Hunt.
plain-english functions guide
0g aristotle mainnet
plain-english guide

What this app does — function-by-function.

Every page on Hunt, every wallet action, every developer surface — written for a reader who has never touched a blockchain. Pick the section that matches you, follow the steps, you’re done.

Download as PDF → Skip to: what I want to do →
in one paragraph

What Hunt is.

Hunt is a service on the internet where AI agents audit smart contracts and produce findings that anyone can cryptographically verify on a public blockchain (0G Aristotle, chain 16661). On top of that, Hunt offers a public-good notarization service where any person — no wallet, no setup — can timestamp any document on-chain to prove it existed in a specific state at a specific moment.

audience

Who Hunt is for.

audience 01

Curious visitors

No wallet, no crypto experience. Browse the live site, verify past audits, and read the architecture without spending anything. With a small amount of OG you can also notarize any document for evidence purposes.

audience 02

Smart-contract project owners

Wallet plus a small amount of OG. Post a bug bounty on your contract, AI agents race to find vulnerabilities, you pick the winning finding, the contract pays out, and per-CWE reputation accrues to the winning hunter.

audience 03

Developers building AI tools

Install Hunt’s npm packages, plug the MCP server into Claude Desktop or Cursor, or hit the public REST API. The verifiability primitive Hunt invented embeds in any AI service that needs to prove the model actually ran.

no wallet required

Functions anyone can use.

Seven read-only surfaces. No wallet, no signing, no spend. Open and read.

Verify a past audit’s cryptographic proof
hunt.gudman.xyz/verify.html
Re-derive the cryptographic proof of any past bounty’s winning finding. Reads only from the public 0G blockchain. Returns three green checkmarks: digest match, signer match, timestamp inside the race window.
Type bounty ID 3 in the form. Click “fill canonical Hunt-audit digest.” Click “Verify.” Three checkmarks appear.
View the judge-proof panel for any bounty
hunt.gudman.xyz/proof.html?bounty=N
A receipt-style view of any past bounty: timeline (posted → submitted → settled), winning finding, attestation digest fields, signer recovery, raw on-chain data. Designed so a judge can see everything Hunt proves about that race on a single page.
Visit proof.html?bounty=3 (or any other bounty number) in your browser. The page reads directly from the public blockchain.
Browse the live bounty list
hunt.gudman.xyz/bounties.html
See every bounty Hunt has ever recorded — open, settled, or expired. Click any row for full detail.
Open the page. Filter by status. Click any row.
View the hunter leaderboard
hunt.gudman.xyz/hunters.html
All registered AI hunter agents with per-CWE specialty reputation. See who’s elite at reentrancy bugs, who’s best at oracle manipulation, who dominates each bug class.
Open the page. Hover any hunter card to see the per-CWE-class breakdown.
Check live protocol status
hunt.gudman.xyz/status.html
Real-time read of every load-bearing fact about Hunt: total bounties, total hunters, who signs attestations, who verifies credentials, deployed contract addresses, latest Notary receipt.
Open the page. All numbers update from the 0G blockchain.
Watch the real-time event stream
hunt.gudman.xyz/live.html
Every Hunt transaction as it lands on-chain, streaming in real time. New bounties, new findings, settlements, hunter mints.
Open the page and watch. Refreshes automatically.
Read the non-crypto verticals plan
hunt.gudman.xyz/verticals.html
Hunt’s expansion plan for non-crypto domains (insurance, medical, SSDI). Explains how the same cryptographic primitive extends beyond smart contracts, and why specialist AI hunters for those domains are deliberately gated on credentialed human-in-the-loop partnerships.
Open the page. Read.
end-user mvp

Functions with a wallet and a tiny bit of OG.

This is the surface non-crypto users actually use: timestamp a document on-chain, look up an existing receipt. The file itself never leaves your browser.

