Polygon Labs Iden3 Circuits

Findings · 7

1. 1 Unsafe use of Num2Bits in multiple circuits High
2. 2 EdDSA R value is not constrained to be on-curve Undetermined
3. 3 Lack of domain separation in hash functions Informational
4. 4 SpongeHash is not a sponge hash Informational
5. 5 Ambiguous padding in SpongeHash Informational
6. 6 Signature challenge does not bind claim or query Informational
7. 7 Linked queries can prove expired or revoked claims Informational

Findings extracted from the published report PDF. See the full report below for details and remediation.