Wrapped Token Development: WETH, WBTC, Cross-Chain Bridges

We design and develop full-cycle blockchain solutions: from smart contract architecture to launching DeFi protocols, NFT marketplaces and crypto exchanges. Security audits, tokenomics, integration with existing infrastructure.
Showing 1 of 1All 1305 services
Wrapped Token Development: WETH, WBTC, Cross-Chain Bridges
Medium
~3-5 days
Frequently Asked Questions

Blockchain Development Services

Blockchain Development Stages

Latest works

  • image_website-b2b-advance_0.webp
    B2B ADVANCE company website development
    1349
  • image_web-applications_feedme_466_0.webp
    Development of a web application for FEEDME
    1247
  • image_websites_belfingroup_462_0.webp
    Website development for BELFINGROUP
    949
  • image_ecommerce_furnoro_435_0.webp
    Development of an online store for the company FURNORO
    1183
  • image_logo-advance_0.webp
    B2B Advance company logo design
    642
  • image_crm_enviok_479_0.webp
    Development of a web application for Enviok
    921

You want to use ETH in DeFi, but most protocols require ERC-20 tokens. The solution is WETH, a wrapped token pegged 1:1. According to DefiLlama, the total value locked (TVL) in wrapped tokens exceeds $30 billion, with WETH being the most popular at ~$8 billion market cap. We'll explore three models and provide working code for a properly architected wrapped token. Our engineers have 10+ years of blockchain experience and have delivered over 50 projects. Smart contract wraps are 10x safer than custodial ones since reserves are verifiable on-chain.

How to choose the wrapped token model?

Custodial wrap (WBTC model). The original asset is held by a centralized custodian (BitGo for WBTC). When a user deposits BTC, an accredited minter creates WBTC on-chain. On redemption, the custodian releases BTC. The contract is simple, but trust in the custodian is required. BitGo holds ~150K BTC ($9B+). It's a single point of failure.

Smart contract wrap (WETH model). The smart contract acts as the custodian. Users send ETH and receive WETH 1:1. On unwrap, they return WETH and get ETH. No third-party trust, full reserve transparency on-chain. This only works if both assets are on the same blockchain. This approach is an order of magnitude safer: DefiLlama data shows smart contract hacks are far rarer than bridge attacks.

Cross-chain wrap with a bridge. The asset is locked on one chain, and the wrapped version is minted on another. This is the most complex and risky. Bridges are the biggest source of DeFi exploits (over 90% of major incidents in recent years: Ronin $625M, Wormhole $320M, Nomad $190M).

How we develop a wrapped token: step-by-step process

Details on each step
  1. Requirements analysis — determine the model (custodial, smart contract, cross-chain) and functional features.
  2. Architecture design — choose the tech stack, design smart contracts and relayer infrastructure.
  3. Smart contract implementation — write Solidity code using Foundry and Hardhat, implement gas optimization.
  4. Testing and audit — unit tests, fuzzing (Echidna), static analysis (Slither), then order an external audit. Fuzzing finds an average of 3–5 critical vulnerabilities per 1000 lines of code.
  5. Bridge integration — connect LayerZero OFT or CCIP, configure relayers. Using OFT cuts development time 5x compared to a custom bridge.
  6. Deployment and monitoring — deploy to mainnet, set up Tenderly monitoring, provide documentation.

How the WETH contract works?

WETH9 is one of the most copied contracts on Ethereum. Its original has been in production since the launch of Ethereum and contains about 50 lines of code. But there are nuances:

contract WETH9 {
    string public name     = "Wrapped Ether";
    string public symbol   = "WETH";
    uint8  public decimals = 18;

    mapping (address => uint)                       public  balanceOf;
    mapping (address => mapping (address => uint))  public  allowance;

    event  Approval(address indexed src, address indexed guy, uint wad);
    event  Transfer(address indexed src, address indexed dst, uint wad);
    event  Deposit(address indexed dst, uint wad);
    event  Withdrawal(address indexed src, uint wad);

    receive() external payable {
        deposit();
    }

    function deposit() public payable {
        balanceOf[msg.sender] += msg.value;
        emit Deposit(msg.sender, msg.value);
    }

    function withdraw(uint wad) public {
        require(balanceOf[msg.sender] >= wad);
        balanceOf[msg.sender] -= wad;
        payable(msg.sender).transfer(wad);
        emit Withdrawal(msg.sender, wad);
    }

    function totalSupply() public view returns (uint) {
        return address(this).balance;
    }
    // ... ERC20 transfer/approve/transferFrom
}

The contract invariant is address(this).balance == totalSupply() always. This is what makes WETH trustworthy: reserves are verifiable on-chain in real time. WETH handles over $1 billion daily in DeFi protocols.

