State Channel Markets: improvements to the structure of the HTTP API subsystem and schema validation for dynamic management of OpenAPI endpoints in service plugins.
Added support for event push in transaction endpoints, so that clients don’t have to poll to see when a transaction makes it onto the chain.
Applications & Utilities
A large update to the Hakuzaru library has been merged.
Hakuzaru documentation is finally complete and will be published with the release of update v0.9.2.
Large updates and additions to Hakuzaru, contract property testing framework, and DEX contracts.
Contract property testing framework updates, moving it from an independent mockup to an in-node plugin, and building out the tools necessary for a fully integrated code stepper.
GajuDesk
The smart contract development and call interface utility, FateWeaver, has been deployed within GajuDesk.
Several tweaks and bug fixes to GajuDesk were pushed in update v0.9.0.
Development on GajuExpress (secure file transfers verified by Gajumaru IDs) has been started.
A technique for secure network endpoint lookups and verification using on-chain techniques instead of DNS + CA governed certificates has been developed.
GajuMining
Introducing free shopping items in the shop and limiting them up to one per account.
Non-commission earning free license miners can participate in perks.
Updates to promo code controls.
UI support for re-assigning miners to new hives in preparation for load balancing miners in the existence of multi-hives.
Third party initial steps: database schemas, admin support for toggling users as third party sellers.
Bundle perks are refactored to support all D0 and up levels.
Tracking gifts as unique sign up perks for new miners.
Google analytics has been disabled in favour of self-hosted analytics.
Hive server now can report mining process for connected miners. This will allow visualization of the mining power being provided by a miner vs the mining power and mining duration required for them to reach their daily cap.
Registration form improvements: GRIDS form now persists instructions on refresh. Footer component improvements; shop and checkout polishes. A lot of bugfixes.
Business Development
Identified market opportunities where Gajumaru technology is uniquely positioned to provide technological solutions. Conceptualized new products: GajuExpress, GajuAuth, Capillary.
Completed the first version of a tool for quickly orchestrating experimental chains.
Added support for registering verifiable (OpenAPI) HTTP endpoints for Gajumaru node plugins.
Core node support for Hive-style mining pools has now been merged into the Gajumaru master.
TUI (Terminal User Interface) step debugger for sophia smart contracts, to work as a plugin for a Gajumaru node; enables tracking paths taken during contract execution for debugging, etc.
Standard for regulator-friendly token-defined assets in the works.
GajuDesk
Adding compression to Sophia contract source code in Hakuzaru.
Unifying the Hakuzaru call interface.
Fixing the contract deploy/call interface in GajuDesk.
GajuMining
Polished emails, pages added for new user terms and data deletion.
WhatsApp one-time-password support for validating phone numbers, and validation for promotion codes.
Multi-hive support with the ability to spawn new hives. Miners are assigned at random to hives that had reported their address.
Payments: SumUp integration for card payments now working for mining license purchases.
Payments: Some Tilt webhook improvements.
Payments: dynamic changing of payment provider options implemented.
Introduced a webhook for the HiveServer to report on when a miner connects for the first time.
Improved tracking of unique sign ups for affiliate links.
License bundle creation implemented.
Admin UI: the miner page now shows connection status, Hive DI, and more.
SumUp integration for card payments now working for mining license purchases.
Some bug fixes.
GajuDEX
Smart contract written for central limit order book, order matching, expiration of orders, etc.
26 April 2026 marks 15 years since the end of Satoshi’s public involvement in Bitcoin.
It’s also the day Gajumaru mainnet launches in full swing.
With the Gajumaru mainnet full launch comes a lineup of applications, tooling, and infrastructure, all rolling out over the coming months.
As we prepare for widescale use, we will be opening testing rounds for these applications and awarding mining licenses for your effort, which would allow you to mine Gajus in advance before we open public mining in 2027.
What’s coming up?
GajuMarket
The world’s first on-chain marketplace for goods and services. GajuMarket is the first to put the entire marketplace on-chain. The peer-to-peer marketplace industry is estimated to reach $6.27 billion by 2032. Check out this post for more information.
GajuPay
Point-of-sale payment processor for merchants interacting with Gajus via GajuMobile. The payment service providers market is estimated to grow from $56.97 billion in 2025 to $64.95 billion in 2026.
GajuMobile – iOS & Android
Mobile wallet for an even wider-scale usage.
Associate Chains
Customizable infrastructure to allow institutions and custodians to build and deploy their own projects with their own specific rules, governance mechanisms, regulations, etc.
