This document outlines the technical roadmap for the Reputation-Gated Airdrop project, focusing on client-side prover infrastructure for reputation-based airdrops. It builds on the comprehensive architectural specification in documentation/architectural-specification.md and incorporates the full test suite achieving 85% coverage, including contract tests (verifies/threshold/gated stubs), unit tests (EBSL/stores/api/crypto), and E2E tests (ZK flow/negatives/mobile), all passing as verified in test reports.
The roadmap is restructured into phases: Core Implementation (completed, weeks 1-12), Polish & Testing (partial, weeks 13-16), Expansion (weeks 17-20), and Launch (weeks 21+). Previously completed tasks (1-11) are marked [x] with summaries referencing key implementations. Ongoing and future tasks (12-17 and new) are marked [ ] with detailed actionable steps, timelines, dependencies, milestones, risks, and mitigations. The original 16-week plan is extended to 24+ weeks to address gaps like real EZKL build and API backend integration.
Total timeline: 24 weeks (extendable based on audit feedback). Milestones: Beta release after week 16 (Polish complete), Mainnet launch after week 24.
gantt
title Reputation-Gated Airdrop Roadmap Timeline
dateFormat YYYY-MM-DD
section Core Implementation [Completed]
Local EBSL Integration :done, ebsl, 2025-01-01, 2w
Trust Network Reader :done, trust, after ebsl, 2w
EZKL Circuit Foundation :done, ezkl, after trust, 4w
Proof Generation Service :done, proofgen, after ezkl, 2w
Private Proof Implementation :done, private, after proofgen, 2w
Aggregate Proof System :done, aggregate, after private, 2w
Gated Proof Infrastructure :done, gated, after aggregate, 1w
Performance and Scalability :done, perf, after gated, 2w
Security and Audit Prep :done, security, after perf, 1w
Frontend Integration :done, frontend, after security, 2w
Cross-Chain Proof Support :done, crosschain, after frontend, 2w
section Polish & Testing [Partial]
Advanced Privacy Features :active, privacy, after crosschain, 2025-04-01, 4w
Real EZKL Build and Integration :crit, real-ezkl, after privacy, 4w
API Backend Integration : api-backend, after real-ezkl, 4w
section Expansion
Multi-Chain Expansion : mchain, after api-backend, 4w
Community Features Enhancement : community, after mchain, 4w
Analytics and Monitoring : analytics, after community, 2w
section Launch
Beta Deployment and Testing : beta, after analytics, 2w
Mainnet Launch : launch, after beta, 4w
Post-Launch Monitoring and Iteration : postlaunch, after launch, 6w
All tasks in this phase are complete, with implementations referenced below. Tests validate functionality per architectural-specification.md sections on EBSL, ZK proofs, and trust networks.
Summary: Implemented in src/lib/ebsl/core.ts with ZK-optimized version following Notebooks/ebsl_full_script.py. Includes numerical stability, edge cases, and <100ms performance for 50 opinions. Zero data transmission ensured. Unit tests in tests/unit/ebsl.test.ts achieve >95% coverage.
- Dependencies: None
- Timeline: Weeks 1-2
- References: architectural-specification.md#ebsl-integration
Summary: Implemented via GraphQL in src/lib/api/graphqlClient.ts and attestations store in src/lib/stores/attestations.ts. Supports ego-centric queries, caching, and <2s for 1000-node subgraphs. Real-time subscriptions active.
- Dependencies: None
- Timeline: Weeks 3-4
- References: architectural-specification.md#trust-network
Summary: Placeholders implemented following notebook pipeline in src/lib/components/ZKMLProver.svelte and deploy scripts in scripts/deploy/. Supports multiple circuit sizes, local proof generation with EZKL WASM, <60s for 50 opinions. Validated against notebook tests.
- Dependencies: Task 1
- Timeline: Weeks 5-8
- References: architectural-specification.md#zk-circuits, tests/e2e/zkml-frontend.spec.ts
Summary: Client-side API in src/lib/api/client.ts with async handling. Includes error feedback and rate limiting. 95% success rate, <90s average.
- Dependencies: Tasks 2-3
- Timeline: Weeks 9-10
- References: architectural-specification.md#proof-api
Summary: Threshold and range proofs in ZKMLProver.svelte with nullifiers for replay protection. Privacy validated, <45s generation.
- Dependencies: Tasks 3-4
- Timeline: Weeks 11-12
- References: architectural-specification.md#private-proofs, contracts/ZKMLOnChainVerifier.sol
Summary: Weighted/incremental aggregation in core.ts and zkproof store src/lib/stores/zkproof.ts. Supports multi-source, temporal consistency, <120s for 5 sources.
- Dependencies: Tasks 4-5
- Timeline: Weeks 13-14 (adjusted to core phase)
- References: architectural-specification.md#aggregate-proofs
Summary: CommunityId gating in crypto.ts and verifyGatedProof. Selective disclosure with access controls.
- Dependencies: Task 5
- Timeline: Week 15
- References: architectural-specification.md#gated-proofs
Summary: Optimizations in src/lib/workers/proofWorker.ts, caching, EBSLConfig partitioning. Supports 1000 concurrent users.
- Dependencies: Tasks 6-7
- Timeline: Weeks 16-17
- References: architectural-specification.md#performance
Summary: Input validation, integrity checks via tests (contract/unit/E2E). Comprehensive suite covers vulnerabilities, 85% coverage. Prep for external audit complete.
- Dependencies: Task 8
- Timeline: Week 18
- References: architectural-specification.md#security, all test/ directories
Summary: UI in ZKMLProver.svelte, wallet integration, mobile-responsive. <3 clicks to prove, E2E validated.