A key difference from a standard ERC-20: totalSupply() is computed as address(this).balance, not stored separately. This guarantees synchrony but means approve + transferFrom for ETH is impossible without WETH (hence its necessity for DeFi protocols).

Why audit is essential for cross-chain tokens?

Cross-chain wrapped tokens are the most attacked component in all of DeFi. According to analysts, 90% of hacks are related to bridges. Minimizing trust assumptions is critical. Consider the lock-and-mint architecture.

Lock-and-mint architecture for cross-chain tokens

For a token that needs to exist on multiple networks (e.g., your ERC-20 token on Ethereum and its equivalent on BSC):

Lock contract on source chain (Ethereum):

contract TokenBridge {
    IERC20 public immutable token;
    address public immutable relayer;   // trusted or decentralized

    mapping(bytes32 => bool) public processedMessages;

    event TokensLocked(
        address indexed sender,
        uint256 amount,
        uint256 destinationChainId,
        address destinationAddress,
        bytes32 messageId
    );

    function lock(
        uint256 amount,
        uint256 destinationChainId,
        address destinationAddress
    ) external {
        require(amount > 0, "Zero amount");
        token.safeTransferFrom(msg.sender, address(this), amount);

        bytes32 messageId = keccak256(
            abi.encodePacked(msg.sender, amount, destinationChainId, destinationAddress, block.timestamp)
        );

        emit TokensLocked(msg.sender, amount, destinationChainId, destinationAddress, messageId);
    }

    function unlock(
        address recipient,
        uint256 amount,
        bytes32 messageId,
        bytes calldata relayerSignature
    ) external {
        require(!processedMessages[messageId], "Already processed");
        require(verifyRelayerSignature(recipient, amount, messageId, relayerSignature), "Invalid signature");

        processedMessages[messageId] = true;
        token.safeTransfer(recipient, amount);
    }
}

Wrapped contract on destination chain (BSC):

contract WrappedToken is ERC20, Ownable {
    address public immutable bridge;

    constructor(string memory name, string memory symbol, address _bridge)
        ERC20(name, symbol) Ownable(msg.sender)
    {
        bridge = _bridge;
    }

    function mint(address to, uint256 amount) external {
        require(msg.sender == bridge, "Only bridge");
        _mint(to, amount);
    }

    function burn(address from, uint256 amount) external {
        require(msg.sender == bridge, "Only bridge");
        _burn(from, amount);
    }
}

Relayer: centralized vs decentralized

The most critical part of a cross-chain bridge is who and how confirms events on the other chain. The choice of relayer affects security and complexity.

Type Reliability Complexity Example
Centralized Low Low Custom server
Multisig Medium Medium Multichain
Decentralized (LayerZero) High Low (ready integration) OFT

Centralized relayer — your server listens for events on the source chain and calls functions on the destination chain. Simple to develop and fast, but a centralized point of failure. If the server is compromised, an attacker can mint unlimited tokens without real lock.

Multisig relayers — N independent operators must sign each message; the contract checks the threshold. Used by Multichain (before the hack) and deBridge. Safer but more complex to orchestrate.

Decentralized messaging (LayerZero, Chainlink CCIP, Wormhole) — use existing verified infrastructure instead of custom relayers. LayerZero: Ultra Light Node verifies block headers via an on-chain Light Client and an Oracle for finality. This reduces trust assumptions but adds dependency on the provider. Using LayerZero OFT cuts development time 5x compared to a custom bridge.

// Integration with LayerZero
import "@layerzerolabs/lz-evm-sdk-v2/contracts/oft/OFT.sol";

contract MyToken is OFT {
    constructor(
        string memory name,
        string memory symbol,
        address lzEndpoint,
        address owner
    ) OFT(name, symbol, lzEndpoint, owner) {}

    // OFT standard automatically implements cross-chain transfer
    // via burn on source + mint on destination through LayerZero messaging
}

The OFT (Omnichain Fungible Token) from LayerZero is a ready-made standard for cross-chain tokens with minimal custom code.

