Binance Square
Zyphron Toto
299 投稿

Zyphron Toto

Building my own future learning for my future and want to see a smile on my face as well as my love ones.
取引を発注
高頻度トレーダー
1.8年
67 フォロー
3.8K+ フォロワー
649 いいね
投稿
ポートフォリオ
·
--
確認済み
今日は @grvt_io のリクイディティスタックを掘り起こしていて、あることが完全に自分の流れを止めた。 「本当の深さ(depth)がどこに実在するのか」を追っていたんだ――GLP のバルト、RPI マーケットメイカーのクオートなど。すると @grvt_io d が Binance Wallet Booster キャンペーンを投下した。2026年7月10日 07:00 UTC、今まさに開始していて 17日まで継続。TGE当日に 1,500,000 $GRVT を分配。取引は不要。入金も不要。ただミッションをこなすだけ。 待って、ここが引っかかった。午前中ずっと、GLP へのアクセスがライフタイムの取引量でどうゲートされているかを整理してた(すでに取引しているほど、割り当て上限が大きくなる)。そして RPI の流動性は、ホワイトリストされたマーケットメイカー向けに静かに確保されていて、公の API フィードには一切出てこない。#GRVT の「本当の depth」は、取引量によって得られるか、もしくは選抜によって付与される。一方で、今週いちばん大きく見える「エンゲージメント」イベントは、それを全く必要としていない。 正直ちょっとおかしい。完全に別々の2つのレールが並行して走ってる――1つは、資本と取引量がより深いアクセスを買うレール。もう1つは、ウォレットアプリでタップするだけで初日からトークンが手に入るレール。どちらも、マーケティングが示唆するような意味で「流動性を追加する」ことは本質的に必要ない。 そこで気になるのは、$GRVT が21日に実際に取引され始めたとき、どちらのレールがより重要になるのかということ。段階的な取引量で積み上がった depth なのか、それともミッションリストに現れたウォレットたちなのか。 #grvt
今日は @grvt_io のリクイディティスタックを掘り起こしていて、あることが完全に自分の流れを止めた。
「本当の深さ(depth)がどこに実在するのか」を追っていたんだ――GLP のバルト、RPI マーケットメイカーのクオートなど。すると @grvt_io d が Binance Wallet Booster キャンペーンを投下した。2026年7月10日 07:00 UTC、今まさに開始していて 17日まで継続。TGE当日に 1,500,000 $GRVT を分配。取引は不要。入金も不要。ただミッションをこなすだけ。
待って、ここが引っかかった。午前中ずっと、GLP へのアクセスがライフタイムの取引量でどうゲートされているかを整理してた(すでに取引しているほど、割り当て上限が大きくなる)。そして RPI の流動性は、ホワイトリストされたマーケットメイカー向けに静かに確保されていて、公の API フィードには一切出てこない。#GRVT の「本当の depth」は、取引量によって得られるか、もしくは選抜によって付与される。一方で、今週いちばん大きく見える「エンゲージメント」イベントは、それを全く必要としていない。
正直ちょっとおかしい。完全に別々の2つのレールが並行して走ってる――1つは、資本と取引量がより深いアクセスを買うレール。もう1つは、ウォレットアプリでタップするだけで初日からトークンが手に入るレール。どちらも、マーケティングが示唆するような意味で「流動性を追加する」ことは本質的に必要ない。
そこで気になるのは、$GRVT が21日に実際に取引され始めたとき、どちらのレールがより重要になるのかということ。段階的な取引量で積み上がった depth なのか、それともミッションリストに現れたウォレットたちなのか。
#grvt
Newton Protocol のドキュメントと、Etherscan 上の $NEWT のコントラクト(0xD0eC…85D)を午後ずっと眺めていて、@NewtonProtocol authorization receipt をいじっていました。$NEWT それと、プライバシー設計についての何かが、そのあともずっと引っかかっていました。 Newton は、自社を「デフォルトでオンチェーン・ファイナンスを検証可能にするレイヤー」だと売りにしています――あらゆる vault 動作の前に行われるポリシーチェック、キュレーターが規制当局に渡せる署名済みの receipt。ですが、その receipt が実際にどう書き込まれるのか、オンチェーンに載るのは何なのかを追うと、オンチェーンにはハッシュのコミットメントと合否ビットだけが記録されます。AI によるリスクスコアリング、キュレーターの独自の閾値、そして PII――それらはすべて TEE または SP1 zkVM の回路の中に留まり、公開状態には決して触れません。 技術的には……まあ、それで問題ありません。機関は、コンプライアンスロジックがむき出しで存在するのは避けたいでしょう。でも、それが静かに「検証可能」の意味を狭めてしまいます。ある判断がルールを通過したことは確認できます。けれど、そのルール自体は見られないし、あるいはそれが、この仕組みを使うすべての vault に対して同じやり方で適用されたのかも分かりません。newton-policy-packs リポジトリと突き合わせても、結局同じギャップに着地しました――計算の証明ではなく、結果の証明です。 Snack はもう終わってるのに、まだこの件を噛み続けています。監査トレイル全体が「チェックが行われた」ことだけを証明するのなら……いったい誰が、チェックする側をチェックしているんでしょう? #Newt
Newton Protocol のドキュメントと、Etherscan 上の $NEWT のコントラクト(0xD0eC…85D)を午後ずっと眺めていて、@NewtonProtocol authorization receipt をいじっていました。$NEWT それと、プライバシー設計についての何かが、そのあともずっと引っかかっていました。
Newton は、自社を「デフォルトでオンチェーン・ファイナンスを検証可能にするレイヤー」だと売りにしています――あらゆる vault 動作の前に行われるポリシーチェック、キュレーターが規制当局に渡せる署名済みの receipt。ですが、その receipt が実際にどう書き込まれるのか、オンチェーンに載るのは何なのかを追うと、オンチェーンにはハッシュのコミットメントと合否ビットだけが記録されます。AI によるリスクスコアリング、キュレーターの独自の閾値、そして PII――それらはすべて TEE または SP1 zkVM の回路の中に留まり、公開状態には決して触れません。
技術的には……まあ、それで問題ありません。機関は、コンプライアンスロジックがむき出しで存在するのは避けたいでしょう。でも、それが静かに「検証可能」の意味を狭めてしまいます。ある判断がルールを通過したことは確認できます。けれど、そのルール自体は見られないし、あるいはそれが、この仕組みを使うすべての vault に対して同じやり方で適用されたのかも分かりません。newton-policy-packs リポジトリと突き合わせても、結局同じギャップに着地しました――計算の証明ではなく、結果の証明です。
Snack はもう終わってるのに、まだこの件を噛み続けています。監査トレイル全体が「チェックが行われた」ことだけを証明するのなら……いったい誰が、チェックする側をチェックしているんでしょう?
#Newt
記事
ニュートン・プロトコルが解放できる現実世界のユースケース今朝はなんだか相場が死んだように感じた――ああいう、灰色で横ばいの朝で、誰も本気で取引しているわけじゃなくて、ただ習慣でチャートを更新しているだけ。価格の値動きを見に行く気分にはならなかったので、代わりに別のうさぎ穴に入ってしまった:ニュートン・プロトコルの「現実世界でのユースケース」を挙げる人たちの話だ。RWAの決済、機関投資家向けのカストディ、エージェント同士の支払い、コンプライアンスに配慮したDeFiのレール――こういう、プロジェクトが従来の金融を食いにかかるつもりだと聞こえるようにしたいときに、いつも出てくるお決まりのリストだ。

