BETAmodules.com is in beta — open to partnerships & joint ventures.Build with us
modules.com
⌘K

cggmp24

v0.1.0crates.io· Rust

TSS ECDSA implementation based on CGGMP24 paper

The verdict
Has 4 high-severity advisories. Verify a patched version exists before using. Check the OSV link for the fixed-in version.
Check the OSV link for the fixed-in version.
Live from the crates.io registry · derived rules, not AI
How it scores
MaintenanceAging
PopularityNiche
Security4 advisories
LicensePermissive
DepsZero deps
Maintenance
Last published over a year ago — check before adopting.
Popularity
367 downloads / week
Security
4 known advisories (worst: high severity).
License
Apache-2.0 OR MIT
Dependencies
No runtime dependencies
Security advisories
Live from OSV.dev · cached 24h
  • HIGH
    cggmp24 and cggmp21 are vulnerable to signature forgery through altered presignatures
    GHSA-8frv-q972-9rq5 Fixed in 0.7.0-alpha.2Published 2025-11-25
  • HIGH
    cggmp21 has a missing check in the ZK proof used in CGGMP21
    GHSA-m95p-425x-x889 Fixed in 0.7.0-alpha.2Published 2025-11-25
  • UNKNOWN
    CGGMP21 presignatures can be used in the way that significantly reduces security
    RUSTSEC-2025-0128 Fixed in 0.7.0-alpha.2Published 2025-11-24
  • UNKNOWN
    Missing check in ZK proof in CGGMP21 Threshold Signing Protocol
    RUSTSEC-2025-0130 Fixed in 0.7.0-alpha.2Published 2025-11-24
Recent releases
  • 0.7.0-alpha.36 months ago
  • 0.7.0-alpha.26 months ago
  • 0.7.0-alpha.19 months ago
  • 0.1.0over a year ago
cggmp24 — TSS ECDSA implementation based on CGGMP24 paper (Rust / crates.io) — verdict, alternatives & security · Modules