QuantumScan

bitcoin/bitcoin

risk score

3 findings · 30 files scanned

The Bitcoin repository relies entirely on secp256k1 elliptic curve cryptography, which is vulnerable to quantum attacks via Shor's algorithm. With quantum computers advancing rapidly, all ECDSA signatures and key derivation mechanisms face future compromise risk. Migration to post-quantum cryptography is essential for long-term security.

Recent findings

File	Algorithm	Severity
src/secp256k1/src/int128_struct.h:10	secp256k1 (Bitcoin curve)	high
src/secp256k1/src/int128_struct.h:12	secp256k1 (Bitcoin curve)	high
src/secp256k1/src/util_local_visibility.h:5	secp256k1 (Bitcoin curve)	high

Exposure by language

C/C++3 · 100%

Compliance mapping

DORA

NIS2

NIST PQC

Gap

Exports for compliance

Share read-only link

Anyone with this link can view the risk score and top findings — no sign-in required. Source code stays private.

https://quantumscan.io/en/share/d211ff7e-be13-4388-a0e2-7178dc0af370

Add a badge to your README

Show your project's post-quantum readiness in the README. The badge updates automatically after every new scan.

Preview

Markdown

[![Post-Quantum Readiness](https://quantumscan.io/api/badge/bitcoin/bitcoin.svg)](https://github.com/bitcoin/bitcoin)

HTML

<a href="https://github.com/bitcoin/bitcoin"><img src="https://quantumscan.io/api/badge/bitcoin/bitcoin.svg" alt="Post-Quantum Readiness" /></a>

Add badge to your README

Show your quantum-safety score directly on GitHub.

[![QuantumScan](https://quantumscan.io/api/badge/bitcoin/bitcoin.svg)](https://quantumscan.io/en/scan/d211ff7e-be13-4388-a0e2-7178dc0af370)

Save your results & track future changes

Create a free account to get drift alerts, compliance PDF exports, and scan history.

Weekly drift alerts when new vulnerabilities appear
Track risk score over time across all your repos
Export DORA / NIS2 compliance PDF for auditors

Create free account →Sign in

Free forever for design partners · No credit card