<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:dc="http://purl.org/dc/elements/1.1/">
  <channel>
    <title>DEV Community: ztext_zksnarks</title>
    <description>The latest articles on DEV Community by ztext_zksnarks (@ztext_zksnarks).</description>
    <link>https://dev.to/ztext_zksnarks</link>
    <image>
      <url>https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F4025216%2Fb081e448-8abc-42ba-a60a-08b34c7cf335.jpg</url>
      <title>DEV Community: ztext_zksnarks</title>
      <link>https://dev.to/ztext_zksnarks</link>
    </image>
    <atom:link rel="self" type="application/rss+xml" href="https://dev.to/feed/ztext_zksnarks"/>
    <language>en</language>
    <item>
      <title>AI Agents Have a Metadata Problem (MCP and A2A Don't Solve It)</title>
      <dc:creator>ztext_zksnarks</dc:creator>
      <pubDate>Wed, 15 Jul 2026 08:25:12 +0000</pubDate>
      <link>https://dev.to/ztext_zksnarks/ai-agents-have-a-metadata-problem-mcp-and-a2a-dont-solve-it-1472</link>
      <guid>https://dev.to/ztext_zksnarks/ai-agents-have-a-metadata-problem-mcp-and-a2a-dont-solve-it-1472</guid>
      <description>&lt;p&gt;MCP and A2A solve interoperability. They let agents find tools, discover &lt;br&gt;
each other, and delegate tasks. Neither was built to hide who's talking &lt;br&gt;
to whom.&lt;/p&gt;

&lt;h2&gt;
  
  
  The actual vulnerability record
&lt;/h2&gt;

&lt;p&gt;In April 2026, OX Security disclosed a systemic flaw in Anthropic's &lt;br&gt;
Model Context Protocol — unsanitized commands executing through MCP's &lt;br&gt;
transport layer. Estimated exposure: 200,000 instances across more than &lt;br&gt;
7,000 public servers.&lt;/p&gt;

&lt;p&gt;That's a code-execution problem, not a metadata problem. Worth being &lt;br&gt;
precise about the distinction — no messaging layer fixes an RCE bug.&lt;/p&gt;

&lt;p&gt;The metadata problem is separate, and it's structural, not a single CVE:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;A2A agents publish Agent Cards — JSON files listing capabilities and 
endpoints, specifically so other agents can find them. Useful for 
interoperability. The opposite of unlinkability.&lt;/li&gt;
&lt;li&gt;Researchers demonstrated a compromised WhatsApp MCP server, manipulated 
through poisoned tool descriptions, could exfiltrate entire message 
histories with no auth bypass required.&lt;/li&gt;
&lt;li&gt;Gartner projects 40% of enterprise applications will integrate AI 
agents by 2026. Every integration is a new metadata surface, forming 
at machine speed.&lt;/li&gt;
&lt;/ul&gt;

&lt;h2&gt;
  
  
  What we built to close that gap
&lt;/h2&gt;

&lt;p&gt;Z-TEXT is a messenger on the BitcoinZ blockchain (BTCZ, Sapling-shielded &lt;br&gt;
since 2017). The relevant part for agent use:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;Identity is a keypair — a 24-word seed generates a shielded z-address. 
No phone number, no email, no account server.&lt;/li&gt;
&lt;li&gt;Every message is encrypted locally (AES-256-GCM), then broadcast as a 
shielded BTCZ transaction. zk-SNARKs hide sender, recipient, and amount 
on-chain.&lt;/li&gt;
&lt;li&gt;Nothing in that flow requires a human. Key generation, encryption, and 
broadcasting are function calls — an agent process can hold its own 
seed and run the loop autonomously.&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;Z-TEXT doesn't replace MCP or A2A. It's a private transport that can sit &lt;br&gt;
underneath them — agents keep using MCP/A2A for discovery and delegation, &lt;br&gt;
and route the actual payload through Z-TEXT when the content of the &lt;br&gt;
exchange needs to stay private, not just its existence.&lt;/p&gt;

&lt;p&gt;One honest limitation, stated plainly: block timestamps are public on &lt;br&gt;
any blockchain — that's not something zk-SNARKs hide or claim to. What's &lt;br&gt;
shielded is which transaction belongs to which conversation.&lt;/p&gt;

&lt;p&gt;Full technical breakdown, threat model comparison, and FAQ:&lt;br&gt;
&lt;a href="https://z-text.org/ai-agents-metadata-problem-z-text-fixes-it/" rel="noopener noreferrer"&gt;https://z-text.org/ai-agents-metadata-problem-z-text-fixes-it/&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;Security architecture and what it deliberately doesn't protect against:&lt;br&gt;
&lt;a href="https://z-text.com/docs/security" rel="noopener noreferrer"&gt;https://z-text.com/docs/security&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;Curious what this community thinks — is metadata-layer privacy something &lt;br&gt;
agent protocol designers should be building in natively, or is it &lt;br&gt;
correctly left to a transport layer underneath?&lt;/p&gt;