GajuDEX
Fully decentralized, non-custodial, peer-to-peer exchange for gajus, other currencies and tokenized assets; truly decentralized exchange under FINMA standards, unlocking $877B industry for institutions.
There are more applications, features, and tools coming up towards the end of the year, all the way to the next. For those who are interested, we are rewarding testers with a CHF 100 mining license for helping improve our applications, adding you to our miner community. As a miner, you can start earning referral commissions from mining license sales on top of earning Gajus with ease before the switch to public mining in 2027.
We are also launching an open partnership program for community members who help onboard new businesses into the Gajumaru network. More information on this coming soon.
Security Brief for Central Banks and Regulators QPQ AG, Zug, Switzerland – 20 April 2026
On 7 April 2026, Anthropic announced Mythos and Project Glasswing simultaneously. The two announcements cannot be understood separately: Mythos is the model; Project Glasswing is the defensive response to what it could do.
What it could do: Mythos autonomously identified and exploited a 27-year-old vulnerability in OpenBSD – an operating system known specifically for its security record – granting root access from anywhere on the internet, without authentication, without human involvement after the initial instruction. Root access means complete control: the ability to read every file on the system, install anything, delete anything, impersonate any user, and move silently to every connected system – invisibly, at machine speed.
Mythos found this flaw, built the exploit, and executed it autonomously. It can chain three to five such vulnerabilities end to end, and it found thousands of them across every major operating system and browser in production use.
The Response
Confronted with this, Anthropic initiated Project Glasswing, giving approximately 50 selected organisations – including Amazon Web Services, Apple, Google, JPMorganChase, Microsoft, and Nvidia – early access to scan and patch their own systems.
Within days, the US Treasury Secretary and Fed Chair convened Wall Street’s largest bank CEOs for the first joint emergency meeting of its kind since October 2008. The Bank of Canada convened its Financial Sector Resiliency Group. The Bank of England is convening its Cross Market Operational Resilience Group within the fortnight.
On 13 April 2026 the Cloud Security Alliance, SANS, OWASP, and a contributor list spanning the former directors of NSA cybersecurity and CISA, the Google Chief Information Security Officer, and the former US National Cyber Director consolidated this into an emergency framework: eleven priority actions for how the industry should respond, with their own caveat that “long-term goals should be considered a quarter away at most.”
Why That Response is Doomed to Expensive Failure
The official response has treated this as a security problem requiring better defences: the same tools, the same approach, the same vendors, with more urgency and even bigger cybersecurity budgets. From their perspective this is understandable. It is also wrong for two reasons.
Firstly, the dynamics are now permanently in the attacker’s favour.
An attacker needs one route to one credential. A defender has to stop every route, every time, forever. An attacker failing a thousand times costs nothing; one success compromises everything. A defender catching 99.9999% of attempts still lets 0.0001% through, and at machine speed, that fraction is all that is needed. One access point is enough to move laterally across every connected system.
Moreover, however you judge Anthropic’s actions in this, Mythos is the first of its kind, not the last. Whatever emerges to compete with or succeed Mythos will share its properties. The defender is not up against a single model; they are up against a category of capability that will proliferate.
In this context, more defences and bigger cybersecurity budgets merely inflate the cost of inevitable compromise, harvesting and exploitation; the only variable is when.
The Architectural Error
Secondly, and most importantly, treating it as a security problem understates and mis-categorises it: correctly, it is an architectural problem that has been present for thirty years and has now become impossible to ignore.
The internet was built to share information. HTTPS made that transmission secure and universal. It works for its purpose. That is the Internet of Data, and it is what the cybersecurity industry has been built to defend.
What the internet was never built to carry is economic activity: the transmission of value, financial credentials, identity, payment instruments, sensitive economic records.
These have a property information does not have: they must not be copied. A news article exists to be copied; that is how it reaches its reader. A payment that has been copied is not a payment – it is an error, or it is theft. The property that makes the Internet of Data useful is the property that makes it unsafe for economic activity.
The financial system has run economic activity over information infrastructure for thirty years because no alternative existed. Thirty years of patches – tokenisation, encryption in transit, zero-trust, multi-factor authentication, hardware-backed credentials – are the industry’s accumulated attempt to close the gap, but ultimately it amounts to trying to make a car do what a ship does.