ニュートン・プロトコルが解放できる現実世界のユースケース

今朝はなんだか相場が死んだように感じた――ああいう、灰色で横ばいの朝で、誰も本気で取引しているわけじゃなくて、ただ習慣でチャートを更新しているだけ。価格の値動きを見に行く気分にはならなかったので、代わりに別のうさぎ穴に入ってしまった:ニュートン・プロトコルの「現実世界でのユースケース」を挙げる人たちの話だ。RWAの決済、機関投資家向けのカストディ、エージェント同士の支払い、コンプライアンスに配慮したDeFiのレール――こういう、プロジェクトが従来の金融を食いにかかるつもりだと聞こえるようにしたいときに、いつも出てくるお決まりのリストだ。
集中型AIプラットフォームを、ニュートン・プロトコル($NEWT )が実際に提供しているものと比較していると、ずっと引っかかる一点がありました。 APIゲートされたモデレーションレイヤーのような集中型AI基盤は、デフォルトでは誰に対しても同じ仕組みで動きます。ガードレールにオプトインするわけではなく、ただ……そこにある(見えない)だけで、プラットフォームの説明を信じることになります。ニュートンの@NewtonProtocol に関する全体像は、その真逆です。検証可能な強制力——企業の主張を信じるのではなく、ニュートン・エクスプローラーで実際に確認できるアテステーション——です。 そこで、メインネットベータ(7月1日)以降に稼働しているものを調べました。VaultKitの最初の実運用での統合は、BaseおよびEthereum上でEulerに行われており、RedStoneの価格フィードとVaults.fyiのリスクデータをポリシー入力として使っています。いいですね。……ただし。キュレーターが配線して初めて動きます。バル ト(Vault)側がこれをオンにすることは強制されません。「設計による検証可能性」という文言は本物ですが、まだ多くのキュレーターが切り替えていない「オプトインのスイッチ」の隣に置かれているだけです。 調査の途中でコーヒーを飲みつつ、ずっと考え続けました——分散型だからといって自動的にデフォルトでオンになるわけではありません。単に、そのスイッチを握っているのが誰かが変わるだけのこともある。 それで、いまEuler上のどれくらいの数のVaultが実際にポリシーパックを取り付けているのか、逆に……SDKに接続しただけでアイドル状態のものがどれくらいあるのか、気になってきました。 #Newt
集中型AIプラットフォームを、ニュートン・プロトコル($NEWT )が実際に提供しているものと比較していると、ずっと引っかかる一点がありました。
APIゲートされたモデレーションレイヤーのような集中型AI基盤は、デフォルトでは誰に対しても同じ仕組みで動きます。ガードレールにオプトインするわけではなく、ただ……そこにある(見えない)だけで、プラットフォームの説明を信じることになります。ニュートンの@NewtonProtocol に関する全体像は、その真逆です。検証可能な強制力——企業の主張を信じるのではなく、ニュートン・エクスプローラーで実際に確認できるアテステーション——です。
そこで、メインネットベータ(7月1日)以降に稼働しているものを調べました。VaultKitの最初の実運用での統合は、BaseおよびEthereum上でEulerに行われており、RedStoneの価格フィードとVaults.fyiのリスクデータをポリシー入力として使っています。いいですね。……ただし。キュレーターが配線して初めて動きます。バル ト(Vault)側がこれをオンにすることは強制されません。「設計による検証可能性」という文言は本物ですが、まだ多くのキュレーターが切り替えていない「オプトインのスイッチ」の隣に置かれているだけです。
調査の途中でコーヒーを飲みつつ、ずっと考え続けました——分散型だからといって自動的にデフォルトでオンになるわけではありません。単に、そのスイッチを握っているのが誰かが変わるだけのこともある。
それで、いまEuler上のどれくらいの数のVaultが実際にポリシーパックを取り付けているのか、逆に……SDKに接続しただけでアイドル状態のものがどれくらいあるのか、気になってきました。
#Newt
記事
翻訳参照
Comparing Newton Protocol with Traditional AI InfrastructureSpent most of this morning just scrolling, not really trading. Market's in that in-between mood where nobody wants to commit to a direction, so I ended up doing what I always do when I'm bored and slightly avoiding my own watchlist — went down a rabbit hole on a project instead. Newton Protocol, specifically the "verifiable AI infrastructure" framing. I'd seen a bunch of comparison threads lately, people lining it up against traditional AI infra — AWS-style model serving, centralized inference APIs, that whole stack — and the pitch is always some version of "same thing, but verifiable." So I started actually checking what that verifiability looks like when it's running, not when it's being described. And something didn't line up the way I expected. The comparisons I kept seeing treat Newton as a category shift — like traditional AI infra is a black box and Newton is the glass box version, enforcement built into the pipes. That's the mental model everyone's using. But when I looked at how the zkPermissions and TEE enforcement actually get triggered, it's not a default state of the network. It's something a curator or vault operator has to opt into, policy pack by policy pack. Which means the "verifiable" part isn't a property of Newton as infrastructure — it's a property of specific configurations that specific people choose to turn on. So the comparison to traditional AI infra is kind of… backwards? Or at least incomplete. If a vault operator doesn't opt in, what you're running is functionally identical to traditional infra — same trust assumptions, same reliance on the operator behaving well, just with a verifiability option sitting unused next to it. People are comparing "Newton at its best" to "traditional infra at its default," which isn't really a fair fight. It's comparing a feature to a category. Here's the part that bothers me a bit more the longer I sit with it. If enforcement is opt-in, then the actual distribution of "verified vs. not verified" activity across the network becomes the real story — and I haven't seen anyone publish that number. Not adoption of the protocol, not TVL, not integrations. The percentage of vaults actually running policy enforcement versus just sitting on the base layer. Without that, "verifiable by design" is a capability claim, not a usage claim, and those get treated as the same thing constantly in how this gets marketed. I'm not fully convinced this holds up once there's real money and real friction involved, either. Opt-in security features have a rough history in crypto — multisig thresholds people don't bother raising, audit recommendations that sit in a repo unimplemented, permission systems that exist but default to the most permissive setting because that's what shipped first. There's no obvious reason curators would behave differently here, especially if the enforcement layer adds latency or cost to inference calls. Verifiability that requires someone to actively choose the harder path tends to get chosen by exactly the people who least need convincing, and skipped by everyone else. Which is sort of funny when you think about where the risk actually concentrates. The vaults most likely to skip enforcement — smaller, less scrutinized, moving faster — are probably the ones where you'd want verifiability the most. The ones already doing it properly were probably going to behave fine anyway. Doesn't mean the architecture is bad. Having the option at all is more than most "AI x crypto" projects offer, and the RedStone oracle integration and the vaultsfyi tooling suggest there's real infrastructure thinking happening under the hood, not just a narrative wrapped around an API call. I just think the comparison to traditional AI infra needs an asterisk that isn't in most of the threads I've read. It's not "Newton replaces the old model." It's "Newton coexists with the old model, and which one you're actually using depends on a setting most people won't check." @NewtonProtocol #Newt $NEWT

