Skip to content

Security audit of stealth-announcer Soroban contract#34

Merged
truthixify merged 2 commits into
wraith-protocol:developfrom
gloskull:main
Jun 1, 2026
Merged

Security audit of stealth-announcer Soroban contract#34
truthixify merged 2 commits into
wraith-protocol:developfrom
gloskull:main

Conversation

@gloskull
Copy link
Copy Markdown

@gloskull gloskull commented May 29, 2026

Motivation

  • Provide a focused security review of the Soroban stealth-announcer crate and produce concrete, machine-verifiable reproducer tests for each finding.
  • Surface Soroban-specific event semantics (caller attribution), metadata sizing, ephemeral key validity, and CPI behavior so implementers and indexers can harden or document expected behavior.

Description

  • Add a Markdown audit report at stellar/stealth-announcer/audits/2026-05-gpt-5-3-codex.md documenting scope, findings (WA-ANN-01..04), reproductions, and recommendations.
  • Add integration reproducer tests at stellar/stealth-announcer/tests/audit.rs that verify caller attribution, oversized metadata acceptance, zero ephemeral key acceptance, and permissionless CPI emission.
  • Adjust stellar/stealth-announcer/Cargo.toml to build rlib in addition to cdylib so the contract client can be imported into tests.
  • Add an ## Unreleased changelog entry at CHANGELOG.md and disable test snapshot emission in the new tests via a test Env config to avoid writing snapshot artifacts during normal runs.

Testing

  • Ran cargo fmt -p stealth-announcer -- --check which completed successfully.
  • Ran cargo test -p stealth-announcer which passed all tests (the crate's 2 existing unit tests plus the 4 new audit tests; total 6 tests passed).

Closes #1

gloskull added 2 commits May 29, 2026 20:03
@gloskull
Audit Stellar stealth announcer
bbe9af7
@gloskull
conduct-security-audit-of-stealth-announcer-contract
2b8ac30 
Add security audit report and reproducer tests for stellar/stealth-announcer
@drips-wave
Copy link
Copy Markdown

drips-wave Bot commented May 29, 2026

@gloskull Great news! 🎉 Based on an automated assessment of this PR, the linked Wave issue(s) no longer count against your application limits.

You can now already apply to more issues while waiting for a review of this PR. Keep up the great work! 🚀

Learn more about application limits

@gloskull
Copy link
Copy Markdown
Author

gloskull commented May 31, 2026

@truthixify please review and merge

@truthixify truthixify changed the base branch from main to develop June 1, 2026 15:09
@truthixify
Copy link
Copy Markdown
Contributor

truthixify commented Jun 1, 2026

WA-ANN-01 is the kind of finding that's easy to miss and has real downstream impact — the EVM/Stellar parity gap on caller semantics would have silently corrupted indexer attribution at scale. The recommendation also gives us two viable resolution paths, which is exactly what an audit report should do.

The Low/Informational items (unbounded metadata, zero ephemeral pub key, indistinguishable CPI calls) are documented with the right severity rating and reproductions; none of these are blocking, but they're each worth a follow-up issue for hardening.

Findings table format matches the template, the reproducers in tests/audit.rs are concrete, and the CHANGELOG entry is wired. Thanks @gloskull.

@truthixify truthixify merged commit eaad33a into wraith-protocol:develop Jun 1, 2026
This was referenced Jun 1, 2026
Open
Open
Open
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Security audit of stealth-announcer Soroban contract

2 participants

@gloskull @truthixify