A page that audits the relationship between a deployed EVM
verifier’s bytecode and an expected set of verifying-key (VK)
commitments. Sections: Source — verifier contract, Expected
VK commitments, VK correspondence, Findings, and
Embedded 32-byte constants. A sample selector loads scenarios:
VK Bound (all keys match), VK Stale (key missing), VK
Unknown (no expected keys).
Why it exists
A compromised or accidentally swapped verifier can silently accept
proofs from the wrong circuit. This page scans the deployed
bytecode for embedded 32-byte constants, compares them to expected
VK commitments, and reports matches, mismatches, or unknowns — so
the deployment can be checked before trust is placed on it.
Who uses it
Auditor — verifies that a deployed verifier’s bytecode still
matches the expected commitments.
Protocol engineer — audits a proxy-upgraded verifier after a
change.
How to open it
Sidebar → Cryptography → ZK Verifier Audit.
Direct URL — /zk-verifier.
Using the page
Source — verifier contract — pick a deployed verifier from
the workspace via the contract picker.