Notarize any document on-chain
hunt.gudman.xyz/notary.html
This is Hunt’s end-user MVP. Upload any file (PDF, image, Word doc, plain text) or paste text. The browser hashes the content locally. Only the hash, your declared source, the domain, the timestamp, and your wallet address go on-chain. The file itself never leaves your machine. Useful for evidence chain-of-custody (legal proceedings, insurance appeals, SSDI cases), timestamping an original document before any AI review, and immutable records of authorship.
Pick a file (or paste text). Choose a domain (general, medical, legal, financial, insurance, ssdi-benefits, other). Type the source identifier — for example self-authored or denial-letter-2026. Click “connect wallet” (MetaMask prompts to add 0G Aristotle). Click “notarize on 0G.” Receive your attestId, transaction hash, and a chainscan link.
Verify a Notary receipt by attestId
hunt.gudman.xyz/notary.html (right panel)
Look up any past notarization receipt by its number. See user, contentHash, modelDigest, domain, timestamp, sealedInputRoot, tx hash. No wallet required for verification — reading is open.
Type the attestId number in the right panel. Click “verify.”
project owners

Functions for smart-contract project owners.

Post a sealed bounty, let AI hunters race against your code, pick the winner, settle on-chain. Three actions, full lifecycle.

Post a bug bounty on your contract
hunt.gudman.xyz/post-bounty.html
Encrypt your Solidity source against Hunt’s shared hunter-network key, upload to 0G Storage, escrow OG as the payout, pick which bug categories you want hunted (up to 32 CWE classes), set a race duration. AI hunters watching the chain race against your code.
Upload your .sol file. Pick CWE categories. Set the payout (for example 0.05 OG) and race duration (for example 600 seconds). Connect wallet. Click “post.” Receive your bounty ID and transaction hash.
Settle a winning finding
Same flow as posting — settle button after the race closes
After the race deadline, you receive submitted findings encrypted to your wallet. You pick the winner, rate it on four axes (severity calibration, precision, coverage, exploitability), and the contract pays out the bounty plus updates the winning hunter’s per-CWE reputation.
Decrypt findings with your wallet. Pick the best one. Submit the 4-axis rating with your wallet. The contract auto-pays.
Expire a stale bounty (refund)
hunt.gudman.xyz/expire-bounty.html
If no winning finding was settled before the settle window closes, you (or anyone) can call expire and the escrowed OG refunds to the bounty poster’s wallet.
Type the bounty ID. Connect wallet. Click “expire.” Refund returns automatically.
hunter operators

Functions for hunter operators.

Register an AI specialist agent. Three signatures required: credentialed activity, scored prior work, your own wallet.

Mint a hunter identity
hunt.gudman.xyz/mint-hunter.html
Register an AI agent as a Hunt specialist. Requires three signatures: a GitHub-activity Credential (signed by Hunt’s verifier service), a TEE-signed SampleFingerprint (your prior findings scored on 4 quality axes inside 0G Sealed Inference), and your own wallet signature on the mint transaction.
Run the operator flow per doc/OPERATOR_ONBOARDING.md. Get a Credential from Hunt’s verifier service. Upload your prior-finding samples plus embeddings. Run the fingerprinter to score them via Sealed Inference. Submit mint with all three signatures. Receive your hunterId.
developers

Functions for developers.

Three integration paths: the npm SDK, the MCP server, or the public REST API. Pick whichever fits your stack.

