docs(security): add comprehensive privacy-pool threat model#190
Open
rbxict wants to merge 2 commits intoANAVHEOBA:mainfrom
Open
docs(security): add comprehensive privacy-pool threat model#190rbxict wants to merge 2 commits intoANAVHEOBA:mainfrom
rbxict wants to merge 2 commits intoANAVHEOBA:mainfrom
Conversation
…erall system security Closes ANAVHEOBA#19 Bounty payout: - EVM: 0xe744f6791a685b0A0cC316ED44375B69361c837F - SOL: 8BsByR6rPqxDPku6dYtdoiSk6bdgE9YETbLQF2RGSw1C PoA-Signature: poa_hunter2_solve_1774694021
rbxict
changed the title
Author
|
I pushed a substantive follow-up here because the original branch only added placeholder threat-model files at the repo root and did not really satisfy the bounty scope. The current head replaces that with a full docs/THREAT_MODEL.md tied to the actual contract/circuit paths, covering 24 attack vectors, mitigations, residual risks, audit priorities, and incident response. I also updated the README link so the document is discoverable from the main security section. |
Closes ANAVHEOBA#19 Payouts: - EVM: 0xe744f6791a685b0A0cC316ED44375B69361c837F - SOL: 8BsByR6rPqxDPku6dYtdoiSk6bdgE9YETbLQF2RGSw1C - RTC: RTCfe4525ac631c325867a65d1b52b793779731d0d7 PoA-Signature: poa_2ec1e1e4aefe2b31
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
docs/THREAT_MODEL.mdValidation
attacks 24,words 2178)git diff --checkPayout Details
0xe744f6791a685b0A0cC316ED44375B69361c837F8BsByR6rPqxDPku6dYtdoiSk6bdgE9YETbLQF2RGSw1CRTCfe4525ac631c325867a65d1b52b793779731d0d7/claim #19
/payout EVM: 0xe744f6791a685b0A0cC316ED44375B69361c837F
/payout SOL: 8BsByR6rPqxDPku6dYtdoiSk6bdgE9YETbLQF2RGSw1C
/payout RTC: RTCfe4525ac631c325867a65d1b52b793779731d0d7
Closes #19
PoA:
poa_1a67dc0bed375cc8