Fluent: Fluent STF audit report
Project Information
CATEGORY
Zero-Knowledge Virtual Machines (zkVM)
NETWORK
Ethereum, Optimism
WEBSITE
https://www.fluent.xyz/
DESCRIPTION
From May 12, 2025 to May 25, 2025, Fluent engaged Veridise to conduct a security assessment of their Fluent STF. The security assessment covered the fluent-stf-sp1 repository that implements a state transition function for Ethereum-compatible blockchains, enabling block execution and verification within a zero-knowledge virtual machine (zkVMs) environment. Veridise conducted the assessment over 4 person-weeks, with 2 security analysts reviewing the project over 2 weeks. The review strategy involved a tool-assisted analysis of the program source code performed by Veridise security analysts as well as thorough code review.
Audit Report
SCOPE
The scope of this security assessment is limited to the crates folder, excluding the crates/storage and crates/executor/host sub-folders, of the source code provided by the Fluent STF developers, which contains the smart contract implementation of the Fluent STF.