Stealthium

Inspiration

Managing blockchain wallets is intimidating for mainstream users, especially when it comes to private key security. We wanted to make self-custody as easy as logging in with your favorite social account, while still providing strong security through a simple PIN. Our goal: bring Web3 to everyone, not just crypto-natives.

What it does

Stealthium is a modern wallet dApp that lets users create, manage, and interact with blockchain wallets using their social accounts (email, username, or userId) for authentication. All sensitive actions—like approving tokens, transferring assets, or interacting with contracts—are protected by a user-chosen PIN. This approach combines the convenience of social login with the security of PIN-based authorization, eliminating the need for users to handle or even see their private keys.

How we built it

Frontend: Next.js (App Router), React, and Tailwind CSS for a unified, internationalized UI.

Authentication: Clerk for seamless social login and user management.

Wallet Operations: Chipi SDK for gasless blockchain interactions, with all actions gated by PIN entry.

Security Model: The PIN is used to unlock wallet operations, while the user’s social account provides identity and access control.

Backend: Chipi SDK and Cairo contracts.(Prisma ORM in the future).

UX: All wallet actions (approve, transfer, stake, withdraw) support multi-token and custom token input, with clear, English-only UI and documentation.

Challenges we ran into

Our partners are junior students and it is the first time that we try to build something which can interact with the real environment. So we meet some humorous problems. Two examples: When I installed the ^11.2.0 chipi sdk, and after several days my partners continuously download 11.6.0, though he has changed the package.json, some functions have changed, and it deeply mess up our cooperative code.

Another thing is that we have not realized that the hooks only provide one wallet to get, though much to create, until we test the pin to transfer with the newest wallet, and failed again and again. Finally we found the timestamp of the wallet and realized that we all forgot the pin we set initially....Uhhhhhh..After some time it suddenly occured to me, luckily.

Time is also a big challenge for us, we must keep a balance between studies and hacks.

Accomplishments that we're proud of

Seamless integration of social login, PIN-based security, and gasless transactions for all wallet actions.

Fully unified, modern, and internationalized UI/UX.

Support for multi-token and custom token operations across all wallet features.

Laying the groundwork for user-identity-based transfers, making wallets more social and user-friendly.

What we learned

Mainstream users expect Web2-style convenience and security—social login and PINs are familiar, while private keys and gas are not.

Abstracting away private key management and gas fees is key to onboarding the next wave of Web3 users.

Combining social identity with PIN-based authorization and gasless operations strikes a strong balance between usability and security.

What's next for Stealthium

Implementing transfers by user identity (userId, username, or email), making sending assets as easy as sending a message. That is the main thing we consider now.

Expanding support for more social login providers and multi-chain operations, add more functions with different contracts.

Further improving the onboarding experience and educating users about self-custody best practices.

Exploring advanced social recovery, account abstraction, and even more seamless gasless features.