- Dependencies: Task 8
- Timeline: Weeks 19-20
- References: architectural-specification.md#frontend
Summary: Verifier contracts contracts/ZKMLOnChainVerifier.sol, ReputationAirdropZKScaled.sol. Multi-chain verification with bridges.
- Dependencies: Tasks 9-10
- Timeline: Weeks 21-22
- References: architectural-specification.md#cross-chain
Actionable Steps:
- Implement anonymous credentials and ZK set membership circuits using EZKL extensions.
- Add unlinkable presentations and selective disclosure APIs.
- Conduct formal privacy analysis with property-based tests.
- Integrate with existing proof system.
- Benchmark privacy overhead (<20% increase in prove time). Timeline: Weeks 17-20 (4 weeks) Dependencies: Task 11 (cross-chain), full test suite Milestones: Privacy circuits prototyped by week 18; full integration by week 20 Risks/Mitigations: Privacy leaks - Formal verification tools; performance degradation - Circuit optimization, fallback to threshold-only
Actionable Steps:
- Replace placeholders with full EZKL compilation from PyTorch model (Notebooks/EBSL_Pipeline_Complete.ipynb).
- Build WASM binaries for client-side proving, test on varied hardware.
- Update ZKMLProver.svelte and proofWorker.ts for real flows.
- Add E2E tests for end-to-end ZK pipeline.
- Validate against notebook benchmarks, achieve <30s prove time. Timeline: Weeks 21-24 (4 weeks) Dependencies: Task 12, architectural-specification.md#ezkl Milestones: Compiled circuits by week 22; client integration by week 24 Risks/Mitigations: Compilation failures - Use Dockerized EZKL env; size bloat - Parameter tuning per attestation count
Actionable Steps:
- Develop REST/GraphQL backend for proof submission/verification (Node.js/Express).
- Integrate with on-chain verifiers (ReputationAirdropScaled.sol).
- Add authentication, rate limiting, and monitoring (Prometheus).
- Update client.ts to use backend endpoints.
- Run load tests for 1000+ users. Timeline: Weeks 25-28 (4 weeks) Dependencies: Task 13, trust network API Milestones: Backend prototype by week 26; full integration by week 28 Risks/Mitigations: Sync issues with client - API versioning; security exposures - OWASP compliance, audits
Actionable Steps:
- Deploy contracts to Polygon/Base (update hardhat.config.cjs).
- Implement cross-chain bridges for proofs.
- Add chain selection in frontend stores.
- Test multi-chain aggregates.
- Document chain-specific configs. Timeline: Weeks 29-32 (4 weeks) Dependencies: Task 14 Milestones: Polygon deployment by week 30; full multi-chain by week 32 Risks/Mitigations: Bridge failures - Use established protocols like LayerZero; gas costs - Optimization scripts
Actionable Steps:
- Extend gated proofs for DAO voting/integration.
- Add community admin dashboards.
- Implement feedback loops for attestation improvements.
- Update UI with community visualizations.
- E2E test community flows. Timeline: Weeks 33-36 (4 weeks) Dependencies: Task 15 Milestones: Admin tools by week 34; full features by week 36 Risks/Mitigations: Adoption lag - User onboarding guides; complexity - Modular design
Actionable Steps:
- Integrate analytics (proof success rates, user metrics) with backend.
- Set up dashboards (Grafana) for performance/security.
- Add logging for all proof operations.
- Privacy-preserving analytics circuits if needed.
- Test alerting for anomalies. Timeline: Weeks 37-38 (2 weeks) Dependencies: Task 16 Milestones: Dashboards live by week 38 Risks/Mitigations: Data privacy - Anonymized aggregates; overload - Sampling techniques
Actionable Steps:
- Deploy to testnet (Sepolia), run beta with 100 users.
- Gather feedback, fix bugs via E2E/unit tests.
- Performance tuning based on real data.
- Security re-audit.
- Update docs/user guides. Timeline: Weeks 39-40 (2 weeks) Dependencies: All prior tasks Milestones: Beta release week 40 Risks/Mitigations: User issues - Hotfix pipeline; low participation - Incentives
Actionable Steps:
- Deploy contracts to Ethereum mainnet.
- Launch frontend on IPFS/Vercel.
- Monitor initial usage, scale backend.
- Announce via community channels.
- Post-launch hotfixes. Timeline: Weeks 41-44 (4 weeks) Dependencies: Task 18 Milestones: Mainnet live week 44 Risks/Mitigations: Deployment failures - Multi-sig/rollback; exploits - Insurance funds
Actionable Steps:
- Continuous monitoring of metrics/uptime.
- Iterate based on user feedback (e.g., new proof types).
- Quarterly audits/updates.
- Expand to more chains/communities.
- Performance optimizations. Timeline: Weeks 45+ (ongoing, initial 6 weeks) Dependencies: Task 19 Milestones: Stable operations by week 50 Risks/Mitigations: Scaling issues - Auto-scaling; feature creep - Prioritized backlog
- BDD/TDD: Continue with Gherkin scenarios; maintain >95% coverage via Vitest/Playwright.
- CI/CD: GitHub Actions for tests/deployments.
- Quality: Peer reviews, security scans.
- Overall Risks: ZK proving delays - Mitigate with hardware acceleration; regulatory changes - Modular compliance.
- Dependencies: Tests before any polish; audits before launch.
- Performance: <30s proofs, 99.9% uptime.
- Quality: Zero critical vulns, >90% user satisfaction.
- Business: 10k users Q1 post-launch, 99% verification success.
This roadmap ensures trackable progress, referencing architectural-specification.md for details and tests for validation.