Root docs
Repository viewer
Legacy docs parity surface
Back to repository viewer
Repository document
ZK External Audit Scope
zk-external-audit-scope.md
Boundary
This route preserves legacy markdown access inside the Next.js surface. The raw repository file remains authoritative.
Open raw fileZK External Audit Scope
This document defines the exact scope an external auditor should review for the stronger `zk_enforced` path.
Priority Review Surface
- `programs/private-dao/src/lib.rs`
- `tests/private-dao.ts`
- `docs/phase-c-hardening.md`
- `docs/zk-verifier-strategy.md`
- `docs/zk-enforced-threat-review.md`
- `docs/zk/enforced-runtime-evidence.md`
- `docs/zk/enforced-runtime.generated.md`
- `docs/zk/enforced-operator-flow.md`
Required Questions
The audit should explicitly answer:
- are proposal-bound proof anchors scoped correctly
- are verification receipts proposal-bound and layer-bound
- can `zk_enforced` policy be downgraded or bypassed
- can weaker `parallel` receipts be used where stronger receipts are required
- can a proposal finalize through the stronger path with mismatched receipts
- does the verifier program field need stronger semantic checks before production dominance
- what residual risks remain before promoting the stronger path
Required Runtime Review
The audit should also inspect the runtime operator flow:
- receipt recording
- receipt upgrade path
- policy activation
- `finalize_zk_enforced_proposal`
- wallet/runtime evidence expectations
Honest Boundary
This scope prepares the repo for external review. It does not claim that the external audit has happened or that its findings are already closed.