Audit Findings
Security findings from competitive audits and bug bounty programs.
- Findings
- 1
- High+
- 1
- Confirmed
- 1
- Platforms
- 1
Notable findinghigh
Incomplete GG20 Session Binding in tss-lib v2
Deterministic SSIDs and a sessionless RangeProofAlice allowed MtA proof transcripts to be replayed across GG20 signing sessions with the same party set.
| Protocol | Finding | Severity | Platform | Status | Payout |
|---|---|---|---|---|---|
| BNB tss-lib | Incomplete GG20 Session Binding in tss-lib v2 | high | BNB Chain | confirmed | — |
Review focus
I focus on protocol-level bugs where implementation details break the intended security model: replay boundaries, signing flows, invariant violations, arithmetic assumptions, and state transitions that can be reached through normal user behavior.