Proof of Reserves: how to verify backing

For custodial wrapped tokens, public verifiable reserves are critical after the collapse of centralized stablecoins. Proof of Reserve uses an oracle that verifies off-chain reserves (e.g., BTC in custody) and publishes the result on-chain. The contract can check reserves before each mint:

AggregatorV3Interface public reserveFeed;

function mint(address to, uint256 amount) external onlyMinter {
    (, int256 reserveBalance,,,) = reserveFeed.latestRoundData();
    require(
        int256(totalSupply() + amount) <= reserveBalance,
        "Insufficient reserves"
    );
    _mint(to, amount);
}

External audits find an average of 3–5 critical vulnerabilities per 1000 lines of code, so an audit is mandatory before launch.

Scope of work for creating a wrapped token

  • Requirements analysis and model selection (custodial / smart contract / cross-chain)
  • Design and implementation of smart contracts (Solidity, Foundry)
  • Bridge integration (LayerZero OFT / Chainlink CCIP)
  • Unit testing and fuzzing (Echidna, Slither)
  • Security audit (internal + external)
  • Mainnet deployment and script setup
  • Documentation and team training
  • Post-launch technical support

Timelines and stack for different token types

Type of wrapped token Complexity Timeline
WETH-style (same chain) Low 1–2 days
Cross-chain with centralized relayer Medium 1–2 weeks
Cross-chain via LayerZero/CCIP Medium 1 week + integration testing
Custom decentralized bridge High 6–12 weeks + audit

For cross-chain tokens with real assets, an audit is mandatory. Bridges are the most attacked component in all of DeFi. If you need a wrapped token for your project, contact us for a consultation — we'll find the optimal solution and estimate the budget. Order your wrapped token development today.

Common questions include the difference between WETH and WBTC, how cross-chain bridges work, security measures, cost estimates, and recommended standards like LayerZero OFT.

Token Development: ERC-20, Tokenomics, Vesting

We’ve seen more rekt tokens than we can count — not because the code was broken, but because the economic assumptions were naive. A token that doesn’t collapse from inflation in six months, where governance actually works, and vesting can’t be bypassed through delegation tricks — that’s real engineering. We build under that standard.

How We Avoid Common ERC-20 Pitfalls

ERC-20 standard has nine functions. Complexity starts with extensions:

ERC-20Permit (EIP-2612) — gasless approve via signature. User signs permit(owner, spender, value, deadline, v, r, s) off-chain, spender calls permit() + transferFrom() in one transaction. Removes separate approve step. Risk: signature can be intercepted — need deadline and nonce checking. We always implement EIP-712 typed structured data to prevent signature malleability.

ERC-20Votes (EIP-5805) — snapshot balances for governance. Checkpoint system stores balance history by block number. getPastVotes(address, blockNumber) returns balance at proposal creation, not current. Prevents flash loan governance: can't borrow tokens and vote in one transaction.

Rebasing tokens (stETH, Ampleforth) — balanceOf changes automatically through internal shares ratio. High integration complexity: most DeFi protocols don't work correctly with rebasing without non-rebasing wrapper. We've deployed wrappers that decouple balance from share price for Uniswap compatibility.

Fee-on-transfer tokens — percentage cut on every transfer. Breaks AMM calculations: pool receives less than expected. Uniswap v2/v3 don't support natively — needs special pair/router. We’ve built custom routers that handle fee-on-transfer tokens without reverting.

Why Tokenomics Sustainability Matters More Than Excel

Tokenomics isn't Excel table summing to 100%. It's incentive model that either works long-term or creates selling pressure killing the project.

Emission Schedule and Inflation — Fixed supply (Bitcoin model) works for store-of-value, but for utility tokens you need controlled inflation. Inflationary model (like Ethereum post-Merge) generates new tokens to incentivize participants. Key balance: emission should be <= value captured by protocol. If protocol earns $100k/month but emission is $500k/month in market value — constant selling pressure inevitable. We model these scenarios using Python simulations with cadCAD for complex systems.

Supply Distribution — No universal formula. Principle: no single entity >33% voting power at launch. Otherwise governance is fiction.

Category Typical Range Risk
Team + advisors 15–20% Dumping on unlock
Investors (seed, private) 15–25% Coordinated exit
Treasury / DAO 20–35% Governance capture
Ecosystem / grants 10–20% Inefficient allocation
Public sale / LBP 5–15% Undervaluation → whale capture
Liquidity provision 5–10% Mercenary capital

What Are the Most Critical Vesting Contract Mistakes?

Linear vesting with cliff is standard for team and investors. cliff is the period after TGE with zero availability. After cliff: linear unlock until duration. Typical implementation errors we catch in audit:

  • Revocable vesting without timelock — owner can revoke immediately. Solution: revocation through multisig + governance vote with 7-day delay.
  • Cliff doesn't block governance rights — with ERC-20Votes, recipient can delegate voting power from day one even if tokens aren't unlocked. We explicitly separate voting power from claim logic.
  • No emergency pause — if vesting contract vulnerability discovered, need ability to pause claims. Pausable + timelock on unpause.

