result is cryptographically provable and tamper-evident.
• Smart Contract Layer Six Solidity contracts deployed across Ethereum Sepolia and Base Sepolia, compiled with viaIR and EVM Cancun. ConfidentialGuardAttestation stores and verifies credit tiers on-chain. CreditIdentityNFT issues the soulbound ERC-5192 attestation NFT. ConfidentialLender reads the attestation on every borrow and applies the corresponding LTV. GuardianVault manages collateral. CCIPGuardianReceiver and CrossChainAttestationReceiver handle cross-chain attestation delivery and automated rebalancing via Chainlink CCIP. A custom AttestationLib and HealthFactorLib power the on-chain math. 257 tests, zero failures.
• Frontend Layer A Next.js dashboard built with wagmi and viem connects to all six contracts in real time. Chainlink Data Feeds stream live ETH/USD and BTC/USD prices. Aave positions are pulled via getUserAccountData(), Morpho via GraphQL, and the ConfidentialLender position refreshes every 15 seconds. The Attestation tab displays the verified credit tier as a live badge. The Borrow tab enforces tier-gated LTV on every transaction.