hyperliquid's 4-of-5 multisig controls $4b in user deposits with zero timelock. uniswap has 48 hours. aave has variable delays. makerdao has 48 hours. hyperliquid has zero. five anonymous signers can upgrade bridge contracts and drain everything instantly with no review period. closed-source node client means validators can't even verify what they're running. assign a 5% annual probability to multisig compromise and 90% loss severity and you're looking at negative expected value on idle capital. the product ...

4/That’s where zkML changes the security model:✅Prove the model followed the intended reasoning path✅Prove tool calls matched declared policies✅Prove execution stayed within allowed boundaries✅ Enable auditors to verify behavior without accessing model internalsAgents don’t just need guardrails — they need proof rails. ...