A car and a ship are not competing designs. They have different properties suited to different purposes. A car cannot cross an ocean and a ship cannot drive down a motorway. Both are necessary, and both have tooling appropriate to purpose. What the financial system needs – and has always needed – is an internet of economics with the appropriate tooling to protect rather than share data.
The Architectural Answer
The correct response is to remove sensitive economic data from the connected attack surface entirely. Not to defend it better in place. That separation now exists, is operational, and is open sourced, ready for immediate deployment.
QPQ AG, incorporated in Switzerland, has built the Internet of Economics – an open economic resource layer, together with the tooling to operate on it. All of it is open sourced, free to use, implement, and operate. One such tool is Gajumaru Remote
Instruction Dispatch and Serialisation – ‘GRIDS’ – the authentication and authorisation component, and the part that the Mythos announcement has made urgent.
The mechanism is straightforward to describe, once the purpose is understood. In the current architecture, customer authentication requires credentials and authentication material – passwords, session tokens, two-factor codes, signed cookies – to transit or sit on connected systems, where they can be harvested by an attacker who reaches those systems. Under GRIDS, the credential does not sit on any connected system. A cryptographic key, held inside the hardware secure enclave of the customer’s own phone or laptop, produces a mathematical proof that the customer has authorised this specific instruction. The institution receives the proof, verifies it against the customer’s public key – the mathematical counterpart, which is useless to an attacker – and acts on it. Nothing capable of authenticating anyone is ever present on a connected system.
GRIDS is a dead-drop signature protocol: the execution context (the connected device) and the signature context (the device holding keys) never share a direct connection.
How it works:
1. The connected device (terminal, computer, browser-facing interface) generates a transaction or authentication request and encodes it as a GRIDS URL or QR code.
2. This is passed – via URL paste or optical QR scan – to the signing device. No network connection between the two contexts.
3. The signing device decodes the request, displays what is being asked, and awaits approval.
4. The user approves. The signing device signs cryptographically and returns the signed response via QR code or URL.
5. The connected device receives cryptographic proof. No credentials. No private keys. No sensitive data of any kind transited the connected layer.
At no point do private keys exist on the connected device. Not briefly, not in transit, not encrypted in transit: not at all. The key is held in the signing context and never leaves it.
Each authentication creates a one-off cryptographic exchange between the institution and the customer’s device, open only for the duration of that specific instruction. When the instruction completes, it is gone. There is no persistent channel left behind for an attacker to find. There is no session state to hijack, no token to replay, no credential to retrieve in a subsequent breach. The attack surface that Mythos is built to exploit – the continuous presence of authentication data on connected systems – does not exist in a GRIDS flow, because the data is never placed on a connected system in the first place.
Anthropic has confirmed that Mythos can bypass two-factor authentication (‘2FA’). A GRIDS flow has no two-factor authentication to bypass. The entire category of harvestable credentials is absent.
There is no login. There is no password. There is no web socket exposure.
The same architecture applies to payment authorisation, to staff authentication into internal systems, to inter-institution messaging, to any interaction that currently depends on credentials being transmitted or stored. The institution’s connected systems hold public keys, delivery records, audit trails – none of which can authenticate anyone. They hold nothing Mythos is looking for.
GRIDS is not a single product. It is an architectural protocol with a staged implementation path. Each stage addresses the remaining trust assumption of the stage before it.
Stage 1: Operational Now – Open Sourced
GajuDesk (desktop, all platforms) and GajuMobile (iOS and Android, releasing Q2 2026) implement GRIDS using the device’s hardware security enclave as the signing context.
Private keys are held in the secure enclave and never touch the broader operating system or any network-connected software layer.
This is a categorically different security posture from any browser-based financial interface: – Zero external software dependencies. Every line of code is written in-house and open sourced and auditable. No NPM packages, no frameworks, no anonymous dependency chains of the kind exploited in the September 2025 NPM supply chain attack that compromised 18 packages with more than 2 billion combined weekly downloads. – No browser plugin environment. The wallet does not run inside a browser. –
No web sockets, no logins, no passwords, no credential transmission of any kind.
Stage 1 has two honest limitations. The first is that the device holding the key is itself network-connected. The secure enclave is strong – the key never leaves it and cannot be extracted by software running on the operating system – but the device sits on the internet. That is a smaller attack surface than the current architecture by orders of magnitude, since Mythos or similar AI models cannot harvest a key that they cannot reach, but it is not zero.
The second is hardware provenance: a device manufactured under unknown conditions may carry hardware-level vulnerabilities that software inspection cannot detect.