Comparing Newton Protocol with Traditional AI Infrastructure

Spent most of this morning just scrolling, not really trading. Market's in that in-between mood where nobody wants to commit to a direction, so I ended up doing what I always do when I'm bored and slightly avoiding my own watchlist — went down a rabbit hole on a project instead.
Newton Protocol, specifically the "verifiable AI infrastructure" framing. I'd seen a bunch of comparison threads lately, people lining it up against traditional AI infra — AWS-style model serving, centralized inference APIs, that whole stack — and the pitch is always some version of "same thing, but verifiable." So I started actually checking what that verifiability looks like when it's running, not when it's being described.
And something didn't line up the way I expected.
The comparisons I kept seeing treat Newton as a category shift — like traditional AI infra is a black box and Newton is the glass box version, enforcement built into the pipes. That's the mental model everyone's using. But when I looked at how the zkPermissions and TEE enforcement actually get triggered, it's not a default state of the network. It's something a curator or vault operator has to opt into, policy pack by policy pack. Which means the "verifiable" part isn't a property of Newton as infrastructure — it's a property of specific configurations that specific people choose to turn on.
So the comparison to traditional AI infra is kind of… backwards? Or at least incomplete. If a vault operator doesn't opt in, what you're running is functionally identical to traditional infra — same trust assumptions, same reliance on the operator behaving well, just with a verifiability option sitting unused next to it. People are comparing "Newton at its best" to "traditional infra at its default," which isn't really a fair fight. It's comparing a feature to a category.
Here's the part that bothers me a bit more the longer I sit with it. If enforcement is opt-in, then the actual distribution of "verified vs. not verified" activity across the network becomes the real story — and I haven't seen anyone publish that number. Not adoption of the protocol, not TVL, not integrations. The percentage of vaults actually running policy enforcement versus just sitting on the base layer. Without that, "verifiable by design" is a capability claim, not a usage claim, and those get treated as the same thing constantly in how this gets marketed.
I'm not fully convinced this holds up once there's real money and real friction involved, either. Opt-in security features have a rough history in crypto — multisig thresholds people don't bother raising, audit recommendations that sit in a repo unimplemented, permission systems that exist but default to the most permissive setting because that's what shipped first. There's no obvious reason curators would behave differently here, especially if the enforcement layer adds latency or cost to inference calls. Verifiability that requires someone to actively choose the harder path tends to get chosen by exactly the people who least need convincing, and skipped by everyone else.
Which is sort of funny when you think about where the risk actually concentrates. The vaults most likely to skip enforcement — smaller, less scrutinized, moving faster — are probably the ones where you'd want verifiability the most. The ones already doing it properly were probably going to behave fine anyway.
Doesn't mean the architecture is bad. Having the option at all is more than most "AI x crypto" projects offer, and the RedStone oracle integration and the vaultsfyi tooling suggest there's real infrastructure thinking happening under the hood, not just a narrative wrapped around an API call. I just think the comparison to traditional AI infra needs an asterisk that isn't in most of the threads I've read. It's not "Newton replaces the old model." It's "Newton coexists with the old model, and which one you're actually using depends on a setting most people won't check."
@NewtonProtocol #Newt $NEWT
記事
翻訳参照
Cross-Chain Possibilities Within the Newton Protocol EcosystemSpent most of this morning just staring at nothing in particular. Market's been doing that sideways grind where nobody wants to commit to a direction, so instead of watching candles I ended up back in the Newton docs, mostly because someone in a Discord I'm in mentioned "cross-chain" like it was obviously a good thing. I wasn't planning to write anything today. So I started re-reading the authorization layer stuff, the part about how a policy travels with the transaction intent to whatever destination chain it's headed to. And there's a line in their materials that I must have skimmed past three times before it actually landed: write a policy once, and the same rules enforce across every chain. Newton's currently live on Base and Ethereum, with more chain support said to be coming. On first read that sounds like exactly what you'd want. One rulebook, portable everywhere, no rewriting compliance logic every time a curator wants to deploy on a new chain. Efficient. Clean. The kind of thing that gets quoted in a thread as proof the infrastructure is maturing. But then I sat with it a bit longer and something started nagging at me. "The same policy enforces across every chain" — okay, but only for the vault that actually wrote and attached that policy in the first place. Nothing about cross-chain support makes enforcement automatically show up on a vault that never opted in. It just means the option to reuse a policy gets easier to carry from Base to wherever comes next. The gap I've written about before — that Newton's enforcement is something a curator turns on, not something the network turns on for everyone — doesn't close as more chains get added. It just gets copied onto more surfaces. I thought expanding chain support was Newton solving fragmentation. What I think is actually happening is Newton making it cheaper to replicate the same unresolved choice — enforce or don't — across a wider footprint. More chains doesn't mean more coverage. It means more instances of the same fork in the road, each one still depending on whether that specific curator bothered to wire VaultKit in. Here's the part that actually bothers me, though. If depositors start hearing "cross-chain" and quietly translate that into "verified everywhere Newton operates," that's a real gap between the narrative and what's mechanically true. A vault on Base with a policy pack attached and a vault on some future chain with nothing attached both exist under the same "Newton is live here" umbrella. Only one of them has anything actually checking transactions before they settle. I don't think that distinction is hidden exactly — it's in the docs if you read closely enough — but it's not the thing that gets repeated when people talk about the protocol expanding. Maybe I'm being too skeptical about this. Multi-chain policy portability genuinely does remove friction for curators who want to expand without rebuilding their compliance stack from scratch, and that's not nothing. It probably does mean adoption spreads faster than it would otherwise. I just keep landing on the same question — does faster expansion of an opt-in system produce more enforcement in absolute terms, or does it mostly produce more unenforced vaults sitting next to enforced ones, just spread across a longer list of chains now. This probably matters most for anyone allocating into a "Newton-integrated" vault based on the name alone rather than checking the actual policy pack attached to that specific vault on that specific chain. The label doesn't tell you which side of the fork you're on. You'd have to go look. @NewtonProtocol #Newt $NEWT

