You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
HAL-05 — Delegated attest does not validate expiration_time
Severity: Low
Status: Complete
Remediation: Validate request.expiration_time in attest_by_delegation by rejecting already-expired expiration timestamps to prevent storing immediately-invalid attestations.
HAL-06 — Delegated signatures are not bound to contract/network
Severity: Low
Status: Complete
Remediation: Bind delegated signature messages to the specific Soroban deployment by including current contract address or a network/chain identifier in the signed payload.
HAL-07 — BLS point decoding may panic on malformed inputs
Severity: Informational
Status: Complete
Remediation: Handle malformed BLS point inputs gracefully instead of panicking.
HAL-08 — Revocation returns misleading error for already-revoked records
Severity: Informational
Status: Complete
Remediation: Return a clear error indicating the record is already revoked.
HAL-05 — Delegated attest does not validate expiration_time
request.expiration_timeinattest_by_delegationby rejecting already-expired expiration timestamps to prevent storing immediately-invalid attestations.HAL-06 — Delegated signatures are not bound to contract/network
HAL-07 — BLS point decoding may panic on malformed inputs
HAL-08 — Revocation returns misleading error for already-revoked records