Hindsight edits: prevented by commit→reveal with nonce.
Payload guessing: 32‑byte nonce entropy.
Withholding losers: maxRevealAt + Expired penalties in analytics.
Publisher spoofing: off‑chain ECDSA signatures and publisher registry.
Reorgs: k‑confirmation UI; finality states.
Key safety: multisig + timelocks; HSM/Yubi for publisher keys.