Cross-Chain Possibilities Within the Newton Protocol Ecosystem

Spent most of this morning just staring at nothing in particular. Market's been doing that sideways grind where nobody wants to commit to a direction, so instead of watching candles I ended up back in the Newton docs, mostly because someone in a Discord I'm in mentioned "cross-chain" like it was obviously a good thing. I wasn't planning to write anything today.
So I started re-reading the authorization layer stuff, the part about how a policy travels with the transaction intent to whatever destination chain it's headed to. And there's a line in their materials that I must have skimmed past three times before it actually landed: write a policy once, and the same rules enforce across every chain. Newton's currently live on Base and Ethereum, with more chain support said to be coming.
On first read that sounds like exactly what you'd want. One rulebook, portable everywhere, no rewriting compliance logic every time a curator wants to deploy on a new chain. Efficient. Clean. The kind of thing that gets quoted in a thread as proof the infrastructure is maturing.
But then I sat with it a bit longer and something started nagging at me. "The same policy enforces across every chain" — okay, but only for the vault that actually wrote and attached that policy in the first place. Nothing about cross-chain support makes enforcement automatically show up on a vault that never opted in. It just means the option to reuse a policy gets easier to carry from Base to wherever comes next. The gap I've written about before — that Newton's enforcement is something a curator turns on, not something the network turns on for everyone — doesn't close as more chains get added. It just gets copied onto more surfaces.
I thought expanding chain support was Newton solving fragmentation. What I think is actually happening is Newton making it cheaper to replicate the same unresolved choice — enforce or don't — across a wider footprint. More chains doesn't mean more coverage. It means more instances of the same fork in the road, each one still depending on whether that specific curator bothered to wire VaultKit in.
Here's the part that actually bothers me, though. If depositors start hearing "cross-chain" and quietly translate that into "verified everywhere Newton operates," that's a real gap between the narrative and what's mechanically true. A vault on Base with a policy pack attached and a vault on some future chain with nothing attached both exist under the same "Newton is live here" umbrella. Only one of them has anything actually checking transactions before they settle. I don't think that distinction is hidden exactly — it's in the docs if you read closely enough — but it's not the thing that gets repeated when people talk about the protocol expanding.
Maybe I'm being too skeptical about this. Multi-chain policy portability genuinely does remove friction for curators who want to expand without rebuilding their compliance stack from scratch, and that's not nothing. It probably does mean adoption spreads faster than it would otherwise. I just keep landing on the same question — does faster expansion of an opt-in system produce more enforcement in absolute terms, or does it mostly produce more unenforced vaults sitting next to enforced ones, just spread across a longer list of chains now.
This probably matters most for anyone allocating into a "Newton-integrated" vault based on the name alone rather than checking the actual policy pack attached to that specific vault on that specific chain. The label doesn't tell you which side of the fork you're on. You'd have to go look.
@NewtonProtocol #Newt $NEWT
確認済み
翻訳参照
Newton Protocol got me thinking about real-world industries today — specifically lending — and something in the VaultKit docs made me pause mid-scroll. @NewtonProtocol built this whole "verifiable AI execution" story around RedStone's price feeds now sitting inside the policy engine (integration went live alongside mainnet beta, June 23, Base and Ethereum). Every withdrawal or borrow against a vault gets checked against live RedStone pricing before it settles, and $NEWT spits out a signed attestation either way. Sounds like exactly what lending, insurance, RWA custody — all the industries that keep saying they need "verifiable" rails — have been asking for. Pulled up the newton-policy-packs repo on GitHub to see how it's actually wired… and hold up — the RedStone check only fires if the vault curator explicitly writes it into their policy pack. Nothing forces it. A curator can spin up a Morpho vault on VaultKit and never touch the oracle policy at all. Kept re-reading that part because it didn't match how I'd pitched this to myself an hour earlier. I'd assumed "verifiable execution" meant every vault action gets checked against something real by default. It doesn't. It means the tooling exists, and whoever's running the vault decides how much of it to turn on. So which industries actually adopt the strict version first — the ones under regulatory pressure, or the ones with depositors who know to ask? #Newt
Newton Protocol got me thinking about real-world industries today — specifically lending — and something in the VaultKit docs made me pause mid-scroll. @NewtonProtocol built this whole "verifiable AI execution" story around RedStone's price feeds now sitting inside the policy engine (integration went live alongside mainnet beta, June 23, Base and Ethereum). Every withdrawal or borrow against a vault gets checked against live RedStone pricing before it settles, and $NEWT spits out a signed attestation either way.
Sounds like exactly what lending, insurance, RWA custody — all the industries that keep saying they need "verifiable" rails — have been asking for. Pulled up the newton-policy-packs repo on GitHub to see how it's actually wired… and hold up — the RedStone check only fires if the vault curator explicitly writes it into their policy pack. Nothing forces it. A curator can spin up a Morpho vault on VaultKit and never touch the oracle policy at all.
Kept re-reading that part because it didn't match how I'd pitched this to myself an hour earlier. I'd assumed "verifiable execution" meant every vault action gets checked against something real by default. It doesn't. It means the tooling exists, and whoever's running the vault decides how much of it to turn on.
So which industries actually adopt the strict version first — the ones under regulatory pressure, or the ones with depositors who know to ask?
#Newt
@NewtonProtocol repoの前に1時間くらい座り込んでたのに、ある一点だけがどうしても離れなかった。 今夜また掘り起こしてみた — 今稼働している“実際のリスト”:リスクシグナルはvaults.fyi、価格の乖離はRedStone、制裁はChainalysis、不正なtx検出はBlockaid。だいたい8つのパックで、どれも実在のデータ提供者に紐づいていて、どれも任意。 スクロールの途中で俺を止めたのはこの点。売り文句は「AIエージェントには承認じゃなくて“強制”が必要」— 鍵をボットに渡して、うまくいくことを祈るのはもうやめよう、という話。筋は通ってる。けど、エージェントの運用者が“エージェントがバルトに触る前に”実際にこれらのパックをどれかを付けることを、何も強制していない。キュレーターが何を構成に入れるか選ぶし、入れないこともできる。Newton AVSは、指示された範囲しかチェックしない。 つまり「分散された信頼」の部分は本物 — リステークされたオペレーター、TEEのアテステーション、誰でも$NEWT Explorerから引っ張れる“証拠(レシート)”。ここは宣伝じゃない。宣伝っぽい(隣接する)のは、“あらゆるエージェントのアクションにデフォルトで”そうなるという示唆。デフォルトではない。誰かがオプトインした場所で起きる。 だから俺は、暗号のことよりも、どのエージェントがガードレールを完全にすっ飛ばしたかを実際に検証しているのが誰なのか、気になってきた — 追跡してる人いる?それとも、証拠を見せる人たちをただ信じてるだけなの? #Newt
@NewtonProtocol repoの前に1時間くらい座り込んでたのに、ある一点だけがどうしても離れなかった。
今夜また掘り起こしてみた — 今稼働している“実際のリスト”:リスクシグナルはvaults.fyi、価格の乖離はRedStone、制裁はChainalysis、不正なtx検出はBlockaid。だいたい8つのパックで、どれも実在のデータ提供者に紐づいていて、どれも任意。
スクロールの途中で俺を止めたのはこの点。売り文句は「AIエージェントには承認じゃなくて“強制”が必要」— 鍵をボットに渡して、うまくいくことを祈るのはもうやめよう、という話。筋は通ってる。けど、エージェントの運用者が“エージェントがバルトに触る前に”実際にこれらのパックをどれかを付けることを、何も強制していない。キュレーターが何を構成に入れるか選ぶし、入れないこともできる。Newton AVSは、指示された範囲しかチェックしない。
つまり「分散された信頼」の部分は本物 — リステークされたオペレーター、TEEのアテステーション、誰でも$NEWT Explorerから引っ張れる“証拠(レシート)”。ここは宣伝じゃない。宣伝っぽい(隣接する)のは、“あらゆるエージェントのアクションにデフォルトで”そうなるという示唆。デフォルトではない。誰かがオプトインした場所で起きる。
だから俺は、暗号のことよりも、どのエージェントがガードレールを完全にすっ飛ばしたかを実際に検証しているのが誰なのか、気になってきた — 追跡してる人いる?それとも、証拠を見せる人たちをただ信じてるだけなの?
#Newt
記事
次世代のWeb3 AIの中でニュートン・プロトコルがどこに位置づけられうるかの、前向きな分析。市場は午後ずっと横ばいだった。あの、15分ごとにチャートを見て「何も変わってない」ことを確認するような、うっとうしい横ばいだ。4時ごろには諦めて、まったく別の迷宮に入っていった——ニュートンの実際のプロダクトページを読むことで、また別のスレッドでそれについて語られているのではなく。 私は以前にもニュートンについて書いたことがある。主にヴォルトのキュレーター側の話だ。だが今日は、特にAIエージェントの枠組みについて調べていた。というのも、誰もが突然「Web3 AI」が次のサイクルの物語だと言い出していて、ニュートンは、自律エージェントをオンチェーンに解き放っても安全にする“その仕組み”として名前を挙げられ続けているからだ。そこで私は実際に、そのユースケース向けに彼らが用意しているものを読んだ。支出上限、承認された受取人リスト、命令(マンダート)の強制、プロンプトインジェクションへの防御——それらは、取引が決済された“後”ではなく、決済される前にすべて強制される。

