AntiSoon

AntiSoon is a decentralized vulnerability verification network for smart contract bounty programs. It lets project owners register bounty programs on-chain, lets researchers submit encrypted proof-of-concept reports, and turns verification, adjudication, and payout handling into an auditable protocol flow instead of an opaque manual process.

The system combines Sepolia contracts, confidential storage on Oasis Sapphire, and Chainlink CRE workflows. A researcher can browse projects, submit an encrypted PoC, and track status through the frontend. Once a PoC is revealed, CRE workflows replay and verify it, generate evidence, and write authorized results back to the protocol so disputes and payouts follow explicit state transitions.

The main problem AntiSoon solves is the delay and opacity of traditional audit competitions. Instead of relying on private inboxes and slow human coordination, it provides privacy-preserving submission, deterministic replay, workflow-driven verification, and payout-oriented result handling. It also includes an AI-assisted adjudication path for non-strict cases, where LLM jurors participate alongside human jurors to help structure confidential review before final write-back.

AntiSoon is a monorepo centered on three main product layers: a React 19 + Vite frontend, Solidity smart contracts, and multiple Chainlink CRE workflows. The entire project was developed using agentic engineering (vibe coding). The frontend covers landing, explorer, project creation, PoC submission, dashboard, leaderboard, and docs. The contracts include BountyHub for project registration, commit-reveal submission flow, verification outcomes, disputes, and payout finalization, plus OasisPoCStore for confidential PoC storage on Sapphire.

Chainlink usage is centered on CRE workflows in workflow/verify-poc, workflow/vnet-init, workflow/auto-reveal-relayer, and workflow/jury-orchestrator. These workflows bootstrap Tenderly VNet environments, react to on-chain events, replay exploits, coordinate reveal, verification, and adjudication, and submit authorized reports back through the protocol. For the hackathon demo, the repo also includes a lightweight simulator surface to showcase workflow execution locally, but that simulator is only a demo adapter rather than a core product layer.

The architecture intentionally splits authority and execution: BountyHub is the on-chain source of truth, CRE handles automation and workflow execution, Tenderly VNet provides deterministic replay, and Oasis Sapphire protects encrypted payloads and confidential jury data.