On-Chain PCCS Audit Submission For Release (November 2024)

[preston4896]

Overview

New changes included in this PR that we are planning to roll out for the next release of both Automata On-Chain PCCS and Automata DCAP Attestation.

Major change(s) included in this PR:

• Dynamic P256 Verifier configuration upon deployment. See relevant changes:
  ad672b9
70c4032

• Improved collateral data management, using the IDaoAttestationResolver interface. See relevant changes:
  a25d208
376b1e3

• temporary caller restriction for reading collaterals from PCCS, see relevant changes:
  8f73ebe
a103fc1
1a389e1
30301fa

When auditing is in progress, expect the following:

• Upon finalization of this PR (Converted to Ready To Review status), there shall be no more major breaking changes introduced to this PR. (e.g. external API changes)
• Code optimizations may require minor changes on internal methods.
• Revision(s) that may be necessary based on findings from auditing. (May be exempted from the "no breaking changes" rule)

[github-advanced-security]

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.