SNARKeling Treasure Hunt

First Flight #59

Beginner FriendlyGameFiFoundry

100 EXP

View results

Previous Next

Submission Details

Severity: high

Valid

Deployment script comments leak all private inputs, breaking ZK privacy guarantees

fredo182

Deployment script comments leak all private inputs, breaking ZK privacy guarantees

Description

The TreasureHunt system relies on ZK proofs so that participants can prove they found a treasure without revealing its secret value. The security of the entire protocol depends on the treasure secrets remaining unknown to the public.

However, the deployment script Deploy.s.sol contains all 10 treasure secrets in a plaintext comment. This file is committed to the repository, making the private inputs visible to anyone with repository access.

An attacker can read the secrets, compute valid ZK proofs for every treasure, and drain the full 100 ETH contract balance without ever participating in the hunt.

// Secret Treasures for the snorkeling hunt (not revealed to the public):

@> // 1, 2, 3, 4, 5, 6, 7, 8, 9, 10

// Treasures' hashes (revealed to the public, used as public inputs for the proof generation):

// 1505662313093145631275418581390771847921541863527840230091007112166041775502,

// -7876059170207639417138377068663245559360606207000570753582208706879316183353,

// ...

Risk

Likelihood: High

The secrets are stored in a source file that is tracked by git. Every contributor, CI system, and anyone with read access to the repository sees them in plaintext.

Impact: High

An attacker generates valid proofs for all 10 treasures using the leaked secrets and the publicly known hashes, then calls claim 10 times to drain the entire 100 ETH balance.

Proof of Concept

Attacker clones or views the repository
Reads in Deploy.s.sol that the secrets are 1, 2, 3, 4, 5, 6, 7, 8, 9, 10
Reads all corresponding treasure hashes
For each secret/hash pair, generates a valid Noir ZK proof off-chain using nargo prove
Submits 10 claim transactions, each collecting 10 ETH
Contract is fully drained

Recommended Mitigation

Remove all secret values from source control. Treasure secrets should be stored in a secure, off-chain secrets manager and never be committed to the repository. Additionally, since these secrets are now compromised in git history, they must be rotated with high-entropy secrets, as git log preserves the old values.

Updates

Lead Judging Commences

s3mvl4d Lead Judge 18 days ago

Submission Judgement Published

Validated

Assigned finding tags:

secrets stored in plain text

In `Deploy.s.sol`, the comments explicitly list the “Secret Treasures for the snorkeling hunt” as 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, and `circuits/Prover.toml.example` likewise stores the full treasure array in plaintext alongside the corresponding `treasure_hash` values. Since the Noir circuit proves knowledge of one of these treasure secrets by checking that `pedersen_hash([treasure]) == treasure_hash`, publishing the raw treasure inputs defeats the intended secrecy assumption behind the treasure-hunt design: anyone with repository access can recover valid witnesses and generate proofs without actually discovering the treasure in the real world.

Rewards breakdown

nSLOC

220

This contest has a flat reward structure with the following payouts:

High

100 EXP

Medium

20 EXP

Low

2 EXP

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.

Give us feedback!