| Severity | Tool | Title | Validated | Confirmed |
|---|---|---|---|---|
| high | detector | Authorization based on tx.origin | no | — |
| high | codex | SNARK verification can be bypassed via tx.origin backdoor | no | — |
| high | detector | Untrusted DELEGATECALL target reachable | no | no |
| medium | slither | Verifier.verify(Transaction) (contracts/logic/Verifier.sol#60-89) uses tx.origin for authorization: tx.origin == VERIFICATION_BYPASS (contracts/logic/Verifier.sol#84) | no | — |
| medium | detector | Untrusted CALL target/value reachable | no | no |
| medium | detector | ETH value transfer possible | no | no |
| medium | cast | DELEGATECALL present | no | — |
| medium | codex | Merkle tree can be corrupted by oversized leaf batches | no | — |
| info | cast | Heavy CALL-family usage | no | — |
| Run ID | Status | Validated | Total findings | Created |
|---|---|---|---|---|
| 019bab3c-03ac-7154-aa8e-81b80b4bfd3c | complete | crit 0 high 0 | 9 | 3 months ago |