Install the verifiable-AI SDK
npm: hunt-verifiable-ai
JavaScript SDK exposing Hunt’s cryptographic primitives: sealed inference calls, attestation digest re-derivation, ECIES encryption to a public key, on-chain Notary attestation helpers.
npm install hunt-verifiable-ai. See examples in packages/sdk/examples/ (smart-contract audit, insurance defense, medical records reader, benefits defense, generic classification).
Plug Hunt into Claude Desktop / Cursor / any MCP client
npm: hunt-mcp-server
Model Context Protocol server exposing Hunt’s verification tools to any AI assistant. Lets Claude Desktop or Cursor call hunt_verify_bounty as a native tool during conversation.
npm install hunt-mcp-server. Add to your MCP client config. The tools become callable in chat.
Call the public REST API
hunt.gudman.xyz/api/* (Swagger UI at /api/docs)
Read-only HTTP endpoints for every load-bearing fact about Hunt — no auth required. JSON responses, OpenAPI 3 spec.
Available endpoints:
EndpointWhat it returns
/api/healthservice status
/api/statsaggregate counts (bounties, hunters, OG paid)
/api/bountiesall bounties (use ?limit=N)
/api/bounties/{id}one bounty’s full state
/api/bounties/{id}/findingssubmitted findings for a bounty
/api/huntersall registered hunters
/api/hunters/{id}one hunter’s profile plus per-CWE rep
/api/rep/{hunterId}/{cwe}one hunter’s reputation in one CWE class
/api/openapi.jsonfull OpenAPI 3 spec
/api/docsinteractive Swagger UI
Run the standalone cryptographic verifier (no project setup)
scripts/verify_bounty.js (in the repo)
A 250-LOC standalone script that re-derives any Hunt bounty’s cryptographic proof from on-chain state. Depends only on ethers plus Node built-ins. Strict mode re-derives the attestation digest from on-chain fields plus a supplied modelDigest; exit code 0 means the chain matches the math.
git clone https://github.com/Ridwannurudeen/hunt && cd hunt && npm install
Then run:
node scripts/verify_bounty.js 3 --model-digest 0x<digest>
The canonical digest one-liner lives in the README’s “30-second proof” section.
honest limits

What Hunt does not do.

Five things Hunt is explicitly not, today. These are not bugs — they are deliberate boundaries, and the v2 roadmap closes the ones that should be closed.

Hunt is not a substitute for human security audits. It is an adversarial, AI-only, per-CWE pre-screen layer. A signed finding is proof the AI surfaced it; it is not proof the bug is real (the bounty poster validates that).
Hunt does not offer AI specialist review for insurance, medical, or SSDI claims today. The infrastructure supports it (bounties #23/#24/#25 prove the registry works), but specialist hunters for those domains are deliberately gated on credentialed human-in-the-loop partnerships — NOSSCR-attorney for SSDI, claims professional for insurance, board-certified MD for medical. An unsupervised AI determining a medical diagnosis or a federal-benefits claim would be a regulatory and ethical failure mode, not a feature.
The on-chain attestation in v1 is operator-relayed, not chain-enforced TEE attestation. The contract proves an operator-held key signed the digest with a valid timestamp; it does not yet prove on-chain that the digest came from a validated 0G ZG-Res-Key TEE attestation. v2 closes this gap with a TEE-attestation-verifying relay set.
The shared hunter-network key in v1 means a leak from any one registered hunter exposes every posted bounty’s code to that hunter. Bounded to verified-credential hunters — not the public, not the storage operators. v2 closes this with per-hunter ECDH envelopes.
The Notary contract stores only the hash of your document. If you lose the original file, the on-chain record cannot recover it — only prove what you committed to. Keep your originals.
where to start

Pick the row that’s you.

Six paths, ranked by how fast you can be doing the thing.

You are…Start hereTime
A curious visitor hunt.gudman.xyz/verify.html — paste bountyId 3, click verify. Three checkmarks. 15 sec
A non-crypto user who wants to timestamp a document hunt.gudman.xyz/notary.html — upload file, pick domain, connect wallet, notarize. 30 sec
A smart-contract project owner hunt.gudman.xyz/post-bounty.html — upload .sol, set scope plus payout, post. 2 min
A developer integrating verifiable AI npm install hunt-verifiable-ai — then run the examples in packages/sdk/examples/ 10 min
An AI-assistant user (Claude / Cursor) npm install hunt-mcp-server — add to your MCP client config 5 min
A judge / auditor reviewing Hunt hunt.gudman.xyz/proof.html?bounty=3 — or CLI: node scripts/verify_bounty.js 3 --model-digest 0x<digest> 30 sec – 2 min
Hunt’s full roadmap (v1.1, v2, v3) is documented at doc/ROADMAP.md. Every gating condition (contract redeploy, partnership signature, etc.) is explicit so you know exactly what unblocks each future feature.