次世代のWeb3 AIの中でニュートン・プロトコルがどこに位置づけられうるかの、前向きな分析。

市場は午後ずっと横ばいだった。あの、15分ごとにチャートを見て「何も変わってない」ことを確認するような、うっとうしい横ばいだ。4時ごろには諦めて、まったく別の迷宮に入っていった——ニュートンの実際のプロダクトページを読むことで、また別のスレッドでそれについて語られているのではなく。
私は以前にもニュートンについて書いたことがある。主にヴォルトのキュレーター側の話だ。だが今日は、特にAIエージェントの枠組みについて調べていた。というのも、誰もが突然「Web3 AI」が次のサイクルの物語だと言い出していて、ニュートンは、自律エージェントをオンチェーンに解き放っても安全にする“その仕組み”として名前を挙げられ続けているからだ。そこで私は実際に、そのユースケース向けに彼らが用意しているものを読んだ。支出上限、承認された受取人リスト、命令(マンダート)の強制、プロンプトインジェクションへの防御——それらは、取引が決済された“後”ではなく、決済される前にすべて強制される。
記事
翻訳参照
How Newton Protocol Could Transform DeFi AutomationI started looking at Newton again, mostly because of the July 24 unlock coming up (17.84M NEWT, about 1.8% of supply) and wanted to see what the team's been shipping ahead of it. Their pitch right now is basically "compliance-as-code" — automation and agent transactions get checked against policies before execution, and the checks get turned into verifiable receipts anyone can look up. Fine. Sounds solid. Everyone's repeating some version of "trustless automation" when they talk about it. But then I actually sat with how the policy layer works, and something clicked that I hadn't clocked before. The policies aren't network-wide. They're written by whoever builds the integration. A DAO, a stablecoin issuer, an agent developer — they define their own Rego rules, decide what gets checked, decide what counts as compliant. Newton's operators just evaluate whatever rules got handed to them and generate the proof. Which means "verifiable enforcement" isn't something that happens to a transaction by default — it's something a builder has to choose to wire in, and choose what it actually enforces. I thought that was a technicality at first. Like, okay, sure, someone has to write the rules, that's how policy engines work. But actually — no, it matters more than that, because the entire marketing angle is "automation you can trust by default." That's not what's happening. What's happening is automation you can trust if the curator who deployed the policy bothered to make it meaningful. Two integrations running on the same Newton rails could have wildly different enforcement depth, and from the outside, both would produce a "verified" receipt. Here's the part that bothers me. If the receipt just proves "the policy that was written got evaluated correctly," that's a much weaker claim than "this transaction was safe." A lazy or thin policy still produces a clean, verifiable attestation. It's cryptographically honest and practically meaningless, and I don't think most users scrolling past a "verified" badge are going to sit down and read the Rego file to check. I'm not fully convinced this holds up once the Verifiable Automation Marketplace actually launches either. Right now it's mostly the Recurring Buy agent live, low stakes, small blast radius if a policy is weak. But the whole roadmap is agents composing other agents, swarms of them acting semi-autonomously. If enforcement quality varies integration by integration, and now agents are stacking on top of each other, a shallow policy at the bottom of that stack doesn't stay contained. It's the kind of failure mode that looks fine in every individual audit and then breaks somewhere nobody was watching, because nobody's actual job was to standardize what "verified" needs to mean across the ecosystem. I keep going back and forth on whether this is a real flaw or just... how policy-based systems always work. Legal contracts are the same way — a contract is only as good as what's written into it, and "legally binding" doesn't mean "fair." Maybe Newton's just importing that same logic onchain and I'm treating it like a bug when it's actually just accurately reflecting reality. But at least with law there's precedent, courts, appeals. Here it's whoever wrote the Rego file, full stop. This matters most for the institutional side, honestly — stablecoin issuers and RWA platforms are exactly who Newton's courting, and those are the actors most likely to want compliance theater over compliance substance, not because they're bad actors but because thin policies are cheaper to write and still tick the "verifiable" box for a listing or a partner requirement. @NewtonProtocol $NEWT #Newt

How Newton Protocol Could Transform DeFi Automation

I started looking at Newton again, mostly because of the July 24 unlock coming up (17.84M NEWT, about 1.8% of supply) and wanted to see what the team's been shipping ahead of it. Their pitch right now is basically "compliance-as-code" — automation and agent transactions get checked against policies before execution, and the checks get turned into verifiable receipts anyone can look up. Fine. Sounds solid. Everyone's repeating some version of "trustless automation" when they talk about it.
But then I actually sat with how the policy layer works, and something clicked that I hadn't clocked before.
The policies aren't network-wide. They're written by whoever builds the integration. A DAO, a stablecoin issuer, an agent developer — they define their own Rego rules, decide what gets checked, decide what counts as compliant. Newton's operators just evaluate whatever rules got handed to them and generate the proof. Which means "verifiable enforcement" isn't something that happens to a transaction by default — it's something a builder has to choose to wire in, and choose what it actually enforces.
I thought that was a technicality at first. Like, okay, sure, someone has to write the rules, that's how policy engines work. But actually — no, it matters more than that, because the entire marketing angle is "automation you can trust by default." That's not what's happening. What's happening is automation you can trust if the curator who deployed the policy bothered to make it meaningful. Two integrations running on the same Newton rails could have wildly different enforcement depth, and from the outside, both would produce a "verified" receipt.
Here's the part that bothers me. If the receipt just proves "the policy that was written got evaluated correctly," that's a much weaker claim than "this transaction was safe." A lazy or thin policy still produces a clean, verifiable attestation. It's cryptographically honest and practically meaningless, and I don't think most users scrolling past a "verified" badge are going to sit down and read the Rego file to check.
I'm not fully convinced this holds up once the Verifiable Automation Marketplace actually launches either. Right now it's mostly the Recurring Buy agent live, low stakes, small blast radius if a policy is weak. But the whole roadmap is agents composing other agents, swarms of them acting semi-autonomously. If enforcement quality varies integration by integration, and now agents are stacking on top of each other, a shallow policy at the bottom of that stack doesn't stay contained. It's the kind of failure mode that looks fine in every individual audit and then breaks somewhere nobody was watching, because nobody's actual job was to standardize what "verified" needs to mean across the ecosystem.
I keep going back and forth on whether this is a real flaw or just... how policy-based systems always work. Legal contracts are the same way — a contract is only as good as what's written into it, and "legally binding" doesn't mean "fair." Maybe Newton's just importing that same logic onchain and I'm treating it like a bug when it's actually just accurately reflecting reality. But at least with law there's precedent, courts, appeals. Here it's whoever wrote the Rego file, full stop.
This matters most for the institutional side, honestly — stablecoin issuers and RWA platforms are exactly who Newton's courting, and those are the actors most likely to want compliance theater over compliance substance, not because they're bad actors but because thin policies are cheaper to write and still tick the "verifiable" box for a listing or a partner requirement.
@NewtonProtocol $NEWT #Newt
翻訳参照
Just spent an hour in the @NewtonProtocol VaultKit docs and repo, and one line kept nagging at me: a curator "composes their policy from these building blocks the way you'd assemble anything from parts." That's from the July 1 VaultKit launch post — the same day Magic Newton Foundation open-sourced the policy packs. Here's the thing that stopped me mid-scroll. The packs are genuinely solid — Chainalysis for sanctions, SumSub for identity, Blockaid for malicious tx detection, RedStone for oracle divergence. Real coverage. But every single one of them is opt-in. Nothing in the vault contract forces a curator to wire in the compliance packs vs. just the yield/risk ones. A vault can ship "Newton-secured" and still be running with zero identity or sanctions screening turned on, because nobody's required to compose the full stack. Hmm… I went back and forth on whether this is a bug or just how modular systems have to work. Composability kind of demands optionality by design. But the marketing language ("enforceable," "verifiable," "onchain policy layer") reads like a floor, when in practice it's more like a menu. Makes me wonder how many depositors are checking which packs a vault actually wired in, versus just trusting the Newton name on the label. $NEWT #Newt
Just spent an hour in the @NewtonProtocol VaultKit docs and repo, and one line kept nagging at me: a curator "composes their policy from these building blocks the way you'd assemble anything from parts." That's from the July 1 VaultKit launch post — the same day Magic Newton Foundation open-sourced the policy packs.
Here's the thing that stopped me mid-scroll. The packs are genuinely solid — Chainalysis for sanctions, SumSub for identity, Blockaid for malicious tx detection, RedStone for oracle divergence. Real coverage. But every single one of them is opt-in. Nothing in the vault contract forces a curator to wire in the compliance packs vs. just the yield/risk ones. A vault can ship "Newton-secured" and still be running with zero identity or sanctions screening turned on, because nobody's required to compose the full stack.
Hmm… I went back and forth on whether this is a bug or just how modular systems have to work. Composability kind of demands optionality by design. But the marketing language ("enforceable," "verifiable," "onchain policy layer") reads like a floor, when in practice it's more like a menu.
Makes me wonder how many depositors are checking which packs a vault actually wired in, versus just trusting the Newton name on the label.
$NEWT #Newt
記事
ニュートン・プロトコルを動かす経済的インセンティブ今朝ずっと相場が横ばいだ。あの“更新して3回見ても何も1%も動かない”みたいな、妙に死んだ感じの横ばいでね。だからチャートを閉じて、退屈しのぎにニュートンのヴォールトのドキュメントをまた遡って読み返し始めたんだ。たぶんもう分かってるつもりだった内容を、改めて読み直していく感じで。 結局、ポリシー・スタックのページにたどり着いた。RedStone、Credora、Webacy、Chainalysis Hexagate……ニュートンが自慢げに出してくるパートナー一覧のことだ。そして前に二度ほど流し読みして、最後はちゃんと理解できたものがあった。つまり、これらはニュートンがネットワークを守るために支払って雇う“サービス提供者”ではない。ニュートンに接続することを選ぶ“キュレーター”から報酬を受け取る提供者なんだ。

