pull down to refresh

Sovereign Wallet, privacy-first Bitcoin wallet for Chrome
438 sats \ 0 comments \ @anon 10 Apr bitcoin

Samourai Wallet went down in April 2024. The code was open source. The servers weren't. That dependency is what killed it.

I've been building a Chrome extension that brings back the same privacy tooling — Stonewall, Ricochet, coin control, PayNyms, but without any central infrastructure. It connects to your own Fulcrum node over WebSocket, or to public Esplora APIs (Blockstream, mempool.space) if you don't have one yet. Private keys never leave the browser's service worker.

What's implemented:

  • BIP84 HD wallet, 24-word seed, AES-256-GCM encryption with PBKDF2 100k iterations
  • Stonewall transactions (4 outputs, no external coordinator)
  • Ricochet (chain of 3 TXs through intermediate self-owned addresses)
  • Full coin control with Branch and Bound selection and UTXO labeling by origin
  • Privacy Score engine (0-100) that runs before every send — penalties for address reuse, input merging, round amounts, UTXO consolidation; bonuses for Stonewall, Ricochet, Taproot, Tor
  • UTXO Map — canvas visualization of your coin set, sized by value, colored by origin
  • Silent Payments BIP352 (sender side) — ECDH-derived unique Taproot output per transaction
  • PayNyms BIP47 — payment code derivation + notification TX with blinded OP_RETURN
  • Coldcard and Keystone support via PSBT file exchange (watch-only xpub import, build unsigned PSBT, upload signed, broadcast)
  • Import existing BIP39 seeds from Samourai, Sparrow, BlueWallet, Electrum
  • AI privacy advisor (optional, uses your own Anthropic API key, sends only anonymized scores — never addresses or amounts)
  • Node panel with WireGuard invite generation for onboarding friends/family

Tech stack: TypeScript strict, React, Vite, Manifest V3, @noble/curves (pure JS, no WASM). No external UI libraries. All crypto runs in the service worker.

What's NOT implemented yet: Silent Payments receive (BIP352 scanning), CoinJoin, Ledger/Trezor, mobile app, passphrase support.

Repo: https://github.com/sovereign-wallet/sovereign-wallet

Would appreciate feedback on:

  1. The privacy scoring algorithm — the penalty/bonus weights are heuristic, not formally modeled. Anyone with chain analysis experience who can poke holes in it?
  2. Stonewall without a coordinator — the original Samourai version had STONEWALLx2 with a real counterparty. This implementation fakes the second party using your own UTXOs. How much does that weaken it in practice?
  3. Fulcrum on NUC hardware — running on an Intel NUC with 1TB NVMe. If anyone has config tips for fast-sync or memory tuning, I'm interested.

Happy to answer questions about any of the technical decisions.

write
compose
related posts