We’ve seen a project where the cliff was set to 0 by mistake — team could dump immediately. Our fuzz tests catch such edge cases before deployment.

Vesting contract implementation details

Pausable and Ownable2Step from OpenZeppelin are standard. We add a 7-day timelock on revocation functions. All withdraw functions emit events for off-chain tracking. Fuzz tests verify that cumulative released amount never exceeds total allocation, even after multiple revocations or partial claims.

Why Is Liquidity Bootstrapping Crucial for Token Launch?

Launch mechanics are critical. Three main approaches:

  • Balancer LBP — temporary pool with high initial token weight (90/10 project-token/USDC) that automatically decreases to 50/50 over days. Creates downward price pressure preventing bot buys at one price. After LBP liquidity moves to permanent pool.
  • Fjord Foundry — specialized platform for LBP and fair launches. Less operational overhead than direct Balancer integration.
  • Uniswap v3 with limited range — add liquidity in narrow range around initial price. High capital efficiency but requires active range management.
  • TWAMM — mechanics for gradual large-order sales without slippage. Implemented in FraxSwap.

LBP is 3-5x better than standard AMM listing for price discovery; we’ve seen fair launches with 50% less initial dump compared to direct Uniswap listings.

Governance Tokens and Voting Mechanics

OpenZeppelin Governor is the standard. Modular: GovernorVotes for counting, GovernorTimelockControl for timelock execution, GovernorSettings for adjustable parameters. Quorum is minimum percentage of supply for voting validity. Compound set quorum at 400k COMP (4% supply). We set quorum dynamically based on historical participation to avoid apathy or whale capture.

Flash loan governance attack — attacker borrows tokens via flash loan, delegates to self, creates proposal or votes, returns tokens. ERC-20Votes with block-based snapshot completely blocks this: must have tokens at snapshot creation moment, not voting moment.

Delegation — small holders often don't vote. Liquid delegation (like Optimism) lets delegate voting power to addresses without transfer. Critical for protocols with many passive holders.

Token Type Use Case Our Stack
ERC-20 utility Payments, rewards, gas Solidity 0.8.x, OpenZeppelin 5.x
ERC-20Permit Gasless approvals EIP-2612, EIP-712
ERC-20Votes On-chain governance Governor, TimelockController
ERC-1155 Multi-token (NFT + fungible) Solidity, OpenZeppelin
Vesting contracts Team/investor lockup LinearVesting, CliffVesting

Token Development Stack

Contracts: Solidity 0.8.x, OpenZeppelin Contracts 5.x (ERC20, ERC20Permit, ERC20Votes, Governor, TimelockController, TokenVesting).
Tokenomics audit: Python models with emission/demand simulation, cadCAD for complex systems modeling.
Deployment and management: Foundry scripts, Gnosis Safe for treasury, OpenZeppelin Defender for automation.
Analytics: Dune Analytics for on-chain metrics, Token Terminal for protocol revenue.

What’s Included in the Work (Deliverables)

  • Tokenomics model with stress tests (bear market, whale exit, governance capture)
  • Contract development with Foundry fuzz tests (gas optimization, reentrancy tests, overflow checks)
  • Audit summary and list of edge cases covered
  • Deployment scripts with Gnosis Safe admin keys
  • Documentation for future upgrades and maintenance
  • 30-day post-launch monitoring support

Process

  1. Tokenomics design — supply model, allocation, emission schedule, vesting. Stress-test scenarios.
  2. Contract development — ERC-20 + extensions, vesting, governance. Foundry fuzz tests on vesting calculations, governance thresholds.
  3. Audit — special attention on governance attack vectors, vesting bypass, permit replay attacks. We use Slither and Echidna for formal verification.
  4. LBP / launch — choose mechanics, set parameters, monitor first 24 hours.
  5. Post-launch — monitor supply distribution via Dune, governance participation metrics, treasury management.

Timelines

  • ERC-20 with permit and basic governance: 2–3 weeks
  • Vesting contract with revocation and cliff: 2–4 weeks
  • Full governance (Governor + Timelock + Token): 4–7 weeks
  • Token + LBP + governance + vesting: 8–14 weeks

We can estimate your project within 24 hours after discussing requirements. Contact us to start the conversation — no obligation, just a technical chat about your token model. Get a detailed proposal tailored to your tokenomics and compliance needs.