DexFarm is a non-custodial cashback service. We never hold your trading capital, never need your private keys, and never have signing authority over your wallet. This page explains exactly what that means and what the actual risks are.

What "Non-Custodial" Means Here

When you use DexFarm:

Your Axiom trading wallet stays yours — secured by Turnkey's MPC infrastructure (the same security model as Axiom itself)
Your destination wallet for cashback withdrawals stays yours — we don't need access
The only money DexFarm holds is the referral commission paid by Axiom, before we forward your share

At any moment, the maximum DexFarm could ever lose on your behalf is whatever cashback has accumulated since your last withdrawal — not your trading capital.

What We Don't Have

❌ Your private keys
❌ Your seed phrase
❌ Signing permission on any wallet you own
❌ Ability to trigger trades on your behalf
❌ Custody of your trading balance

What We Do Have

✅ Your email (from Google OAuth)
✅ A record of your assigned referral link / Axiom user ID mapping
✅ A SOL wallet that holds pending cashback before payout

How Cashback Funds Are Held

Between settlement and your withdrawal, cashback sits in a per-user dedicated wallet (the same wallet that received the referral commission from Axiom). We do not pool user funds.

This means even in a worst-case scenario where DexFarm's infrastructure was compromised, an attacker would need to compromise individual wallets one at a time — not drain a central treasury.

Real Risks to Be Aware Of

1. Operator Risk

DexFarm is a small operation. If we shut down, you would lose access to any unwithdrawn cashback. We mitigate this by recommending you withdraw regularly once you reach the minimum.

2. Axiom Dependency

DexFarm depends on Axiom honoring its referral payouts. If Axiom stopped paying referral commissions or changed its program terms, our cashback would stop or change.

3. Account Verification

For DexFarm to attribute trades to you, your Axiom account must be linked to your DexFarm referral. If you accidentally trade on a different Axiom account (or your link gets unlinked), those trades won't generate cashback.

4. Smart Contract Risk: None

DexFarm does not use any custom smart contracts. We only call standard Solana SOL transfers and rely on Axiom's existing referral system. There is no smart contract risk on our end.

Audit Status

Because DexFarm has no custom smart contracts, there's nothing for a smart contract auditor to audit. The relevant security surface is:

Our infrastructure (worker servers, database, key management) — internally hardened, not externally audited
Axiom's referral system — we trust their existing security
Solana network — battle-tested

Open-Source Components

Some parts of DexFarm are open-source for transparency. Check our Twitter for updates on which components are public.

Reporting a Security Issue

If you discover a security vulnerability, please report it directly via Telegram rather than disclosing publicly. We treat security reports seriously and will respond within 24 hours.