Stage 1 is a strong immediate answer and remains useful for everyday transactions. The cost of compromising a well-implemented secure enclave on a connected device exceeds the value of most individual transactions by orders of magnitude. Stages 2 and 3 add coverage for flows where that calculus does not hold: high-value transactions, institutional treasury, inter-bank messaging, sovereign payment infrastructure. For those flows, the next stage removes the network connection entirely.
GajuDesk and GajuMobile – working applications that put GRIDS at the centre of their operation – are free to download and use. The GRIDS protocol is open sourced in its entirety under GPL3, auditable by anyone; any institution can implement it into its own infrastructure without any licensing cost. QPQ’s commercial offer is the integration expertise of the team that built it, and the Stage 2 and Stage 3 hardware programme.
Stage 2: GRIDS Hardware Wallet – In Development
A dedicated, air-gapped signing device whose sole function is to hold keys and execute cryptographic signing operations. It has no network connection of any kind: no Wi-Fi, no Bluetooth, no NFC, no cellular radio. The only communication channel is optical – QR codes displayed on its screen and read by its camera.
The connected device never has the keys. Every category of attack that depends on keys being present on a networked device – NPM supply chain attacks, browser exploitation, OS vulnerabilities, Mythos-class systematic scanning – is structurally eliminated. There is nothing to find because the keys are not there.
This stage is in development, dependent on Series A funding which QPQ is currently raising. Institutions wishing to accelerate this stage through partnership or advance commitment are invited to engage directly.
Stage 3: Full QPQ Hardware Stack – Sovereign Deployment
This is the stage most directly relevant to central banks and sovereign institutions. Stage 3 eliminates the remaining trust assumption of Stage 2: hardware provenance.
Stage 2 trusts that the GRIDS hardware wallet is manufactured without compromise.
Stage 3 addresses this by manufacturing both the signing device and, in partnership with sovereign actors, the connected devices within auditable, controlled facilities.
QPQ plans to establish global GRIDS device fabrication facilities in Switzerland and Japan – jurisdictions chosen for their regulatory stability, manufacturing capability, and alignment with the institutions QPQ serves. These facilities will be open to audit and inspection by any sovereign partner. The signing devices produced will have fully verified component-to-assembly manufacturing chains. No black-box components. No unverifiable supply chains.
For sovereign partners who want the capability in their own hands rather than purchased from ours, QPQ is open to establishing fabrication facilities within partner jurisdictions, including full technology transfer.
For a central bank seeking to protect national payment infrastructure, the full stack means:
• Signing devices manufactured in a facility you can audit, in a jurisdiction you trust
• A GRIDS protocol you can inspect, verify, and deploy on your terms
• Connected devices (terminals, mobile) whose manufacturing chain is verified to the same standard
Two Paths
QPQ has a commercial interest, and has stated it: Stage 1 open source and free; Stage 2 and Stage 3 hardware as the paid programme. That is the shape of our commercial offer.
The cybersecurity industry framework has its own commercial shape and does not state it. Its lead author has their own AI security tool recommended by name in the document, without disclosure. Training organisations, venture funds invested in security companies, and vendors of the specific products the document recommends are represented across the contributor list.
The more important difference is what each path resolves. The framework’s path buys time. Each additional investment in defence postpones the point at which a Mythos-class capability reaches a credential it can harvest, but none of the investment removes the credential from the place it can be harvested. The question the framework does not answer is where the spending ends, and what the institution is left with when it does.
Every cybersecurity budget that has risen for thirty years has been paying to defer an outcome the architecture makes inevitable. At machine speed against an attack surface that grows rather than shrinks, deferral has a shelf life.
The architectural path has an end state. Once sensitive economic data is no longer on the connected attack surface, the attacker has nothing to harvest and the defensive cost it incurred can be recovered. The institution is not buying more time, it is removing the risk.
The difference between QPQ’s position and the cybersecurity industry framework is not that one is commercial and the other is not. It is that one clearly defines its commercial interest, provides a free option with no compulsion to pay for anything, and actually solves the problem.
The Supervisory Question
“Adequate” security under every major prudential framework has meant adequate defence of credentials on connected systems, because there was nowhere else to put them. There is now. The question that follows is whether the standard should continue to mean what it has meant, or whether architectural removal of credentials from the connected attack surface should become part of what adequate protection requires.
