// inside head tag

Anonymous Governance Meets Safe Multisig: Nethermind's Audit of SAMM Protocol

Security

July 2, 2025

Introduction

The Safe Anonymous Mail Module (SAMM) is a specialized module integrated into Safe multisig wallets to enhance transaction privacy and simplify management. Built as a custom app within the Safe Wallet interface, SAMM enabled anonymous interactions between participants using the Noir language.

The system worked through an email-based voting process. Emails were received by the relayer, containing either propositions for transactions or votes for processing execution of already proposed transactions. The relayer then processed these messages and stored all the votes. After the threshold was reached, a ZK proof was generated and posted on-chain to a SAMM contract. Once the proof was successfully verified, the transaction was executed using the Safe wallet.

Noir provides a more user-friendly and high-level approach to building zero-knowledge applications compared to Circom, making it easier to write, understand, and maintain.

Our Process: A Security Review Built for Privacy

Nethermind Security conducted a full audit of the SAMM circuits in what marked our first major Noir language audit. This presented unique challenges as we were among the first auditing firms to tackle Noir circuits - we and one other company audited in parallel, with no previous audit experiences to reference.

Despite this uncharted territory, Oxorio's exceptional documentation quality significantly streamlined our process. The audit included comprehensive documentation review, NatSpec analysis, and direct collaboration with the client to address questions that arose during this pioneering security assessment.

Findings That Mattered

The audit revealed several areas requiring attention across the SAMM circuits, including operational challenges and security considerations that needed to be addressed through the development process.

The Outcome: Security Through Collaboration

The comprehensive audit identified several issues across the SAMM circuits, which were fully addressed through collaborative efforts with the client.

"Nethermind’s security team combines rigorous technical depth with responsive, human-first communication: live walkthroughs of each finding, practical mitigation paths, and follow-up checks until the fixes were rock-solid. It was an enjoyable experience for us, and the SAMM’s codebase now is measurably safer."

Co-founder and CTO Alex Avdonin.

”Oxorio, the development team behind SAMM, demonstrated exceptional preparation for this audit. Their high-quality documentation significantly reduced the complexity of the auditing process, showcasing their commitment to security and transparency from the development phase.”

Lead Auditor, Luciana Silva

Nethermind Security

We partner with ambitious teams to validate complex cryptographic systems. Ready to discuss your security needs? Start a conversation with Nethermind Security today.

Latest articles