Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
awesome-mina-security
A curated list of Mina resources with a focus on security from Extropy.io
https://github.com/extropyio/awesome-mina-security
Last synced: 5 days ago
JSON representation
-
Resources:
- zkok MinaBlog
- Mina June 4 2024 hard fork announcement
- Awesome Mina ZKApps
- zkApp list from zkok
- GraphQL queries
- Official Docs
- Mina tutorials
- Awesome mina tools
- zkApp Cli
- OpenMina: setting up a node from the smartphone
- zkApps official examples
- Mina Playground
- Protokit
- Official Docs
- Mina tutorials
- Awesome mina tools
- zkApp Cli
- OpenMina: setting up a node from the smartphone
- zkApps official examples
- Mina Playground
- Protokit
- GraphQL queries
- zkok MinaBlog
- Mina June 4 2024 hard fork announcement
- Awesome Mina ZKApps
- zkApp list from zkok
- list from Mina Foundation
- Anomix
- Zeko
- PunkPoll
- ID-Mask
- list from Mina Foundation
- Anomix
- Zeko
- PunkPoll
- ID-Mask
- Hakata
- ZkNoid
- Hakata
- ZkNoid
- ZKPassport
- Snarky.bio
- PaimaStudios
- Mina Email
- ZKPassport
- Snarky.bio
- PaimaStudios
- Mina Email
- Clor.io
- zk-invoices
- zkPass
- Clor.io
- zk-invoices
- zkPass
- ZKON
- zeko
- Hazook
- Lumina DEX
- SocialCap
- ZKON
- zeko
- Hazook
- Lumina DEX
- SocialCap
-
Security aspects of zkApps
- The `reduce()` method breaks if more than the hard-coded number (default: 32) of actions are pending
- Usage of `requireNothing()` when retrieving On-chain Values may be dangerous
- if condition is used instead of `const x = Circuit.if(new Bool(foo), a, b);`
- Onchain merkle tree root not synced with offchain merkle root
- Foreign Field Arithmetic should be used with caution
- if condition is used instead of `const x = Circuit.if(new Bool(foo), a, b);`
- Onchain merkle tree root not synced with offchain merkle root
- The `reduce()` method breaks if more than the hard-coded number (default: 32) of actions are pending
- Minting unlimited tokens to himself is possile for an attacker if a custom token contract does not change `access` permission from `none` to at least `proof`
- Permissions not locked down enough + advices for setting permissions
- lack of access controls
- Possible race conditions when many users read/write the state concurrently
- Possible race conditions when many users read/write the state concurrently
- `editState` permission set to none
Programming Languages
Categories
Sub Categories