Jupiter (jup.ag) Web3 Audit Report

Executive Summary

Jupiter (jup.ag) has evolved from a decentralized exchange (DEX) aggregator into a comprehensive on-chain finance "superapp" on the Solana blockchain. As of April 5, 2026, the platform generates approximately $62.4 million in annualized revenue and facilitates massive trading volumes, including $12.3 billion in 30-day aggregator volume and $7.2 billion in perpetuals volume [1] [2] [3]. While the project demonstrates exceptional product-market fit, strong revenue generation, and an active governance model that directs 50% of platform revenue to token buybacks [1] [4], it carries notable risks. Specifically, the insider token allocation (~40.1%) significantly exceeds conservative risk thresholds, and the platform's performance is heavily dependent on the underlying Solana Layer 1 network [5] [6].

Investment Snapshot

Metric	Value (as of 2026-04-05)
Total Value Locked (TVL)	~$1.72 billion [1]
Annualized Revenue	~$62.42 million [1]
30-Day Aggregator Volume	~$12.29 billion [2]
30-Day Perps Volume	~$7.23 billion [3]
Insider Token Allocation	~40.1% (High Risk) [5]

1. General Description

What is this project?
Jupiter is the leading on-chain finance platform and liquidity aggregator built on the Solana blockchain [7] [8]. It operates a full-stack product suite that includes spot token swaps, leveraged perpetuals trading, yield-bearing lending, dollar-cost averaging (DCA), prediction markets, and a newly launched peer-to-peer lending "Offerbook" [9] [8] [10].

What problem does it solve?
Jupiter solves the problem of fragmented liquidity and poor execution pricing in decentralized finance (DeFi). By routing trades across multiple decentralized exchanges (DEXs) and automated market makers (AMMs) on Solana, it ensures users receive the best possible price with minimal slippage [11] [12]. Furthermore, its unified Developer Platform provides a single API key for builders to integrate complex DeFi functionalities without managing blockchain state or RPC nodes [9].

For what audience?
The platform serves three primary audiences:

1. Retail and Professional Traders: Seeking optimal swap execution, leverage (Perps), and yield (Lend) [9] [13].
2. Developers and Integrators: Wallets, trading terminals, and AI agents utilizing Jupiter's APIs to power their own applications [9].
3. DAO Participants: Token holders who stake $JUP to govern ecosystem initiatives, launchpad projects, and treasury allocations [11] [14].

2. Team

LinkedIn Presence
Jupiter maintains a verified corporate LinkedIn profile ("Jupiter") listing 51-200 employees, indicating a substantial and professional organizational structure [8].

Socials and Activity
The team is highly active on social media, particularly on X (formerly Twitter), where the official @JupiterExchange account has over 614,000 followers and posts regular product updates, such as the April 2026 Offerbook beta launch [15]. The team also operates a dedicated Support Hub and Discord server for user and developer inquiries [16] [6].

Known Team Members
The leadership team operates primarily under pseudonyms, which is common in Web3 but presents a team risk:

• Meow (@weremeow): The pseudonymous co-founder and public face of Jupiter, highly active in community communications and strategic direction [17] [18] [19].
• Kash Dhanda: Identified as the Chief Operating Officer (COO) at Jupiter, providing a publicly verifiable professional identity [20] [21].

3. Concept/Documentation

Uniqueness
Jupiter differentiates itself through its sheer breadth of integrated products (Swap, Perps, Lend, Prediction) and its robust developer infrastructure [9]. Its "Tokens API" features an "Organic Score" to measure genuine trading activity, helping users filter out manipulated tokens [22].

Competitor Analysis

Competitor	Relationship to Jupiter	Market Position
Raydium	Liquidity Source / Competitor	Major Solana AMM; Jupiter routes through it but also competes for direct frontend users [1] [23].
Orca	Liquidity Source / Competitor	Leading concentrated liquidity DEX on Solana; integrated into Jupiter's routing [1] [23].
Centralized Exchanges (CEXs)	Meta-Competitor	Jupiter aims to replace CEXs by offering a unified "superapp" experience on-chain [8].

Demand Analysis
There is massive, verifiable demand for Jupiter's products. As of April 2026, the DEX aggregator processed over $12.2 billion in 30-day volume, while the perpetuals exchange handled $7.2 billion in 30-day volume [2] [3]. The protocol generates over $203 million in annualized fees [1].

Roadmap
Jupiter utilizes a public feedback board for feature requests [24]. The roadmap is actively executed; for example, the "Offerbook" (fixed-term, peer-to-peer lending) entered private beta in April 2026 [15] [10]. However, some developer tools, such as the Perps API, are explicitly marked as a "work in progress" in the documentation [25].