ニュートン・プロトコルを動かす経済的インセンティブ

今朝ずっと相場が横ばいだ。あの“更新して3回見ても何も1%も動かない”みたいな、妙に死んだ感じの横ばいでね。だからチャートを閉じて、退屈しのぎにニュートンのヴォールトのドキュメントをまた遡って読み返し始めたんだ。たぶんもう分かってるつもりだった内容を、改めて読み直していく感じで。
結局、ポリシー・スタックのページにたどり着いた。RedStone、Credora、Webacy、Chainalysis Hexagate……ニュートンが自慢げに出してくるパートナー一覧のことだ。そして前に二度ほど流し読みして、最後はちゃんと理解できたものがあった。つまり、これらはニュートンがネットワークを守るために支払って雇う“サービス提供者”ではない。ニュートンに接続することを選ぶ“キュレーター”から報酬を受け取る提供者なんだ。
翻訳参照
I finally went digging through @NewtonProtocol actual policy-pack repo instead of just reading the blog post. Here's the thing that stopped me mid-scroll about $NEWT — the "policy stack" everyone talks about (Chainalysis Hexagate, RedStone, vaults.fyi, Credora, Webacy) isn't baked into the vault. It's a menu. The curator opens a Newton Protocol dashboard and picks which checks apply, and RedStone only got wired into Newton Protocol as a price-feed dependency a few days ago, per their own integration post. Before that, any collateral rule referencing "live market conditions" inside Newton Protocol had nothing verifiable behind it. That's not a bug in Newton Protocol, just... worth sitting with. Went and checked the github repo (newt-foundation/newton-policy-packs) too — it's open source, sure, but for Newton Protocol, open source and enforced by default are two very different sentences. A curator can fork the Newton Protocol repo, ship a vault, and just not attach the sanctions pack. Nothing stops that. The chain won't know the difference between "Newton Protocol enforced" and "Newton Protocol skipped" unless someone actually checks the operator logs. I keep going back and forth on whether this is a rollout-phase thing Newton Protocol tightens later, or just... the permanent shape of it. Curious which vaults end up running the full Newton Protocol stack versus the bare minimum to say "we integrated it. #Newt
I finally went digging through @NewtonProtocol actual policy-pack repo instead of just reading the blog post.
Here's the thing that stopped me mid-scroll about $NEWT — the "policy stack" everyone talks about (Chainalysis Hexagate, RedStone, vaults.fyi, Credora, Webacy) isn't baked into the vault. It's a menu. The curator opens a Newton Protocol dashboard and picks which checks apply, and RedStone only got wired into Newton Protocol as a price-feed dependency a few days ago, per their own integration post. Before that, any collateral rule referencing "live market conditions" inside Newton Protocol had nothing verifiable behind it. That's not a bug in Newton Protocol, just... worth sitting with.
Went and checked the github repo (newt-foundation/newton-policy-packs) too — it's open source, sure, but for Newton Protocol, open source and enforced by default are two very different sentences. A curator can fork the Newton Protocol repo, ship a vault, and just not attach the sanctions pack. Nothing stops that. The chain won't know the difference between "Newton Protocol enforced" and "Newton Protocol skipped" unless someone actually checks the operator logs.
I keep going back and forth on whether this is a rollout-phase thing Newton Protocol tightens later, or just... the permanent shape of it. Curious which vaults end up running the full Newton Protocol stack versus the bare minimum to say "we integrated it.
#Newt
一部該当
翻訳参照
Been digging into @NewtonProtocol mainnet beta rollout — the blog post on July 1 confirming live enforcement on Base and Ethereum, Euler integration live too. $NEWT . Read through it twice because something felt off, in a good way — this isn't a testnet demo anymore. Real vaults, real attestations, recorded on the Newton Explorer for anyone to check. Here's the thing that actually stuck with me though. The attestation only proves the written policy was followed. It says nothing about whether the policy itself was any good. A curator can write a razor-thin Rego policy — bare minimum jurisdiction check, nothing else — and Newton will still issue a clean cryptographic receipt. Same green light as a curator who wrote something genuinely airtight. The chain can't tell you if the rules were strict. Only that whatever rules existed got enforced. Went down a small rabbit hole trying to find a policy registry that shows strictness tiers or minimum standards across vaults. Couldn't find one. Might just be early — mainnet beta, give it time. Or maybe that's structurally never coming, because policy authorship staying fully in curator hands is kind of the point. Verifiable enforcement of a weak rule and verifiable enforcement of a strong one look identical on the explorer. Does that converge as more institutional data providers plug in, or does it stay a permanent blind spot? #Newt
Been digging into @NewtonProtocol mainnet beta rollout — the blog post on July 1 confirming live enforcement on Base and Ethereum, Euler integration live too. $NEWT . Read through it twice because something felt off, in a good way — this isn't a testnet demo anymore. Real vaults, real attestations, recorded on the Newton Explorer for anyone to check.
Here's the thing that actually stuck with me though. The attestation only proves the written policy was followed. It says nothing about whether the policy itself was any good. A curator can write a razor-thin Rego policy — bare minimum jurisdiction check, nothing else — and Newton will still issue a clean cryptographic receipt. Same green light as a curator who wrote something genuinely airtight. The chain can't tell you if the rules were strict. Only that whatever rules existed got enforced.
Went down a small rabbit hole trying to find a policy registry that shows strictness tiers or minimum standards across vaults. Couldn't find one. Might just be early — mainnet beta, give it time. Or maybe that's structurally never coming, because policy authorship staying fully in curator hands is kind of the point.
Verifiable enforcement of a weak rule and verifiable enforcement of a strong one look identical on the explorer. Does that converge as more institutional data providers plug in, or does it stay a permanent blind spot?
#Newt
記事
ニュートン・プロトコルの背後にある暗号学的な基盤チャートを見つめる気分ではなかったので、最近ずっとやっていること――プロジェクトのドキュメントを改めて読み返すことにしました。 今回の話題はニュートン・プロトコルでした。特に、皆が繰り返し口にするあの部分――「暗号学的に検証可能な強制」です。今週は同じフレーズを5つくらい別々のスレッドで見かけたのに、仕組みとしてそれが何を意味するのかは実際には立ち止まって考えたことがありませんでした。そこで好奇心から、zkPermissions と TEE のセットアップに関する技術ドキュメントを開き、本当に何が検証されているのかを確かめてみました。

