Token and LP liquidity lock platform built on Stellar Soroban. Lock tokens or LP pool shares in an immutable on-chain contract, then share a public verifiable link so your community knows the liquidity can't be rugged.
- Token locks — lock any SEP-41 token until a chosen date, with optional linear vesting
- LP locks — lock Aquarius or Soroswap pool share tokens
- Public explorer — anyone can verify locks by token contract address
- Extend locks — creators can extend the unlock date, never shorten it
- Beneficiary model — creator and beneficiary can be different addresses (vesting, team grants)
- Freighter wallet integration
| Contract | Address |
|---|---|
| Token Locker | CBFCKEOQRQIXKLGU4QBUQVOINOKFBOXJ37LXEKLKNUO6TW4FNGDU26AW |
| LP Locker | CA3WYETNIF5IAF3VUNQ3SYKZFV45TOFBF7CEZ46I7QEBPWTRM73WLEI4 |
| Layer | Tech |
|---|---|
| Smart contracts | Rust / Soroban SDK 22 |
| Frontend | React 19, TypeScript, Vite, Tailwind CSS v4 |
| Wallet | Freighter via @stellar/freighter-api |
| RPC | Soroban Testnet RPC |
├── contracts/
│ ├── token-locker/ # SEP-41 token lock contract
│ ├── lp-locker/ # LP pool share lock contract
│ └── deploy.sh # Deploy both contracts to testnet
├── src/
│ ├── components/ # UI components
│ ├── hooks/ # useWallet, useLocks, useAsync
│ ├── lib/ # Contract bindings, RPC client
│ ├── pages/ # CreateLock, MyLocks, LockDetail, Explorer
│ └── types/ # Shared TypeScript types
pnpm install
pnpm devOpen http://localhost:5173.
pnpm buildRequires Rust and the Stellar CLI.
cd contracts
stellar contract buildCompiled WASMs land in contracts/target/wasm32v1-none/release/.
# Create and fund a testnet account
stellar keys generate myaccount --network testnet
stellar keys fund myaccount --network testnet
# Deploy both contracts
cd contracts
./deploy.sh myaccountPaste the printed contract IDs into src/lib/stellar.ts under CONTRACTS.
- Visit
/healthfor a lightweight browser-facing status page. - Monitor
/api/healthfor a structured JSON payload and/api/readinessfor readiness checks. - External analytics and font assets use SRI and crossorigin attributes where supported.
| Function | Description |
|---|---|
create_lock(creator, token, amount, beneficiary, unlock_at, vesting?) |
Lock tokens, returns lock id |
withdraw(id) |
Beneficiary withdraws after unlock |
extend(id, new_unlock_at) |
Creator extends unlock date |
get_lock(id) |
Fetch a single lock |
get_locks_by_creator(address) |
All locks created by address |
get_locks_by_beneficiary(address) |
All locks where address is beneficiary |
get_locks_by_token(token) |
All locks for a token (powers the explorer) |
init(admin) |
Set admin once after deployment |
propose_upgrade(wasm_hash) |
Queue a WASM upgrade (7-day timelock) |
execute_upgrade() |
Apply upgrade after timelock elapses |
cancel_upgrade() |
Cancel a pending upgrade |
Same shape as Token Locker, minus vesting, plus dex, token_a, token_b fields. Shares the same init, propose_upgrade, execute_upgrade, cancel_upgrade API.
 |
 |
 |
 |
Both contracts implement an admin upgrade with a 7-day timelock.
- Immutability is the default — no admin means no upgrades.
- After deployment, call
init(admin)once to register an admin. Ifinitis never called, the contract is permanently immutable. - When an upgrade is needed, the admin calls
propose_upgrade(new_wasm_hash). The proposal is stored on-chain with anexecute_aftertimestamp 7 days in the future. - Anyone can observe the pending proposal on-chain during the 7-day window.
- After 7 days, the admin calls
execute_upgrade()to apply the new WASM. All persistent lock state is preserved across upgrades. - The admin can call
cancel_upgrade()at any time to abort a pending proposal. - All upgrade events (
upgrade_proposed,upgrade_cancelled) are emitted on-chain.
| Function | Who | Effect |
|---|---|---|
init(admin) |
deployer (once) | Sets the admin address |
propose_upgrade(wasm_hash) |
admin | Queues upgrade, 7-day delay |
execute_upgrade() |
admin | Applies upgrade after delay |
cancel_upgrade() |
admin | Cancels pending proposal |
The upgrade path exists solely for critical security fixes. User lock funds are held in persistent storage and are unaffected by WASM upgrades.
Found a security vulnerability? Please read our Security Policy before reporting. Do not open public issues for security vulnerabilities.
MIT