Hyperscale Weekly
Previously: flightofthefox had just closed the beacon's rare double-commit safety gap and proved the fix in five new formal models covering straddlers, cross-shard commit, and the dual commit itself.
This week the formal-proof work expanded dramatically: flightofthefox built a brand-new Quint model that walks the entire reshape lifecycle from start to finish. Alongside that, the validator shuffling got its first proper adversarial security analysis, and the simulator picked up a fresh batch of nasty network scenarios. Beacon and shard code keep getting tightened, with several pieces of safe-vote and ratification data now durably stored.
Model F walks the full reshape story
flightofthefox built a new Quint model — 'Model F' — that proves the entire lifecycle of a shard split or merge: the merge path, the ready-signal hand-off, the draw-seed twins, and even the case of an unbound ready signal. This turns the reshape design promises into checkable math.
→ see “The Proof” on hyperscale.rsThe Lottery gets adversarial testing
The validator-shuffling logic was put under a Monte Carlo microscope, with an adaptive worst-case attacker thrown in. Deviations were measured and recorded, so the random committee assignment now has a published security case rather than just hopeful claims.
→ see “The Lottery” on hyperscale.rsThe Crash Lab grows new nightmares
Several fresh partition and Byzantine scenarios landed in the simulator — a beacon pool that stalls during a partition, inter-shard severance, fragment rejoin, exact-quorum heal, a slow proposer, and a stale parent. The Crash Lab now has more ways to break the network on purpose.
→ see “The Crash Lab” on hyperscale.rsThe mood: DAO and core-team chatter dominates the chat this week — who should run Radix, market-maker contracts expiring with no renewal in sight, and a small side thread about turning these weekly reports into
Reference — concept map, roadmap & links▾
Questions? flightofthefox is always happy to discuss in the community Telegram.