ニュートン・プロトコルの背後にある暗号学的な基盤

チャートを見つめる気分ではなかったので、最近ずっとやっていること――プロジェクトのドキュメントを改めて読み返すことにしました。
今回の話題はニュートン・プロトコルでした。特に、皆が繰り返し口にするあの部分――「暗号学的に検証可能な強制」です。今週は同じフレーズを5つくらい別々のスレッドで見かけたのに、仕組みとしてそれが何を意味するのかは実際には立ち止まって考えたことがありませんでした。そこで好奇心から、zkPermissions と TEE のセットアップに関する技術ドキュメントを開き、本当に何が検証されているのかを確かめてみました。
翻訳参照
NEWT ticking over $6.77M in 24h volume today, up 15.4% in a day — I was mid-scroll through the Newton Explorer checking recent policy attestations when I noticed the spike and got curious what's actually driving it… turns out most of that volume is just spot rotation, not new automation flows through the AVS. That's the thing about @NewtonProtocol that stuck with me after digging through the last few days of contract interactions. The "verifiable enforcement" pitch sounds like every transaction gets policy-checked by default. Reality — zkPermissions and TEE attestation only fire when a builder explicitly wires their contract to route through Newton's Rego policies. No opt-in, no verification layer touches the tx. Circulating supply sits around 288.46M $NEWT right now, and most of the wallets I traced were just moving tokens ahead of the next unlock, not triggering any policy evaluation at all. So the "credible neutrality" framing is real, but only for the subset of builders who actually integrate it. Everyone else is just... using the chain like normal. Grabbed my snack thinking about this — feels less like a default safety net and more like a feature you have to reach for. Makes me wonder how much of the current volume ever touches the verification layer at all. #Newt
NEWT ticking over $6.77M in 24h volume today, up 15.4% in a day — I was mid-scroll through the Newton Explorer checking recent policy attestations when I noticed the spike and got curious what's actually driving it… turns out most of that volume is just spot rotation, not new automation flows through the AVS.
That's the thing about @NewtonProtocol that stuck with me after digging through the last few days of contract interactions. The "verifiable enforcement" pitch sounds like every transaction gets policy-checked by default. Reality — zkPermissions and TEE attestation only fire when a builder explicitly wires their contract to route through Newton's Rego policies. No opt-in, no verification layer touches the tx. Circulating supply sits around 288.46M $NEWT right now, and most of the wallets I traced were just moving tokens ahead of the next unlock, not triggering any policy evaluation at all.
So the "credible neutrality" framing is real, but only for the subset of builders who actually integrate it. Everyone else is just... using the chain like normal. Grabbed my snack thinking about this — feels less like a default safety net and more like a feature you have to reach for.
Makes me wonder how much of the current volume ever touches the verification layer at all.
#Newt
記事
翻訳参照
AI Automation vs AI Verification: Newton Protocol's ApproachI ended up doing what I usually do when I'm bored — going through protocol docs instead of charts. Ended up back on @NewtonProtocol again, except this time I wasn't looking at the token, I was looking at how they actually talk about "AI agents" doing things on-chain. And something about the phrasing kept bugging me. Newton keeps using "automation" and "verification" almost interchangeably, like they're the same feature. As in — the agent acts, and because it's Newton, the action is automatically verified. That's the vibe you get from the marketing copy anyway. So I went and actually checked the zkPermissions setup, the TEE stuff, how execution actually gets confirmed. Turns out those are two completely separate things wearing the same outfit. Automation is just the agent doing what it's told, on schedule, without a human clicking confirm each time. That part works exactly like you'd expect. Verification is a different layer entirely — it's the proof that what the agent did matches what it was permissioned to do. And here's the part that made me sit up a bit: that verification layer is opt-in. It depends on which curator config the agent is running under. You can have full automation with a bare minimum verification setup, and from the outside it still just looks like "Newton agent, doing Newton things." So the assumption I had — and I think a lot of people have — is that "verifiable enforcement" means every action is checked against some cryptographic guarantee by default. What actually happens is closer to: enforcement is available, curator-dependent, and the strength of it varies action to action. The automation doesn't pause and wait for maximum verification unless someone configured it that way. I'm not saying that's dishonest exactly. But here's the part that bothers me — if verification is a dial rather than a default, then "verifiable" becomes a marketing word describing the ceiling of the system, not the floor most agents are actually running on. Most users aren't going to go check which curator config their agent inherited. They're going to see "verifiable" in the deck and assume it's uniform. I went back and forth on this for a bit, honestly. Part of me thinks — okay, fine, every permission system has tiers, that's normal, you can't force max verification on every micro-action or the whole thing becomes too slow and expensive to be useful as "automation" in the first place. There's a real tradeoff there and Newton isn't hiding the existence of tiers, it's just not loud about it either. But the other part of me keeps landing on this — automation without consistent verification isn't really a new category, it's just automation. The "AI verification" branding is doing more work than the actual default behavior supports. And I don't think that gap shows up in normal conditions. It shows up when something breaks — when an agent does something unexpected and someone goes looking for the proof that it was checked, and finds out the config running underneath wasn't set to catch that particular failure mode. That's the scenario I keep coming back to. Not "does verification exist" — it clearly does, the TEE and zk tooling is real — but "was it actually turned on for the specific action that mattered." Those are different questions and only one of them gets answered by the marketing. Who this actually matters for is probably curators and anyone building agent workflows on top of Newton, more than casual holders. If you're setting the permission config, you're the one deciding how much of the "verifiable" promise your agent actually inherits. Everyone downstream just trusts the label. Anyway. I don't think this breaks the thesis of the project, I just think the automation and verification framing gets flattened into one word when it shouldn't be. I'll probably keep an eye on how curator configs actually get used in practice once there's more volume running through it — that's the part that'll tell the real story, not the docs. Market's still doing nothing interesting, so this is where my attention went today. $NEWT #Newt

