Tech Framework

GearFlow – Technical Framework

A secure transaction layer between users and dApps, powered by Mediator Contracts.

GearFlow is the fourth core component of the GearUp ecosystem. It is a mobile app and browser plugin designed to enable secure interaction between users and external dApps through self-deployed mediator contracts. Unlike traditional wallets, GearFlow prevents users from exposing their main wallet to risky third-party contracts.

With GearFlow, every dApp interaction is proxied through contracts built in GearUp Studio or Factory, giving users complete control, transparency, and isolation.


πŸ” What Problem Does GearFlow Solve?

Most DeFi users unknowingly approve access to unverified contracts via wallets like MetaMask or TrustWallet. Once a single contract is compromised, your funds are at risk.

GearFlow introduces an abstraction layer that lets users:

  • Deploy and interact via their own mediator contracts

  • Avoid direct wallet-to-dApp permissions

  • Log and restrict function-level access

  • Track and revoke privileges from a unified dashboard


βš™οΈ How GearFlow Works

  1. Users create a Mediator Contract via GearUp Studio or Factory

  2. Contract is deployed and registered in the GearFlow app

  3. When connecting to a dApp, the user connects via the GearFlow Plugin, which acts as a contract signer, not a wallet signer

  4. All contract interactions are passed through the user’s Mediator Contract which executes the final on-chain transaction

[User Wallet] -> [Mediator Contract] -> [Target dApp/Contract]

The dApp never interacts with the user's wallet directly.


🧱 Mediator Contract Architecture

Mediator contracts are:

  • Customizable

  • Stateless or stateful (optional session tracking)

  • Compatible with token spending, swaps, staking, lending, and more

  • GearUp Template-powered

Sample Modules

  • approveTokenSpender() with timeout

  • proxyCallWithRevertCheck()

  • batchExecute(address[] targets, bytes[] data)

Each GearFlow-compatible mediator comes with audit-grade patterns:

  • Reentrancy guard

  • Parameter validation

  • Access scope limiting


πŸ“± GearFlow App (Mobile)

  • Available for Android + iOS

  • Supports WalletConnect + custom RPC

  • Built-in mediator deployment and management

  • Transaction history, notifications, and privilege tracking

  • QR-code based login for contract session initiation


🧩 GearFlow Plugin (Browser Extension)

  • Intercepts WalletConnect and dApp connect attempts

  • Routes actions through selected Mediator Contract

  • Simulates and previews function calls before execution

  • Uses deterministic session hashes

  • Logs all outbound calls and ABI signatures

{
  "action": "swap",
  "contract": "0xabc...def",
  "function": "swapExactETHForTokens",
  "status": "simulated",
  "result": "low slippage; execution safe"
}

πŸ” Security Highlights

  • No private key exposure beyond GearFlow layer

  • 100% on-chain execution traceable from user to dApp

  • Permissions can be auto-expiring or revocable

  • Emergency contract pause available from app

  • Open source templates available for audit


πŸ—ΊοΈ Roadmap

Feature
Status

Mediator Contract Framework

βœ… Privately Deployed

GearFlow Plugin MVP

🚧 Testing

Mobile App (v1)

🚧 In Dev

Function-level Trust Scoring

πŸ”œ Planned

Marketplace-based Plugin Logic

πŸ”œ Planned


🌐 Future Vision

  • Session approval via multisigs

  • Modular contract stacking (for DAOs, bots, vaults)

  • AI-assisted mediator setup via Scrappy

  • Real-time fraud detection before transactions


GearFlow lets you use any dApp without giving up wallet control.

Think of it as a firewall for your DeFi identity β€” a programmable contract proxy that acts with your rules, not theirs.

Last updated