社区声明：关于 DAO V1.1 平台上线

Today, @phroi published a thorough code review of the DAO V1.1 platform. We want to address the community directly.
今天 Phroi 发布了一份针对 DAO V1.1 平台的完整代码审计报告。我们在此正式向社区回应。

We acknowledge the following facts:
我们确认以下事实：

• Phroi raised the voter whitelist concern on January 27. The team is committed to removing it before the mainnet launch. As of today, the commitment was only partially filled, as there are two whitelist mechanisms as specified in David’s post. Also, Phroi’s follow-up on Nervos Talk (post #115, March 7) went unanswered for over a week. This is a failure in our communication and coordination, and we take full responsibility.

• Phroi 于1月27日提出了投票白名单的问题。团队当时承诺在主网上线前移除。截至今天，该承诺只完成了部分兑现, 具体原因见此贴. 而且 Phroi 在 Nervos Talk 上的跟进（#115，3月7日）也超过一周未获回应。这是我们在沟通和协调上的失误，我们对此负全部责任。

• The audit report identified issues beyond the whitelist, including unauthenticated API endpoints, test code left in production, and the absence of an independent verification tool for vote tallies. These findings are legitimate. The dev team has begun addressing them. Here is the current progress.

• 审计报告指出的问题不仅限于白名单，还包括未认证的 API 端点、生产环境中残留的测试代码，以及缺少独立的投票计票验证工具。这些发现属实。开发团队已开始处理，目前处理结果见此贴。

What we are doing:
我们的应对方案：

• The March 16 mainnet launch is postponed. The platform has not yet met the delivery standard for Milestone 2 (Mainnet Launch and Trial Operation) as defined in the approved V1.1 proposal. The public testing period described below is part of the process to bring the deliverables to an acceptable state for community review.

• 3月16日的主网上线暂缓。平台尚未达到 V1.1 提案中 Milestone 2（主网上线与试运行）的交付标准。下述公开测试期是推动交付物达到社区验收标准的过程之一。

• The platform will be available soon for a 4-week public testing period starting this week. We invite all community members to participate as testers.

• 用于为期4周的社区测试平台将在本周发布给社区。我们邀请所有社区成员参与测试。

• The dev team will work with community contributors to build an independent chain-reading audit tool, so that vote results can be verified without trusting the platform operator.

• 开发团队将与社区贡献者合作开发一个独立的链上审计工具，使投票结果可以在不依赖平台运营者的情况下被独立验证。

• At the end of the testing period, the steward team will submit a Milestone 2 verification report. The community will review the platform’s readiness through the existing milestone acceptance process under V1.0 rules.

• 测试期结束后，物业团队将提交 Milestone 2 验收报告。社区将按照 V1.0 规则下现有的里程碑验收流程，审核平台是否达到上线标准。

Regarding AMA:
关于AMA：

• The AMA will proceed as scheduled, but the agenda is adjusted. It will focus on a transparent walkthrough of the audit findings, what has been fixed, what is still in progress, and the testing period plan outlined above. The leadership and dev team will be present to answer technical questions directly.

• AMA 将按原定时间进行，但议程调整。重点将围绕审计报告的发现进行透明说明：哪些已修复、哪些仍在处理中，以及上述测试期计划。领导团队和开发团队将出席，直接回答技术问题。

• Going forward, we will use this thread as a single, dedicated place, the central hub for all feedback, questions, and issue tracking during the public testing period. All findings from Phroi’s audit will be listed here, along with their current resolution status.

• 未来我们将使用本帖作为测试期间所有反馈、问题和进度追踪的集中入口。Phroi 审计报告中的所有发现将逐项列出并标注处理状态。

• We want to thank Phroi for investing significant personal time and effort into this review. This is exactly the kind of community participation that makes the DAO stronger. We are committed to earning the community’s trust through actions, not assurances.

• 我们感谢 Phroi 投入大量个人时间和精力完成这次审查。这正是让 DAO 变得更强的社区参与方式。我们将通过行动而非承诺来赢得社区的信任。

DAO V1.1 Proposal & Steward Team
DAO V1.1 提案和物业团队