search

Emergency Auto-Withdrawal

When risk is detected, GuardAI returns every user's funds instantly — automatically, on-chain, with no human trigger.

hashtag
The Circuit Breaker

VaultSentinel implements a one-way circuit breaker pattern:

ACTIVE ──── score ≥ 70 ────► EMERGENCY
              (automatic)


        _returnAllFunds()
        ├── Return ETH to every depositor
        └── Return all ERC20s to every depositor

EMERGENCY ──── resetVault() ────► ACTIVE
                (owner only)

Once triggered, the vault stays in EMERGENCY until the owner explicitly resets it. This prevents re-entrancy and ensures funds aren't re-deposited into a still-dangerous vault.

hashtag
What Happens During Emergency

When setRiskScore(score) receives a score ≥ 70:

  1. _executeEmergency() is called internally

  2. vaultState flips to EMERGENCYnew deposits immediately blocked

  3. EmergencyTriggered event emitted on-chain

  4. _returnAllFunds() iterates every depositor:

    • Returns ETH via low-level call{value}

    • Returns each whitelisted ERC20 via IERC20.transfer()

  5. Individual transfer failures are handled gracefully — one failed transfer does not block others

hashtag
Safety Design

Concern
How GuardAI handles it

Re-entrancy

EMERGENCY state set before transfers begin

Failed ETH transfer

Balance reverted for that user only, others unaffected

Failed ERC20 transfer

try/catch — balance reverted for that user only

Idempotency

_executeEmergency() is a no-op if already in EMERGENCY

Deposit during emergency

notEmergency modifier reverts with "Vault is in emergency"

hashtag
On-Chain Proof

Every emergency withdrawal emits verifiable events:

All events are queryable on Tenderly explorer — full transparency, no trust required.

hashtag
Demo

PreviousAutonomous Risk MonitoringNextLive Risk Dashboard

Last updated