Technical Details
Jupiter operates entirely on the Solana blockchain, relying on its Proof of History (PoH) and Proof of Stake (PoS) consensus mechanisms for high-throughput execution [26] [27]. The platform offers production-grade REST APIs and TypeScript SDKs for integrators [9] [13].

Fees and Revenue
Jupiter's fee model is highly competitive. The "Ultra Swap" mode charges 5 to 10 basis points (bps), which the documentation notes is 8-10x lower than the market average [28]. Integrators can add their own platform fees, of which Jupiter takes a 20% share [28] [29].

4. Coin/Tokenomics

Tokenomics Overview
The native token is $JUP (Mint address: JUPyiwrYJFskUPiHa7hkeR8VUtAeFoSYbKedZNsDvCN) [30] [31]. It functions primarily as a governance token for the Jupiter DAO, allowing stakers to vote on ecosystem initiatives and launchpad projects [11] [14].

Distribution and Unlocks (Risk Warning)

• Insider Allocation: According to DeFiLlama's vesting dashboard, the final allocation for "Insiders" is projected at 40.1% [5]. This significantly exceeds the standard audit safety threshold of ≤10% for team/investors.
• Vesting Schedule: Team tokens are subject to a 1-year cliff followed by 3 years of linear vesting, which is verifiable on-chain [32].
• Revenue Share: Since early 2025, 50% of platform revenue is used to buy back $JUP tokens for the "Litterbox" trust, which has actively burned tokens to reduce supply [32] [4].

TVL and Trading Volume

• TVL: ~$1.72 billion [1].
• Market Cap: ~$571 million [1].
• Fully Diluted Valuation (FDV): ~$1.1 billion [1].

5. Code

Open Source and Active Development
Jupiter maintains an active, verified GitHub organization (jup-ag) containing SDKs, CLI tools, and instruction parsers [33]. The repositories show active commits as of April 2026 [33].

Security Audits
Jupiter's smart contracts undergo rigorous, multi-firm auditing.

Product	Auditor	Date / Status
Swap (v6)	Offside Labs	April 2024, October 2025 [34]
Swap (v3)	Sec3	Completed [34]
Lend	OtterSec	Aug - Nov 2025 (Multiple Reports) [34]
Lend (Vault/Liquidity)	Offside Labs, Mixbytes, Zenith	Mid-to-Late 2025 [34]

Note: OtterSec confirmed the successful completion of a fourth independent audit for Jupiter Lend in 2026 [35].

Bug Bounty
There is no official Immunefi bug bounty program listed in the primary documentation [34] [36]. Security reports and bugs are generally handled via the community forum's "Bug hunters" tag or through Discord support tickets [16] [37].

6. Risks

• Financial Risks (High Insider Allocation): The ~40.1% insider allocation poses a centralization and potential sell-pressure risk, though mitigated by a 3-year linear vesting schedule [32] [5].
• Technical Risks (L1 Dependency): Jupiter's performance is entirely dependent on the Solana network. Network congestion can cause transaction delays and impact slippage or liquidations [6].
• Regulatory Risks: The provision of leveraged perpetuals and peer-to-peer lending (Offerbook) may attract regulatory scrutiny in strict jurisdictions [10] [25].
• Team Risks: The reliance on pseudonymous founders (e.g., Meow) introduces key-person and accountability risks, despite their high public visibility [17] [14].
• Governance Risks: The DAO has the power to alter token emissions and airdrop criteria (e.g., the "Net-Zero Emissions" proposal in 2026), meaning tokenomics are subject to change based on voter consensus [11] [38].

7. Community

Social Media Size and Activity

• X (Twitter): ~614,975 followers, highly active with daily product updates and community engagement [15].
• Discord: The primary hub for developer support and community discussion [16] [39].
• Governance Forum: A highly active research forum (discuss.jup.ag) where detailed proposals regarding tokenomics, budgets, and ecosystem grants are debated and refined by the community [11] [40].

8. Final Assessment

Risk Level: MEDIUM
Despite exceptional product-market fit, high revenue, and thorough security audits, the project warrants a "Medium" risk rating primarily due to its heavy insider token allocation (>40%) and its absolute reliance on the operational stability of the Solana Layer 1 network.

Key Strengths

• Massive Adoption & Revenue: Generates ~$62M in annualized revenue with billions in monthly volume [1] [2].
• Value Accrual: 50% of platform revenue is used to buy back and burn $JUP tokens, directly benefiting the token's supply dynamics [32] [4].
• Security Posture: Extensive, multi-firm audits for core products (Swap and Lend) [34].
• Product Breadth: A true "superapp" offering swaps, perps, lending, and developer APIs under one ecosystem [9].

