Documentation

Fee-Free CHMPSTR Transfers

Transfer $CHMPSTR between wallets without the 10% transaction fee. Official service by the Chimpers team.

πŸ’Έ
0% Fee
Skip the 10% tax
✍️
Single Signature
Powered by Permit2
πŸ”’
Secure Design
Contract-based
🚫
DEX Blocked
Anti-abuse protection
🎯 Purpose

Why This Service?

$CHMPSTR has a 10% transfer fee built into the token contract. While this mechanism serves the tokenomics, it creates friction for legitimate use cases:

πŸ”
Cold Storage
Moving to hardware wallets
🏠
Wallet Migration
Transferring to new wallets
🎁
P2P Transfers
Sending to friends/family

βœ… This service allows fee-free transfers for legitimate wallet-to-wallet movements.

βš™οΈ Mechanism

How It Works

FROM
Your Wallet
β†’
VIA
Relay Contract
βœ“ Distributor
β†’
TO
Recipient
1
Relay Contract is a Registered Distributor
The CHMPSTR token contract exempts distributors from transfer fees.
2
Distributor Involved = 0% Fee
If either the sender or receiver is a distributor, the fee is bypassed.
3
User β†’ Relay β†’ Recipient
This routing enables fee-free transfers to any wallet.
πŸ—οΈ Architecture

Why a Smart Contract Instead of an EOA?

We could have registered a team wallet as a distributor. Here's why we chose a contract instead:

❌ EOA (Regular Wallet)
  • β€’Has private key β€” single point of failure
  • β€’No built-in rules β€” can send anywhere
  • β€’If compromised β€” attacker can dump on DEX fee-free
βœ… Smart Contract
  • β€’No private key β€” cannot be "stolen"
  • β€’Enforced rules β€” DEX addresses blocked on-chain
  • β€’Deterministic β€” only does what code allows

πŸ’‘ A smart contract is essentially a "wallet without a private key".
It can only execute predefined logic β€” nothing more, nothing less.

⚑ Technology

Permit2: One Signature, One Transaction

❌ Traditional Flow
1approve() txGas πŸ’Έ
2transfer() txGas πŸ’Έ
2 signatures + 2 gas fees
βœ… Permit2 Flow
1Off-chain signatureFree βœ“
2relay() txGas πŸ’Έ
1 signature + 1 gas fee
πŸ’°
Save Gas
No separate approve tx
πŸ”
More Secure
No unlimited approvals
🎯
Exact Amount
Signature specifies amount
πŸ’‘ Permit2 is Uniswap's token approval standard, widely adopted across DeFi.
πŸ›‘οΈ Security

Anti-Abuse Measures

The primary concern: preventing users from using this service to sell on DEXes without the 10% fee. Here's how we address it:

πŸ”Server Signature Required

Every relay request requires a server-signed approval. Direct contract calls without server signature will revert.

🚫DEX Blacklist (On-Chain)

20 DEX addresses blocked at contract level: Uniswap, SushiSwap, 1inch, Balancer, Curve, and more.

πŸ“EOA Only (No Contracts)

Transfers to contract addresses are blocked. Only personal wallets (EOA) are supported. This prevents DEX pairs and other smart contracts from receiving fee-free transfers.

⏱️Rate Limiting

5 requests per wallet per minute. 10 requests per IP per minute. Prevents bulk abuse.

πŸ€–Bot Protection

Cloudflare Turnstile integration blocks automated requests.

πŸ”’ Bottom line: Using this service to sell on DEXes fee-free is not possible.

βœ… Safety

What Am I Signing?

The signature is a Permit2 PermitWitnessTransferFrom with the following constraints:

Signature Scope
"I permit exactly X CHMPSTR to be sent to 0xRecipient"
β€’ Valid for 10 minutes
β€’ Single use (nonce-based)
β€’ Chain-specific (no cross-chain replay)
βœ“ Fixed Amount
Only the exact amount specified
βœ“ Fixed Recipient
Cannot redirect to another address
βœ“ Time-Limited
Expires after 10 minutes
βœ“ Single Use
Nonce prevents replay
βœ“ Chain-Bound
chainId included in signature
βœ“ No Unlimited Approval
Not a blanket permission
πŸ“± Usage

How to Use

1
Connect Wallet
Click "Connect Wallet" and approve the connection
2
Enter Details
Input recipient address and amount
3
Click Transfer
Your wallet will prompt for a signature
4
Sign & Done
One signature triggers the transfer (gas fee applies)
πŸ§ͺ Testing

Currently on Testnet

The service is live on Sepolia testnet. Test tokens have no real value β€” feel free to experiment.

Getting Started
1Add Sepolia Network β€” Click the button in the app
2Get Test ETH β€” From Google Cloud faucet (linked in app)
3Get Test Tokens β€” Mint 10,000 test CHMPSTR
4Show in Wallet β€” Add token to MetaMask
5Test Transfer β€” Send to another wallet

πŸ’‘ Test tokens are free and unlimited. Mint as many as you need.

πŸ—ΊοΈ Roadmap

What's Next

πŸ§ͺ
Testnet
← Current
βœ…
Team Testing
Bug fixes
πŸš€
Mainnet
Production launch
πŸ” Audit

Security Review

The contract and server code underwent thorough security review before deployment.

Audit Scope
  • β€’CHMPSTRRelayV3 Smart Contract
  • β€’Server Signature Service
  • β€’Permit2 Integration
  • β€’DEX Filtering Logic
Audit Methods
  • β€’Slither β€” static analysis
  • β€’Foundry Fuzz β€” 100,000 randomized test runs
  • β€’Manual Review β€” line-by-line code inspection
  • β€’Result β€” 0 Critical, 0 High issues
Verified Security Features
βœ“ Dual Signature Verificationβœ“ Replay Protectionβœ“ Token Validationβœ“ DEX Filteringβœ“ Reentrancy Guardβœ“ Overflow Protection

Ready to Test?

Report any issues you find!

Launch App β†’
⚠️ Disclaimer

This service is provided "as is" without warranty of any kind. While the smart contract and server code have been thoroughly reviewed and tested, the Chimpers team accepts no liability for any loss of funds, misuse, or damages resulting from the use of this tool. Users interact with the smart contract at their own risk. Always verify transaction details before signing. The security audit was performed using automated tools (Slither, Foundry Fuzz) and manual code review β€” no independent third-party audit firm was engaged.