docs: ADR for permissionless NAV attestation

[0xgleb]

🦋 GitButler workspace — open PRs in data-cartel/fund

• docs: spec create_fund and Anchor essentials #6
• feat: add the create_fund instruction #7
• feat: add the deposit instruction #8 (stacked on feat: add the create_fund instruction #7)
• docs: ADR for donation-resistant share pricing #10
• docs: evidence-based security design for the fund #11
• feat: expose the program idl as a flake output #22
• docs: ADR for permissionless NAV attestation #23 ← you are here
• docs: link security-design.md and adrs/ from the README, correct NAV wording #26

---

Motivation

The MVP is deliberately centralized (Turnkey custody, one execution backend),
which is tolerable only if the one subsystem that prices investor shares is
not: manager-attested NAV is the Stream-Finance failure class, and the
moneymentum SPEC currently has the backend posting NAV attestations to the
vault. ADR 0002 removed the manager from the marking path but left the
cross-chain-read trust model as open decision 2 — and its read rail leans on
gated infrastructure.

Solution

ADR 0003: an open attestation protocol on Solana — anyone can submit
(bonded), dispute (bonded), and verify; the backend becomes one submitter
with no special rights.

• Channel-typed evidence with independent failure modes: guardian-signed
  consensus reads (Wormhole Queries, trustless-verify even though
  permissioned-request), TEE oracle results (Switchboard On-Demand),
  zkTLS proofs, and bare bonded observations as the degraded mode.
• Diversity quorum (K distinct agreeing channels, consensus-read mandatory)
  with two-sided consumption per ADR 0002; cross-channel disagreement is a
  data-integrity halt, never a pick-one.
• Bonded disputes with an evidence-class ladder; withholding fails closed
  into ADR 0002's stale-read rules.
• Per-venue: Hyperliquid ships channels A+B now; Derive stays ring-fenced
  with a concrete three-step unlock chain (the missing piece is an
  Ethereum-consensus ZK verifier on Solana); CEXes stay out permanently.
• Custom-crypto track flagged for external review: an aggregation circuit
  for guardian-quorum verification, and a pre-specified HyperBFT
  light-client ask (blocked today on the verified fact that HyperCore
  state is not commitment-anchored anywhere).

Grounded in a deep-research pass (2026-06-10) with verified-primary vs
research-grade labeling inside the ADR; research-grade dependencies are
listed for re-verification before implementation.

Answers ADR 0002 open decision 2. No changes to ADRs 0001/0002 or the
program in this PR.

Closes #24

[coderabbitai]

Important

Review skipped

Draft detected.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: b4d178e0-8ca8-42a4-bc55-a1ad37f263ed

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch docs/nav-attestation-adr

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands.}