Key Issues and Warnings

• Token Distribution: Fails the standard <10% insider allocation metric, with insiders holding ~40.1% of the final supply [5].
• Infrastructure Dependency: Vulnerable to Solana network congestion, which can delay trades and impact user funds [6].
• Incomplete Documentation: Certain developer tools, like the Perps API, remain a "work in progress," posing integration risks for builders [25].

References

1. Jupiter TVL, Fees, Revenue & Volume. https://defillama.com/protocol/jupiter
2. Jupiter Aggregator Fees & Revenue. https://defillama.com/protocol/jupiter-aggregator
3. Jupiter Perpetual Exchange TVL, Fees, Revenue & Volume. https://defillama.com/protocol/jupiter-perpetual-exchange
4. Jupiter spikes 40% as founder says 50% of fees will go to .... https://www.theblock.co/post/337071/jupiter-spikes-40-as-founder-says-50-of-fees-will-go-to-token-buybacks
5. Jupiter Token Unlocks & Vesting Schedule. https://defillama.com/unlocks/jupiter
6. Jupiter Support Hub. https://support.jup.ag/
7. Jupiter | The Home of Onchain Finance. https://jup.ag/
8. Jupiter. https://www.linkedin.com/company/jupiter-onchain
9. Jupiter docs. https://dev.jup.ag/docs/get-started
10. Offerbook | Decentralized Lending on Solana - Jupiter. https://offerbook.jup.ag/
11. All You Need to Know about the Jupiter DAO. https://discuss.jup.ag/t/all-you-need-to-know-about-the-jupiter-dao/37269
12. Jupiter Aggregator (Solana) | Dune. https://www.dune.com/ilemi/jupiter-aggregator-solana
13. Jupiter Lend Overview. https://dev.jup.ag/docs/lend
14. The Genesis Post - $JUP - Jupiter Research. https://discuss.jup.ag/t/jup-the-genesis-post/478
15. Jupiter (@JupiterExchange) / Posts / X. https://x.com/JupiterExchange
16. Support - Jupiter Developers. https://dev.jup.ag/resources/support
17. meow (@weremeow) / Posts / X. https://x.com/weremeow
18. Interview with Meow, CEO of Jupiter Exchange. https://www.linkedin.com/posts/anna-tutova_solana-largest-dex-jupiter-founder-meow-on-activity-7190669015080480768-pLpP
19. JUP, YOU & ME - Meow. http://meow.bio/jup-3.html
20. Kash Dhanda‏ - ‏COO at Jupiter. https://ae.linkedin.com/in/kash-dhanda-03110958
21. #gdpgdpgdp | Kash Dhanda | 17 comments. https://www.linkedin.com/posts/kash-dhanda-03110958_gdpgdpgdp-activity-7270630706588925952-O23b
22. Tokens API - Jupiter Developers. https://dev.jup.ag/docs/tokens
23. Solana's Big 4 DEX Battle: Raydium, Jupiter, Orca, and .... https://www.bitget.com/news/detail/12560604584229
24. Roadmap - Jupiter. https://feedback.jup.ag/roadmap
25. Jupiter Perpetuals Overview - Jupiter Developers. https://dev.jup.ag/docs/perps
26. Proof of History: How Solana brings time to crypto. https://solana.com/news/proof-of-history
27. A new architecture for a high-performance blockchain v0.8.13. https://solana.com/solana-whitepaper.pdf
28. Ultra Swap Fees - Jupiter docs. https://dev.jup.ag/docs/ultra/fees
29. Add Integrator Fees - Jupiter Developers. https://dev.jup.ag/docs/ultra/add-fees-to-ultra
30. Jupiter (JUP). https://solscan.io/token/JUPyiwrYJFskUPiHa7hkeR8VUtAeFoSYbKedZNsDvCN
31. Transaction History | Token | Jupiter (JU…CN). https://explorer.solana.com/address/JUPyiwrYJFskUPiHa7hkeR8VUtAeFoSYbKedZNsDvCN
32. Tokenomics - Jupiter Documentation. https://docs.jup.ag/user-docs/more/jup-token/tokenomics
33. Jupiter · GitHub. https://github.com/jup-ag
34. Audits - Jupiter Developers. https://dev.jup.ag/resources/audits
35. We have just completed our thorough audit of @jup_lend, .... https://x.com/osec_io/status/1994501930689991160
36. Jupiter - CertiK Skynet Project Insight. https://skynet.certik.com/projects/jupiter-exchange
37. Does Jupiter Have An Bug Bounty Program? - General. https://community.jupiter.money/t/does-jupiter-have-an-bug-bounty-program/53762
38. Proposal: Net-Zero Emissions - Jupiter DAO. https://discuss.jup.ag/t/proposal-net-zero-emissions/39948