The regulated population has been moving in this direction for a decade – tokenisation, data minimisation, zero-trust, secure-enclave credentials – and GRIDS is the completion of that direction rather than a deviation from it. The consequence for supervised firms would be significant. Cybersecurity budgets that have risen indefinitely to defend data on connected systems would reduce, because the attack surface those budgets defend would no longer exist in GRIDS flows. The security posture of the regulated estate would transform, because compromise would no longer depend on the next patch cycle outpacing the next exploit.
It is a question for the supervisory community, not for us. We have set out the diagnosis and the architecture as honestly as we can. The standard-setting is yours.
What We Are Proposing
Immediate:
A 15-20 minute live demonstration, on your own machine or ours. Download GajuDesk from gajumining.com/downloads; we will send installation instructions and a mining licence so you can log in yourself during the session. If local installation is precluded by policy, we screen share our own live operations.
Near term:
QPQ will work with any central bank, government agency, and related regulated firms to implement Stage 1 GRIDS across institutional interfaces – authentication, payment authorisation, inter-institutional communication. The protocol is open source. The cost is implementation time and any specific customisation, not licensing.
Medium term:
QPQ will accelerate Stage 2 hardware wallet development in partnership with institutions that commit to the programme. A sovereign institution’s commitment to deploy GRIDS hardware wallets across a defined user base changes the manufacturing economics and accelerates the timeline.
Long term:
QPQ is seeking sovereign partners for Stage 3 fabrication facilities. This is the Internet of Economics at institutional scale: national economic infrastructure in which sensitive financial data never touches the internet-connected layer, manufactured in a jurisdiction whose integrity can be assured.
Mythos is a general-purpose AI model not specifically trained for cybersecurity. Its vulnerability discovery capabilities emerged from general improvements in code, reasoning, and autonomy.1 In testing, Mythos fully autonomously identified and exploited a 27-year-old vulnerability in OpenBSD, allowing an attacker to remotely crash any machine running the operating system simply by connecting to it. No human was involved after the initial instruction. Across every major operating system and browser in production use, the model found thousands of previously unknown vulnerabilities. Internal testing cited in the security community’s response showed it generating 181 working exploits against Firefox where the previous generation of capable models succeeded twice.2
What Project Glasswing Is
Confronted with what Mythos could do, Anthropic did not release it. They gave approximately 50 organisations – AWS, Apple, Cisco, Microsoft, Google, JPMorganChase, the Linux Foundation, and others managing critical software infrastructure – early access so they could scan their own systems before comparable capability becomes broadly available.1 Comparable capability at frontier labs is expected within months; open-weight models accessible to anyone, within a year.
The Architectural Problem Mythos Has Proved
The Internet of Data works because information can be copied. Redundancy is the feature: data cached, retransmitted, reconstructed across nodes. Every packet lost can be resent. The architecture is brilliant at what it does. A payment that can be replicated is not a payment – it is a vulnerability. A title of ownership that exists in two places simultaneously is not ownership. Every attempt to transmit value across the Internet of Data requires a trusted intermediary whose sole function is to maintain a single authoritative record of who has what, because the network was designed for copying, and copying is precisely what must not happen. The intermediary is not an inefficiency – it is the architectural patch for a fundamental mismatch between what the internet was built to carry and what economic exchange requires.
The financial system has been conducting economic activity – authentication, payment authorisation, credential management, sensitive data transmission – over an infrastructure designed to carry information. This was not a choice. No alternative existed. It is a structural consequence of building value exchange on top of a network designed for copying: every bank, every payment processor, every financial application runs on browsers, on operating systems, on software dependency chains that carry credentials over connected networks.
Anthropic’s Mythos model has demonstrated what this means in operational fact: those connected systems can now be scanned and exploited at machine speed, systematically and at scale. Every authentication system your institution operates, every payment credential your platform holds, every API key in your software stack sits within a comprehensively exploitable vulnerability class.
The prescription has a structural problem the document acknowledges directly. It lists “Unmanaged AI Agent Attack Surface” as CRITICAL: “Agents are necessary to counter AI-speed threats, but they are privileged, insecure by default, and not covered by existing security controls.”2 No mention here of the tendency of AI agents to hallucinate – evidence shows they do so to a significant degree – fine if you are an attacker for whom there is no loss in a failed attack; not so good for a defender who cannot fail once.
The document is also honest about the human cost: “Burnout and attrition in security functions represent a direct operational risk.”2
Long-term planning horizon recommended: 90 days.
Here are the assumptions built into every one of the eleven actions.
There is an external dependency tree to scan.
There is a browser execution environment to harden.
