VisionWhy we're building VAEA.
April 2026
Where flash loans come from
In 2018, Max Wolff created Marble Protocol on Ethereum — an open-source "smart contract bank" that introduced a concept he called flash lending: borrow any amount of tokens without collateral, as long as you repay in the same transaction. If repayment fails, everything reverts. Zero risk for the lender, instant capital for the borrower.
In January 2020, Aave launched its implementation of flash loans and turned the concept into a core DeFi primitive. That year — during what people now call "DeFi Summer" — flash loans became a powerful tool. By September 2020, Aave alone had issued nearly half a billion dollars in flash loans. EIP-3156 standardized the interface on Ethereum.
The innovation was real. But so were the consequences.
The dark side
Flash loans quickly became the weapon of choice for DeFi exploits. Not because the mechanism is flawed — but because the ecosystem around it lacked maturity.
bZx was hit in February 2020 — one of the first flash loan attacks, exploiting a price oracle to extract $1M. Then came Harvest Finance ($34M), PancakeBunny ($45M), Cream Finance ($130M), Beanstalk ($182M via a governance flash loan attack), and Euler Finance ($197M in March 2023). The pattern was almost always the same: borrow massive capital instantly, manipulate an on-chain price feed or exploit a logic bug, extract value, repay the loan. All in one transaction. If it fails, the attacker loses nothing but gas.
These attacks shaped flash loans' reputation. To most people today, "flash loan" still means exploit, hack, danger. And the association is understandable — hundreds of millions were stolen through this mechanism.
But that's only half the story
Flash loans are also essential infrastructure. Every day, they quietly power the mechanisms that keep DeFi healthy:
Liquidations. When a lending position becomes under-collateralized, liquidators use flash loans to repay the borrower's debt instantly and claim the collateral. Without flash loans, liquidators need their own capital — which means fewer liquidators, slower liquidations, and more bad debt accumulating in protocols.
Arbitrage. Price discrepancies between DEXes get corrected by arbitrage bots that borrow, buy on one exchange, sell on another, and repay — all atomically. This keeps prices consistent across the ecosystem and reduces slippage for every trader.
Collateral management. Users can swap their collateral from one token to another, or refinance debt from an expensive protocol to a cheaper one — in a single transaction, with no liquidation risk during the process.
Flash loans make Solana DeFi more efficient, more liquid, and more resilient. The problem was never the tool. It was the lack of infrastructure around it.
The maturity gap
The broader crypto ecosystem has matured considerably. Protocols get audited before launch. Teams are public. There's regulatory clarity emerging. Institutional capital is entering Solana DeFi. The tooling has improved — Anchor, Squads multisig, Firedancer. The bar has moved.
But flash loans haven't kept up with this maturity.
On Solana today, if you want to execute a flash loan, you need to pick a specific lending protocol (Marginfi? Kamino? Jupiter Lend?), learn its instruction format, manually construct the transaction, manage Address Lookup Tables, handle errors yourself, and understand the on-chain program's internals. There's no unified SDK. No way to query capacity across multiple protocols. No monitoring. No standard verification method.
Flash loans remain deep, technical, and inaccessible. Tribal knowledge. Reserved for those who already understand Solana's runtime. That's not sustainable for an ecosystem that's trying to be professional.
What VAEA is building
VAEA is the infrastructure layer that makes flash loans actually usable — not just for hardcore Solana devs, but for anyone who needs instant capital.
We aggregate liquidity from three lending protocols — Marginfi, Kamino, and Jupiter Lend — and expose it through a single SDK (TypeScript and Rust) and an MCP server for AI agents. The Smart Router automatically selects the cheapest source with sufficient liquidity. Anyone can execute a flash loan in three lines of code.
But the real innovation is CTX — our Zero-CPI verification standard. On Solana, verifying a flash loan from another program normally requires a cross-program invocation (CPI), which consumes one of the four available CPI depth levels. CTX eliminates this by letting your program read a PDA instead — zero CPI consumed. Your protocol can verify that a VAEA flash loan is active, see the exact amount and token borrowed, and even inspect transaction structure metadata (how many instructions, where borrow and repay sit in the TX) — all without calling our program.
This makes flash loans composable with complex DeFi strategies that hit Solana's CPI limit. And it makes them transparent — protocols can build security policies on top of this data, rejecting transactions that don't match expected patterns.
Making flash loans safer
VAEA doesn't eliminate flash loan risk — no one can. As long as protocols have oracle vulnerabilities or logic bugs, flash loans will be used to exploit them. But what VAEA can do is give protocols visibility they don't have today. Right now, when a protocol receives a flash loan, it's blind — zero context on the transaction structure, the number of operations, or whether the pattern looks normal or suspicious.
CTX changes that. A protocol can see the position of the borrow instruction, the gap between borrow and repay, the total instruction count. A normal liquidation is 4-5 instructions. An exploit setup might be 15+. For the first time, protocols can see the difference and define a FlashPolicy to reject what doesn't match. It's not perfect — but it's a meaningful step up from having no information at all.
The goal is to co-build with protocols. The more protocols integrate CTX, the better we all understand what "normal" flash loan usage looks like on Solana — and what doesn't.
When AI meets liquidity
AI agents are entering DeFi — systems that can reason, plan, and execute autonomously. They can spot arbitrage paths across 15 DEXes in milliseconds. But they have one critical limitation: they have no capital. A brain without hands.
Flash loans are the perfect answer. They give AI agents instant access to capital with zero risk — borrow, execute, repay, atomically. That's why we built the MCP server: any AI agent can discover liquidity, plan routes, and build flash loan transactions. The agent brings the intelligence. VAEA provides the capital.
We believe DeFi is heading toward AI agents operating as autonomous economic actors, executing strategies at machine speed, with flash loans as their source of capital. That future needs plumbing. That's what we're building.
The vision
We want flash loans to become boring infrastructure. Not something scary, underground, or associated with hacks — but something normal, documented, monitored, and professional. A tool that any developer can use safely, and that any protocol can integrate with confidence.
Long-term, we're working toward a native flash mint for wSOL — a modification to the Solana Token Program itself that would allow minting wSOL on-demand and burning it atomically within a transaction. No pool to drain. No congestion during market crashes. No dependency on any specific lending protocol. This is a SIMD proposal — it requires collaboration with the Solana Foundation, and we need to earn that credibility by proving VAEA's infrastructure first.
Build first. Propose second. In that order.
Flash loans deserve real infrastructure. We're building it.
