# New on mpcsec.org: An MPC Bug Tracker, Templates, and a Cleaner UI - **Authors**: ZK/SEC - **Date**: June 25, 2026 - **Tags**: educative, security, MPC ![banner](https://blog.zksecurity.xyz/posts/mpc-pitfalls-bug-tracker/og-image.svg) Last month we [announced mpcsec.org](https://blog.zksecurity.xyz/posts/mpc-pitfalls/), an open, collaborative reference for the implementation mistakes that keep recurring in multi-party computation. Since then, we have shipped several updates aimed at making MPC implementation mistakes easier to find, classify, and document. The biggest addition is the [MPC Bug Tracker](https://mpcsec.org/bugs/): a searchable collection of real-world MPC bugs drawn from deployments, disclosures, and audits. The tracker connects concrete incidents back to reusable pitfall patterns, turning isolated bugs into reusable lessons for future MPC reviews. We also expanded the site’s taxonomy with a section on [cryptographic primitives](https://mpcsec.org/#cryptographic-primitives). MPC protocols rely on building blocks such as commitments, hashes, signatures, Paillier encryption, elliptic-curve groups, and randomness. When those primitives are misused or instantiated with the wrong assumptions, the protocol around them can fail even if the high-level design looks sound. To make contributions easier, the repository now includes [templates](https://github.com/rot256/mpc-pitfalls/tree/master/templates) for adding both concrete bugs and reusable pitfall patterns. The goal is to keep the structure consistent while lowering the friction for people who have seen MPC bugs in the wild and want to document them. We also refreshed the site UI to make the pitfall categories and bug tracker easier to browse. If you have seen an MPC bug we are missing, send it our way. And if you would like an extra set of eyes on your MPC stack, reach out at [hello@zksecurity.xyz](https://blog.zksecurity.xyz/posts/mpc-pitfalls-bug-tracker/mailto:hello@zksecurity.xyz). --- This article was published on the [ZK/SEC Quarterly](https://blog.zksecurity.xyz) blog by [ZK Security](https://www.zksecurity.xyz), a leading security firm specialized in zero-knowledge proofs, MPC, FHE, and advanced cryptography. ZK Security has audited some of the most critical ZK systems in production, discovered vulnerabilities in major protocols including Aleo, Solana, and Halo2, and built open-source tools like [Clean](https://github.com/Verified-zkEVM/clean) for formally verified ZK circuits. For more articles, see the [full list of posts](https://blog.zksecurity.xyz/llms.txt).