There are cryptographic keys on connected devices to protect.
There are credentials that can be made phishing-resistant.
The prescription offered is rather more aligned to what those involved have to offer, in much the same way that if you ask a surgeon whether to cut or to medicate, they will more often than not prescribe to cut – there is a solution bias driven by their knowledge and skillset. For organisations where the attack surface is genuinely given, the recommendations are correct.
This official response – patch faster, follow best practice – assumes defenders have time to respond. Ciaran Martin, former head of the UK’s National Cyber Security Centre, stated the condition precisely: the timeline for finding and fixing vulnerabilities collapses to seconds, minutes and hours, rather than days, months or years.6 The assumption is no longer valid. None of them are.
The Two Domains That Must Be Separated
The Internet of Data – browsing, research, communication, information – operates on the existing internet. It works for its purpose and needs no redesign.
The Internet of Economics – financial authorisation, payment, identity, sensitive credential transmission – requires a structurally separated architecture. One in which the data that Mythos would target is never placed on connected systems in the first place.
The solution is not more defence in depth, more dependency auditing, more AI agents to defend against yet more AI agents. It is to remove those attack surfaces altogether. Separate the signing and execution context – you cannot reach the sensitive data because it is not on the connected system. Build from scratch. Dependency chains that no human can fully audit cannot be made safe by AI agents that hallucinate.
Building the Internet of Economics
QPQ is building the Gajumaru blockchain – the resource layer that makes the Internet of Economics possible: a layer on which value can be transmitted with the same freedom that information moves today, without the intermediary patch. The moment you build for that, the security architecture has to change categorically. The thing being carried cannot be reconstructed if lost, cannot be allowed to exist in two places, and cannot be entrusted to a system that tolerates copying. That different engineering requirement is why the architecture described below looks nothing like what the CSA document assumes.
Removing the dependency supply chain
GajuMobile and GajuDesk were written from scratch, in-house, with zero external dependencies. Every line of code was written by QPQ engineers. The September 2025 NPM supply chain attack, which compromised 18 packages with over two billion combined weekly downloads and planted malware to redirect cryptocurrency transactions5 had no relevance to QPQ’s wallet stack because QPQ’s wallet stack has no connection to that supply chain. When Craig Everett, QPQ’s CPO, and Peter Harpending investigated how MetaMask handled NPM security, they found LavaMoat: a JavaScript sandbox written in JavaScript, running inside the JavaScript environment it was attempting to make safe. We described it at the time as:
“Their security concept is: instead of taking this really complicated situation and simplifying it so it’s understandable and tractable, they made it more complicated by writing inside a dangerous context a runtime that they claim is going to be safe in the dangerous context. With no guarantee.”
QPQ also refused to conflate the signing and operation environments. Entirely. GajuMobile and GajuDesk are genuinely native applications – built without web-rendering frameworks such as Electron, which is how many nominally desktop applications are actually constructed and which reintroduces the full browser execution environment and its attack surface behind a desktop icon. The attack vectors that originate in browser plugin architecture do not apply. The applications are also securely authenticated at the user level before any wallet function is accessible, as described in the GRIDS section below.
GRIDS: Gajumaru Remote Instruction Dispatch and Serialisation
GRIDS is a dead-drop signature protocol. The device that holds private keys is physically separated from the device that connects to the internet. They communicate only optically, via QR code. The internet-connected device – the one Mythos would scan – never has the keys. Not in transit. Not briefly. Not at all.
How it works
The connected device generates a transaction or authentication request, encoded as a GRIDS URL or QR code.
This is passed – via URL paste or optical scan – to the signing device. No network connection between the two contexts.
The signing device decodes the request, displays what is being signed, and awaits approval.
The user approves. The signing device signs cryptographically and returns the response.
The connected device receives cryptographic proof. No credentials. No keys. No sensitive data transited the connected layer.
There is no login. There is no password. There is no web socket exposure. Mythos scans the connected infrastructure and finds no financial credentials, because the credentials are not there.
What GRIDS eliminates, and when, depends on which stage of the hardware programme is in place.
Stage 1: Operational Now – Open Sourced.