AI Automation vs AI Verification: Newton Protocol's Approach

I ended up doing what I usually do when I'm bored — going through protocol docs instead of charts. Ended up back on @NewtonProtocol again, except this time I wasn't looking at the token, I was looking at how they actually talk about "AI agents" doing things on-chain.
And something about the phrasing kept bugging me.
Newton keeps using "automation" and "verification" almost interchangeably, like they're the same feature. As in — the agent acts, and because it's Newton, the action is automatically verified. That's the vibe you get from the marketing copy anyway. So I went and actually checked the zkPermissions setup, the TEE stuff, how execution actually gets confirmed.
Turns out those are two completely separate things wearing the same outfit.
Automation is just the agent doing what it's told, on schedule, without a human clicking confirm each time. That part works exactly like you'd expect. Verification is a different layer entirely — it's the proof that what the agent did matches what it was permissioned to do. And here's the part that made me sit up a bit: that verification layer is opt-in. It depends on which curator config the agent is running under. You can have full automation with a bare minimum verification setup, and from the outside it still just looks like "Newton agent, doing Newton things."
So the assumption I had — and I think a lot of people have — is that "verifiable enforcement" means every action is checked against some cryptographic guarantee by default. What actually happens is closer to: enforcement is available, curator-dependent, and the strength of it varies action to action. The automation doesn't pause and wait for maximum verification unless someone configured it that way.
I'm not saying that's dishonest exactly. But here's the part that bothers me — if verification is a dial rather than a default, then "verifiable" becomes a marketing word describing the ceiling of the system, not the floor most agents are actually running on. Most users aren't going to go check which curator config their agent inherited. They're going to see "verifiable" in the deck and assume it's uniform.
I went back and forth on this for a bit, honestly. Part of me thinks — okay, fine, every permission system has tiers, that's normal, you can't force max verification on every micro-action or the whole thing becomes too slow and expensive to be useful as "automation" in the first place. There's a real tradeoff there and Newton isn't hiding the existence of tiers, it's just not loud about it either.
But the other part of me keeps landing on this — automation without consistent verification isn't really a new category, it's just automation. The "AI verification" branding is doing more work than the actual default behavior supports. And I don't think that gap shows up in normal conditions. It shows up when something breaks — when an agent does something unexpected and someone goes looking for the proof that it was checked, and finds out the config running underneath wasn't set to catch that particular failure mode.
That's the scenario I keep coming back to. Not "does verification exist" — it clearly does, the TEE and zk tooling is real — but "was it actually turned on for the specific action that mattered." Those are different questions and only one of them gets answered by the marketing.
Who this actually matters for is probably curators and anyone building agent workflows on top of Newton, more than casual holders. If you're setting the permission config, you're the one deciding how much of the "verifiable" promise your agent actually inherits. Everyone downstream just trusts the label.
Anyway. I don't think this breaks the thesis of the project, I just think the automation and verification framing gets flattened into one word when it shouldn't be. I'll probably keep an eye on how curator configs actually get used in practice once there's more volume running through it — that's the part that'll tell the real story, not the docs. Market's still doing nothing interesting, so this is where my attention went today.
$NEWT #Newt
今日は @NewtonProtocol 件のドキュメントをいじりながら、エージェントアプリを彼らのアテステーション(証明)フローに組み込もうとしていました。ところが、7月1日の書き起こしの中の1行が、スクロールを途中で止めさせたんです。 メインネットベータは6月23日に Base と Ethereum で公開されました。そして売りは「単一のオペレーターが結果を決めない」こと——独立したオペレーターの多数派(スーパー・マジョリティ)があなたのポリシーを確認し、署名して、Newton Explorer で検証できるコンパクトなアテステーションが得られる、という話です。筋が通っています。…が、肝心のドキュメントには「マルチオペレーターのコンセンサスは $NEWT がベータを抜けた時点で有効になる」と明記されています。つまり、まさに多くのビルダーが統合を進めている現在のフェーズでは、「トラストレス」という枠組みが示すよりも小さいオペレーター集合を信頼していることになります。 その段落を2回読み直しました。読み違いだと思ったからです。でも違っていました。 ポリシーは Rego で書かれていて(コンプライアンス担当に優しい選択ですね)、カスタムデータコネクタ用の WASM サンドボックスも、ちゃんと賢い——Chainalysis や RedStone のような既製プロバイダーに縛られるわけではありません。ですが、根本の信頼前提、つまり「決済前に検証可能」というストーリーを成立させている部分が、明確に後回しの設計なんです。 悪いエンジニアリングだと言っているわけではありません。ただ…もし今日この上で AI エージェントを出荷するなら、あなたが乗っているのは彼らが説明しているセキュリティモデルですか?それとも、実際に動いている方ですか? #Newt
今日は @NewtonProtocol 件のドキュメントをいじりながら、エージェントアプリを彼らのアテステーション(証明)フローに組み込もうとしていました。ところが、7月1日の書き起こしの中の1行が、スクロールを途中で止めさせたんです。
メインネットベータは6月23日に Base と Ethereum で公開されました。そして売りは「単一のオペレーターが結果を決めない」こと——独立したオペレーターの多数派(スーパー・マジョリティ)があなたのポリシーを確認し、署名して、Newton Explorer で検証できるコンパクトなアテステーションが得られる、という話です。筋が通っています。…が、肝心のドキュメントには「マルチオペレーターのコンセンサスは $NEWT がベータを抜けた時点で有効になる」と明記されています。つまり、まさに多くのビルダーが統合を進めている現在のフェーズでは、「トラストレス」という枠組みが示すよりも小さいオペレーター集合を信頼していることになります。
その段落を2回読み直しました。読み違いだと思ったからです。でも違っていました。
ポリシーは Rego で書かれていて(コンプライアンス担当に優しい選択ですね)、カスタムデータコネクタ用の WASM サンドボックスも、ちゃんと賢い——Chainalysis や RedStone のような既製プロバイダーに縛られるわけではありません。ですが、根本の信頼前提、つまり「決済前に検証可能」というストーリーを成立させている部分が、明確に後回しの設計なんです。
悪いエンジニアリングだと言っているわけではありません。ただ…もし今日この上で AI エージェントを出荷するなら、あなたが乗っているのは彼らが説明しているセキュリティモデルですか?それとも、実際に動いている方ですか?
#Newt
記事
Newton Protocolが自律的なオンチェーン実行を可能にする方法退屈するときにいつもやることを結局やってしまいました——以前に半分だけ読んだことのあるプロジェクトについて、ウサギの穴に落ちるように調べ始めたのです。今回はそれがNewtonでした。 「autonomous(自律的)」という言葉が、それに何度も何度も付けられているのを見ていました。自律エージェント、自律実行、あなたが毎回のトランザクションを見張らなくてもオンチェーンで動くエージェント。正直、私はほとんどスルーしてしまいました——この領域ではその言葉があまりにも軽々しく使われるので、今やほとんどノイズみたいなものになっています。でも、何かがきっかけで、うなずくだけで済ませずにドキュメントをちゃんと確認してみることにしました。

Newton Protocolが自律的なオンチェーン実行を可能にする方法

退屈するときにいつもやることを結局やってしまいました——以前に半分だけ読んだことのあるプロジェクトについて、ウサギの穴に落ちるように調べ始めたのです。今回はそれがNewtonでした。
「autonomous(自律的)」という言葉が、それに何度も何度も付けられているのを見ていました。自律エージェント、自律実行、あなたが毎回のトランザクションを見張らなくてもオンチェーンで動くエージェント。正直、私はほとんどスルーしてしまいました——この領域ではその言葉があまりにも軽々しく使われるので、今やほとんどノイズみたいなものになっています。でも、何かがきっかけで、うなずくだけで済ませずにドキュメントをちゃんと確認してみることにしました。
一部該当
午後を費やして @NewtonProtocol mainnet のベータローンチ(6月25日)を掘り下げたんだけど、正直に言うと、私が立ち止まったのは技術ではなくて、「verified(検証済み)」を定義するのは誰なのかという点でした。$NEWT は、ローンチのデータパートナーとして RedStone と Credora とともに Vault を出荷しました。売りはシンプルです。ポリシーが tx(トランザクション)が確定する前に条件をチェックし、その後、誰でも監査できる署名付きのレシートを生成します。 ただ、私に引っかかったのはここです。そのレシートは、ポリシーが正しく実行されたことは証明するけれど、「そのポリシーが正しいものだったか」や、「その瞬間に読み取った価格フィードが正確だったか」までは証明しません。キュレーターが閾値を設定します(例:Credora のリスク評価が X を超えたら清算する)。そして Newton は、キュレーターが書いた内容をそのまま執行するだけです。つまり、この暗号学的な検証が確認しているのは実行の忠実性であって、意思決定の質ではありません。同じ「verifiable(検証可能)」というラベルを付けた、まったく別の保証がそこにあります。 Newt では、ローンチ前にキュレーターの選定やポリシーのレビューをチェックしているものがないか、ずっと書き込みを読み返してしまいました……うーん、見つかりませんでした。たぶん初期のベータの事情なのかもしれないし、そもそも来ないのかもしれません。 AI エージェントの行動への確信と、そのエージェントに渡されたルールへの確信は、同じではありません。Newton は前者をきれいに突き詰めています。では、後者を本当にチェックしているのは誰でしょう? #Newt
午後を費やして @NewtonProtocol mainnet のベータローンチ(6月25日)を掘り下げたんだけど、正直に言うと、私が立ち止まったのは技術ではなくて、「verified(検証済み)」を定義するのは誰なのかという点でした。$NEWT は、ローンチのデータパートナーとして RedStone と Credora とともに Vault を出荷しました。売りはシンプルです。ポリシーが tx(トランザクション)が確定する前に条件をチェックし、その後、誰でも監査できる署名付きのレシートを生成します。
ただ、私に引っかかったのはここです。そのレシートは、ポリシーが正しく実行されたことは証明するけれど、「そのポリシーが正しいものだったか」や、「その瞬間に読み取った価格フィードが正確だったか」までは証明しません。キュレーターが閾値を設定します(例:Credora のリスク評価が X を超えたら清算する)。そして Newton は、キュレーターが書いた内容をそのまま執行するだけです。つまり、この暗号学的な検証が確認しているのは実行の忠実性であって、意思決定の質ではありません。同じ「verifiable(検証可能)」というラベルを付けた、まったく別の保証がそこにあります。
Newt では、ローンチ前にキュレーターの選定やポリシーのレビューをチェックしているものがないか、ずっと書き込みを読み返してしまいました……うーん、見つかりませんでした。たぶん初期のベータの事情なのかもしれないし、そもそも来ないのかもしれません。
AI エージェントの行動への確信と、そのエージェントに渡されたルールへの確信は、同じではありません。Newton は前者をきれいに突き詰めています。では、後者を本当にチェックしているのは誰でしょう?
#Newt
ログインして、さらにコンテンツを読む
厳選トピックで世界の暗号資産トレーダーの仲間入り
⚡️ 暗号資産に関する最新かつ有益な情報が見つかります。
💬 世界最大の暗号資産取引所から信頼されています。
👍 認証を受けたクリエイターから、有益なインサイトを得られます。
メール / 電話番号
サイトマップ
Cookieの設定
プラットフォーム利用規約