[MEDIUM] Proofs include Date.now(), making them non-reproducible

[DeFiVC]

Description

In src/stellar/signatures.ts:17 and src/stellar/signatures.ts:61, both createQuizProof and createMintAuthorization include timestamp: Date.now() in the payload. This means:

• Every call produces a different hash for the same arguments
• verifyQuizProof cannot reconstruct the original hash because it doesn't know the timestamp

Impact

Proofs are non-reproducible for verification. The verify function can only confirm "platform signed this hash" but not "this hash matches these specific arguments."

Files

src/stellar/signatures.ts:17 (createQuizProof)
src/stellar/signatures.ts:61 (createMintAuthorization)

Suggested Fix

Remove the timestamp from the signed payload, or make it a deterministic parameter passed to both create and verify functions.

[Clement-coder]

Hello, I'm a Full Stack Blockchain, Mobile, and Software Engineer with experience building scalable applications, smart contracts, APIs, and modern user-focused products.

I've reviewed this issue and understand the requirements and expected outcome. My background allows me to quickly analyze problems, implement efficient solutions, and maintain high code quality throughout development. I'm confident in my ability to deliver a clean, well-tested, and maintainable solution, and I'd be excited to contribute to this project.

[CleanDev-Fix]

Hi, I would like to work on this.

My planned approach:

1. Review the existing CI/test workflow path and keep the change scoped to the issue request.
2. Implement the smallest focused change needed for CI/test workflow without broad refactors.
3. Verify with the relevant build/test commands and the workflow syntax checks available locally and include the results in the PR.

One trade-off I will keep in mind: I will avoid expanding the scope beyond this issue unless you prefer a broader fix.

Does this approach line up with what you want for this issue?

[Menjay7]

Hi! I came across this issue and would love to work on it. I have experience with similar tasks and I'm confident I can investigate, implement a clean solution, and thoroughly test it before submitting a PR. If the issue is still open, I would appreciate it if you could assign it to me. Thank you!