GajuDesk (desktop, deployed, operational, all platforms) and GajuMobile (iOS and Android, releasing Q2 2026) implement GRIDS using the device’s hardware security enclave. Every line of code is written in-house with zero external software dependencies. Open source under GPL3, auditable by any government or agency, and available at no cost to any institution that chooses to implement it. At Stage 1, keys are stored in hardware isolation within the device’s secure enclave and cannot be extracted; signatures are performed inside the hardware. The device itself may be network-connected, which is why Stage 1 is correctly described as probably secure rather than definitely secure. QPQ did not manufacture those devices, and hardware supply chain provenance is an attack vector at sufficient adversary capability. That “probably” is honest and it motivates Stage 2.
Stage 2: GRIDS Hardware Wallet – In Development.
A dedicated, air-gapped signing device with no network connection of any kind: no Wi-Fi, no Bluetooth, no NFC, no cellular radio. The only communication channel is optical: QR codes displayed on its screen and read by its camera. At Stage 2, every category of attack that depends on keys being present on a networked device – including Mythos-class systematic vulnerability scanning of connected systems – is structurally eliminated. The keys are on a device that has no network interface through which they could be reached or transmitted. Mythos scans networked devices for exploitable vulnerabilities. A device with no network connection is not in the scan. This stage is in development, dependent on Series A funding QPQ is currently raising. Sovereign institutional commitment to Stage 2 deployment accelerates the timeline.
Stage 3: Sovereign Hardware Manufacturing – National Security Partnership (Planned).
Stage 3 addresses the final trust question in Stage 2: hardware provenance. Who made the signing device, under what conditions, with what components? QPQ plans to establish GRIDS device fabrication facilities in Switzerland and Japan – jurisdictions chosen for regulatory stability, manufacturing capability, and strategic alignment – open to audit and inspection by sovereign partners, with fully verified component-to-assembly manufacturing chains. QPQ is open to establishing facilities in additional jurisdictions where the commercial case is made and the strategic relationship is right, including full technology transfer arrangements. The protocol is open. The manufacturing is the partnership. QPQ is actively seeking sovereign partners for Stage 3 co-development. This is a national security conversation as much as a commercial one.
The Verdict
QPQ’s node infrastructure faces the same threat environment the CSA document describes. AI-discovered vulnerabilities at the OS and protocol level are a genuine threat that wallet architecture does not address, and the CSA document’s recommendations for continuous scanning, rapid patching, network segmentation, and hardened infrastructure apply to QPQ’s operations as they apply to anyone running networked systems.
The architectural question – whether specific attack surface categories can be eliminated rather than managed – is a different question, with a working answer that the briefing’s authors could not have known existed. They have no excuse now.
QPQ AG builds the Gajumaru blockchain ecosystem. Groot has been operational since 22 October 2024. First sovereign customer: Liechtenstein Trust Integrity Network (LTIN), deploying national economic infrastructure on this architecture in Q3/Q4 2026. This post is based on publicly available information from the cited sources and is not a legal opinion. Corrections are welcome.
We live in a polite fiction. We pretend that social platforms are built for connecting people, while in reality, they are massive data-harvesting machines designed to sell your attention to the highest bidder. This model is breaking under the weight of its own friction: ads are intrusive, subscriptions are exhausting, and “free” users are actually the product.
But there is a deeper rot: the Bot-War. Platforms spend billions trying to purge automated activity because bots don’t click ads, and when they do they never buy anything and expose the host to fraud accusations.
What if we stopped fighting the bots and started billing them?
By integrating Gajumaru State Channels into the fabric of social and consumer platforms, we can transform the Attention Economy to the Value-per-Interaction Economy.
The Shift for Platforms and Users:
Micropayments for Micro-Actions: Whether it’s a human tipping a creator a fraction of a cent for a post, or an agent paying for a premium API data-pull, the transaction is instant and frictionless.
The bot tax becomes bot revenue: If every automated interaction requires a granular payment, spam becomes a business model. We stop asking “Is this a bot?” and start asking “Is this channel funded?”
Privacy by Default: When you pay for a service with a sub-cent stream, the platform no longer needs to sell your soul to advertisers to keep the servers running.
Whether it’s a real person in meatspace or an agent acting on their behalf, the A2P (Agent-to-Platform) model removes the middleman. We are replacing the ad-click with the state channel flow, finally allowing platforms to scale based on utility rather than manipulation.
The current unit economics of online services are broken. Whether you are providing raw compute, AI inference, or streaming media, you are likely trapped in a losing investment cycle: burning venture capital to subsidize a sea of free-tier users, while praying a few enterprise whales overpay enough to keep the lights on.
