| Project | Description |
|---|---|
| ZKAP | Practical Security Analysis of Zero-Knowledge Proof Circuits (USENIX Security'24) |
| Foray | Attack Synthesis against Deep Logical Vulnerabilities in DeFi Protocols (ACM CCS'24) |
Security Audits — openclaw/clawhub
Filed 50+ zero-day security advisories on agent skills published on ClawHub, covering credential leakage, RCE, PII exfiltration, and indirect prompt injection. See my filed issues for the full list.
| Project | Issue | Description |
|---|---|---|
| iden3/circom | #176 | Division-by-zero bug in Circom compiler's witness generator — root-cause traced to mpz_invert in generated C++ |
| BitVM/BitVM | #107 | Paper-vs-implementation discrepancy analysis: missing optimistic branch, output count mismatch, chunker design |
| socathie/circomlib-ml | #2 | Unconstrained input signals in Conv1D circuit — soundness concern in ZK ML |
| Project | Issue | Description |
|---|---|---|
| a16z/halmos | #190 | Feature proposal: symbolic execution on forked mainnet state for DeFi exploit analysis |
| paulmillr/scure-btc-signer | #117 | Can't use tapBip32Derivation to sign PSBT |
| rust-bitcoin/rust-bech32 | #207 | Bech32m encode-decode failed |