Vizor is a self-custody Zcash wallet for shielded ZEC, with a polished desktop experience built around clarity, privacy, and ease of use. It is for users who want to create, receive, shield, and send ZEC without giving a hosted wallet service control over their funds.
Official public releases currently focus on signed and notarized macOS DMGs.
- Create or import a Zcash wallet.
- Use a clean, modern interface designed to make shielded Zcash easier to use.
- Receive to shielded Unified Addresses or transparent addresses.
- Send ZEC from shielded balance.
- Add memos when sending to shielded recipients.
- Shield funds received to a transparent address.
- Use multiple accounts in one wallet.
- Import Keystone hardware wallet accounts.
- Choose from preset or custom lightwalletd endpoints.
- View balances, sync progress, and transaction history in a focused desktop UI.
- Protect local access with an app password and privacy mode.
Use the release tag that matches the DMG you want to verify:
git fetch --tags
git checkout release/vX.Y.Z
git rev-parse HEADMake sure the commit matches the GitHub release, then build:
fvm install
fvm flutter pub get
fvm flutter build macos --release \
--dart-define=ZCASH_DEFAULT_NETWORK=mainFor testnet:
fvm flutter build macos --release \
--dart-define=ZCASH_DEFAULT_NETWORK=testThe built app is at:
build/macos/Build/Products/Release/Vizor.app
Local builds may not use the same Apple signing identity as the official release. That is expected. The goal is to verify the source and behavior, not to produce a byte-for-byte identical app.
mkdir -p dist/macos
scripts/package-macos-release-dmg.sh \
--app-path build/macos/Build/Products/Release/Vizor.app \
--output dist/macos/Vizor-local-macos.dmgThe DMG packaging script must run on macOS in a GUI session.
Check the hash:
shasum -a 256 Vizor-macos.dmgThen verify Apple signing and notarization:
DMG="Vizor-macos.dmg"
spctl --assess --type open --context context:primary-signature -vv "$DMG"
xcrun stapler validate "$DMG"
hdiutil attach "$DMG" -readonly
APP="/Volumes/Install Vizor Wallet/Vizor.app"
codesign --verify --deep --strict --verbose=2 "$APP"
codesign -dv --verbose=4 "$APP" 2>&1 | egrep 'Identifier|TeamIdentifier|Authority'
spctl --assess --type execute -vv "$APP"
xcrun stapler validate "$APP"
hdiutil detach "/Volumes/Install Vizor Wallet"Expected mainnet identity:
Identifier=com.keplr.vizor
TeamIdentifier=SZTB68DXM4
Authority=Developer ID Application: Chainapsis Inc. (SZTB68DXM4)
For testnet, the app path and identifier are:
/Volumes/Install Vizor Testnet Wallet/Vizor Testnet.app
Identifier=com.keplr.vizor.testnet
TeamIdentifier=SZTB68DXM4
- Back up your mnemonic. Vizor cannot recover funds if you lose it.
- The local password protects this device only. It does not replace the mnemonic backup.
- Shielded transactions are scanned locally, but your lightwalletd endpoint can still see network metadata such as IP address and request timing.
- Transparent Zcash addresses and transactions are public on-chain.
- Some exchanges only support transparent withdrawals. Shield those funds after they arrive.
- Sending uses shielded balance. Transparent funds must be shielded first.
- Local rebuilds are not expected to match the official DMG byte-for-byte because Apple signing, notarization, timestamps, and DMG metadata differ.
fvm flutter run
fvm flutter test
fvm flutter analyze
cd rust && cargo testReviewing a quote calls the configured 1Click/proxy quote API and can return a real one-time deposit instruction. Reviewing a quote does not move funds by itself. Starting a ZEC-to-external swap sends the software-wallet deposit by default; hardware-wallet accounts wait for Keystone signing.
After changing Rust API files in rust/src/api/, regenerate bindings from the
repo root:
flutter_rust_bridge_codegen generateApache License 2.0. See LICENSE.