The culprit isn’t the service, it’s the tyranny of payment overhead. We have, as an industry, normalized this to such a degree that the problem has become invisible. When credit card fees and administrative friction make it impossible to charge less than $10, you can’t capture the massive, granular demand of the emerging agentic economy.
Enter A2P (Agent-to-Provider) micropayments via Gajumaru State Channels.
By orchestrating Gajumaru’s state channel implementation, we are enabling a radical shift from SaaS subscriptions to pure utility billing. This isn’t just a technical upgrade; it’s a business model revolution for providers:
Sub-Cent Settlement: Stop losing 30 cents + 3% to processors. State channels allow agents to pay providers for every single token, frame, or CPU cycle in real-time, with near-zero transaction costs.
The End of Onboarding Friction: Real users, and the agents they deploy, aren’t afraid of spending pennies. They are afraid of $20/month commitments for services they use sporadically.
Instant Liquidity: Instead of waiting 30 days for a payout cycle, providers see value flow into their channels as the service is rendered.
From Streaming to Scaling: This model is the holy grail for high-bandwidth services like streaming, where the cost-per-user can finally be mapped 1:1 to revenue-per-second.
For providers, the message is clear: Stop waiting for the next VC round to cover your growth metrics. By adopting A2P orchestration, you can finally move to a Pay-as-you-Flow model that turns every interaction into immediate, granular revenue.
The rise of agentic frameworks like OpenClaw has exposed a massive friction point in the digital economy: the payment overhead.
Today, AI services rely on a handful of whales — power users whose high-tier subscriptions subsidize a sea of free or low-usage accounts. This isn’t just inefficient; it’s a barrier to true machine autonomy. An agent shouldn’t need a $20/month seat to perform a $0.003 task.
Granularity: Settle payments at the per-token or per-inference level.
Zero Latency: Transactions happen off-chain at the speed of the agent’s logic, only hitting the Gajumaru blockchain for opening/closing the channel.
Efficiency: We remove the “tyranny of overhead,” allowing agents to negotiate and trade services (data, compute, or logic) in real-time without a human-in-the-loop to approve a billing cycle.
We aren’t just automating the work; we’re automating the economy that powers it.
Demonstrator of Associate Chain connection points in the works;
Orchestration tool for quickly setting up experimental chains has been created with some docs and examples;
State Channel benchmark test suite updated, and verified that a single Gajumaru node can handle at least 10,000 concurrent channels (in the context of the benchmark suite, that actually means 20,000 State Channel endpoints on the same node). Throughput scales linearly up to the point where CPU cores become saturated, then remains stable at that level even as load increases.
QHL
QHLWebsocket integration is about halfway complete.
GajuDesk
Big update coming; new features:
Contract call interfaces are changing to a process-based lifecycle system;
A configuration interface is being introduced so that users can select Gaju display style, language, and so on;
We aren’t quite to the point of translating the interface, but the preparatory work for that is mostly complete;
A QR interface for communication with GajuMobile is being introduced (GajuDesk can then be used for public-key-only wallets);
Enhancement: network fallback is being implemented for mainnet and testnet (if the middleware is overloaded, automatically shift.
GajuMobile
Further work on Kotlin libraries underlying the system (serialization, crypto functions, etc.);
Early interface prototyping;
Hardware key storage prototypes on Android 13+.
GajuAuth
Early architecture work on a GRIDS-backed (S3O) OAuth2 service.
GajuDEX
Code written to complement the Sophia term parser, allowing tools like GajuDesk to accept Sophia input, send it to the chain, receive results back from the chain, and display the results as readable Sophia terms; to be integrated with GajuDesk;
Better internal documentations for some some DEX smart contract functionalities.
GajuMarket
Test site is running, should be ready for testing once work on new faucet and explorer are finished.
GajuMining
Vaults
Multisig contract expanded with new utility functions; revisited how hashes for signatures are being produced;
Add & remove signatories via smart contract calls;
Set Multisig threshold via a contract call;
Set Vault threshold via a contract call;
Show Actions functionality;
A lot of visual polishing;
Track and visualize transaction hash for all posted Actions.
Shop
Currency visualization refinements;
Integration with a service provider of information to determine the country of origin of the client depending on their IP address;
Visual refinements;
Enforce country phone number correctness: determine the country of origin of the client based on the phone number country prefix;
WhatsApp initial integration;
Downloads’ section refinements;
Double licenses for Corps and Army tranches, introduce Bundles licenses;
Tilt API integration.
Miner dashboard
Split commissions functionality allows one user to create a new promotion code that shares their commission with another miner.
