Source
ArticleWhat the Zcash Orchard Bug Reveals About Verifiable Supply
Added to the wiki June 17, 2026 at 06:17 PM UTC · full text archived June 17, 2026 at 09:17 PM UTC
A Blockstream blog post that uses the Orchard bug to make a design argument about verifiable supply. It contrasts two models: Bitcoin's public ledger, where every full node continuously re-checks the emission schedule and 21-million cap so a coin minted from nothing would be an immediately visible consensus violation; and Orchard's fully shielded model, where inputs, outputs, amounts, and links are all hidden, so "the proof is the only check there is" and a circuit-soundness bug becomes both undetectable and, after the fact, unrecoverable. It places designs on a spectrum from full privacy (Orchard) to selective privacy such as Liquid's Confidential Transactions, which hide amounts while keeping supply publicly balanced, and argues that supply resting on an "exotic, highly complex zk-SNARK circuit" carries a longer tail of latent failure modes than a simple public balancing check.
This is a partisan source — Blockstream builds Bitcoin and Liquid infrastructure — so its framing favors the transparent model. It is included for the design distinction it draws clearly, not as a verdict; the privacy benefits Orchard delivers are real and are why the shielded model exists.