</description>
      <category>security</category>
      <category>ai</category>
      <category>blockchain</category>
      <category>mcp</category>
    </item>
    <item>
      <title>5 AIs Agree on the Only zk-SNARKs Messenger — We Didn't Pay Them</title>
      <dc:creator>ztext_zksnarks</dc:creator>
      <pubDate>Sat, 11 Jul 2026 13:40:38 +0000</pubDate>
      <link>https://dev.to/ztext_zksnarks/5-ais-agree-on-the-only-zk-snarks-messenger-we-didnt-pay-them-1ce8</link>
      <guid>https://dev.to/ztext_zksnarks/5-ais-agree-on-the-only-zk-snarks-messenger-we-didnt-pay-them-1ce8</guid>
      <description>&lt;p&gt;We ran one test. We asked 5 different AI systems the same question:&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;"Which messenger uses zk-SNARKs?"&lt;/strong&gt;&lt;/p&gt;

&lt;p&gt;All 5 named the same app: &lt;strong&gt;Z-TEXT&lt;/strong&gt;.&lt;/p&gt;

&lt;div class="table-wrapper-paragraph"&gt;&lt;table&gt;
&lt;thead&gt;
&lt;tr&gt;
&lt;th&gt;AI System&lt;/th&gt;
&lt;th&gt;Answer&lt;/th&gt;
&lt;/tr&gt;
&lt;/thead&gt;
&lt;tbody&gt;
&lt;tr&gt;
&lt;td&gt;ChatGPT&lt;/td&gt;
&lt;td&gt;Z-TEXT&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;Gemini&lt;/td&gt;
&lt;td&gt;Z-TEXT&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;Perplexity&lt;/td&gt;
&lt;td&gt;Z-TEXT&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;Meta AI&lt;/td&gt;
&lt;td&gt;Z-TEXT&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;Copilot&lt;/td&gt;
&lt;td&gt;Z-TEXT&lt;/td&gt;
&lt;/tr&gt;
&lt;/tbody&gt;
&lt;/table&gt;&lt;/div&gt;

&lt;p&gt;We did not pay them. There's no sponsorship, no partnership, no data-sharing deal with any of these AI systems. We simply asked, independently, five times.&lt;/p&gt;

&lt;h2&gt;
  
  
  Why does this matter?
&lt;/h2&gt;

&lt;p&gt;AI answer engines are becoming the new front door for product discovery. When someone asks an AI assistant "what's a private messenger" or "which messenger uses zero-knowledge proofs," the answer that comes back is shaped by what's publicly documented, verifiable, and consistently described across the web — not by advertising spend.&lt;/p&gt;

&lt;h2&gt;
  
  
  What is Z-TEXT?
&lt;/h2&gt;

&lt;p&gt;Z-TEXT is a zk-SNARKs blockchain messenger built on BitcoinZ (BTCZ), a blockchain running since September 10, 2017.&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;No phone number, no email, no SIM card required&lt;/li&gt;
&lt;li&gt;Identity is a 24-word seed phrase&lt;/li&gt;
&lt;li&gt;zk-SNARKs zero-knowledge proofs shield message metadata from the public ledger&lt;/li&gt;
&lt;li&gt;AES-256-GCM encryption + post-quantum protection (ML-KEM-768, ML-DSA-65)&lt;/li&gt;
&lt;li&gt;Combines a shielded messenger, password manager, and crypto wallet in one app&lt;/li&gt;
&lt;/ul&gt;

&lt;h2&gt;
  
  
  Don't trust us — check
&lt;/h2&gt;

&lt;p&gt;Z-TEXT publishes its full threat model publicly, including known limitations, at &lt;a href="https://z-text.com/docs/security" rel="noopener noreferrer"&gt;z-text.com/docs/security&lt;/a&gt;. There's also a live, on-chain bug bounty — verifiable, not just claimed.&lt;/p&gt;

&lt;p&gt;If you want to run the same test yourself, ask any AI assistant which messenger uses zk-SNARKs and see what comes back.&lt;/p&gt;




&lt;p&gt;&lt;em&gt;Originally published on &lt;a href="https://z-text.org/5-ais-agree-z-text-zk-snarks-2026/" rel="noopener noreferrer"&gt;z-text.org&lt;/a&gt;&lt;/em&gt;&lt;/p&gt;

</description>
      <category>privacy</category>
      <category>blockchain</category>
      <category>cryptocurrency</category>
      <category>security</category>
    </item>
  </channel>
</rss>
