Browser extension · Solana

See what you're signing.We don't.

TxGuardian is a Solana browser extension that checks every signing request in your browser, before your wallet's prompt appears. The engine runs on your device — your transactions never reach our server. No accounts, no API keys, no telemetry.

Install the extensionTry the engine

The problem, in one screen

What you'd seePhantom preview
No balance change
  • Estimated fee: 0.00001 SOL
  • No SOL movement
  • No token movement
What's actually happeningTxGuardian analysis
Danger · Score 100 / 100
  • Unlimited token approval to an unknown delegate
  • Flagged on the on-chain registry as a known drainer pattern
  • Calls a program not in the well-known allowlist
  • Priority fee 5,000,000 micro-lamports/CU — unusually high

Same transaction. Two different stories.
The check happens on your device — TxGuardian sees neither.

How it works

  1. 01

    Extension intercepts

    Sits between your wallet and every Solana dApp. Each signing request is captured before your wallet's prompt appears.

  2. 02

    Checked on your device

    Six rules run inside the extension's service worker — known drainers, unlimited approvals, suspicious destinations, unverified programs, complexity, unusual fees.

  3. 03

    On-chain registry lookup

    The engine reads confirmed entries from a live Anchor program on devnet — the drainer feed isn't hardcoded by us.

  4. 04

    Plain-English explanation

    Optional: bring your own Gemini key for AI prose. We never see the key or the prose. Verdict stands either way.

The check runs in your browser.

The whole engine ships in the extension. When you click sign, we don't see the transaction — we can't. Verdicts compute on your device, against a Solana RPC of your choice.

  • Your transactions stay in your browser
  • Phantom + every Wallet Standard wallet
  • No keys, no accounts, no telemetry
  • One-click download, no build step
Install in 3 steps

The drainer blocklist lives on-chain.

Most security tools ship a closed feed and ask you to trust them. TxGuardian's feed is an Anchor program on Solana devnet. Anyone can submit, an admin keypair confirms, and any wallet or dApp reads it for free via getProgramAccounts. No vendor lock-in.

Program IDDt6ccUKifBKegcxKGvgiHfyCDrJFeRwMmhvi7eCbFVS7
See the live feed

Building on Solana? Embed the same engine.

The engine that powers the extension is also a standalone TypeScript SDK. Wallets, dApps, and signing services drop in pre-sign risk checks in one function call — including the on-chain registry lookup.

import { analyze } from "@txguardian/sdk";

const result = await analyze({
  transaction: base64Tx,
  connection,
  mode: "full",
});

if (result.riskLevel === "danger") {
  // surface result.flags + result.explanation
}

Framework-agnostic. Works in any Node or browser runtime that can reach a Solana RPC. Try it live in the engine demo.

Read the integration guide