Least Authority recently conducted an AI-assisted security audit across several security-critical repositories in the Zcash ecosystem at the request of Zcash Community Grants (ZCG). The goal of this work was to explore how AI-assisted workflows can support security review at scale while still relying on careful human verification before any
Security audits, managed crowdsourced security platforms, and open bug bounty programs are often treated as interchangeable approaches to security testing. In practice, they serve different roles. While crowdsourced approaches and bug bounty programs are effective at uncovering vulnerabilities in deployed systems, both remain inherently exploratory rather than systematic. Security audits
We performed a security audit of LambdaClass’s Ethrex. Ethrex is a Rust implementation of the Ethereum protocol, designed to support ZK proofs and L2 execution. It includes a client with support for two different modes, L1 and L2, with the former working as a regular Ethereum client and the latter
Consent is one of the six lawful bases for processing personal data under the GDPR (Article 6(1)(a) GDPR). To be valid, it must be freely given, specific, informed, and unambiguous, reflecting a clear expression of the data subject’s wishes (Article 4(11) GDPR). In theory, this provides a strong safeguard, ensuring
White Noise is an encrypted group chat application implementing the Marmot protocol. The Marmot protocol combines the MLS (Messaging Layer Security) protocol with Nostr’s decentralized network to provide private group messaging that does not rely on centralized servers. whitenoise-rs is the Rust backend for White Noise client applications. It leverages
“AI won’t replace humans. But humans who use AI will replace those who don’t.” The line is widely repeated, and it has recently been attributed to Sam Altman in mainstream coverage. It also appears in a widely circulated Harvard Business Review framing of the same idea. For security audits, the
Espresso has requested that we perform a security audit of its smart-contract layer, focusing on the Solidity contracts that verify Nitro Trusted Execution Environment (TEE) attestations and enforce batch authentication for Optimism integration. Our final audit report was completed on April 1, 2026. To read the full report, including our
Marmot combines the MLS (Messaging Layer Service) Protocol with Nostr’s decentralized network to provide private group messaging without relying on centralized servers or legacy identity systems. MDK is the Marmot Development Kit and consists of four crates. White Noise is the Rust backend of the Flutter application, and the whitenoise