Quantum-resistant L1 smart-contract platform
QANplatform QANX
QANplatform has a publicly documented quantum-resistant design centered on its XLINK cross-signer protocol, which binds ECDSA (secp256k1) keys to NIST-standardized ML-DSA-65 (CRYSTALS-Dilithium, FIPS 204) post-quantum keys. The XLINK library and QVM have been independently audited by Hacken (November 2025 and July 2025 respectively), with most findings resolved. However, as of 2026-06-01 the QAN L1 mainnet has not launched: the only production asset is the QANX ERC-20/BEP-20 token on Ethereum and BSC, secured entirely by classical ECDSA with no PQ protection. The core L1 protocol source code remains closed in a private GitLab, and a May 2026 strategic update announced a controlled architectural rebase onto Ethereum's official implementation, adding design uncertainty. The project earns strong credit for its NIST-aligned algorithm choice and audited PQ design (Category 5: 14.25/20) but receives minimal scores in production protection (0/35) and migration status (1.5/25) because no production PQ-secure system exists. Both the Stage 2 cap and the Readiness & Risk cap for testnet-only / production-ECC-only set the ceiling at 40, and the conservative factor score of 21 places the final QRI Score at 21/100.
Roadmap OnlyTestnet OnlyPQ Design Audited
Category breakdown
QRI Factors
Algorithm & Implementation Assurance
14.25 / 20
Migration Mechanism, Governance & Ecosystem Coordination
2.75 / 15
Migration Status & Value-at-Risk
1.5 / 25
Production Cryptographic Protection
0 / 35
Security Assessment & Evidence Preparedness
2.5 / 5
Critical Quantum Blockers
- No production L1 mainnet: the QAN L1 mainnet has not launched. All production QANX value (~$24M market cap) resides on the ERC-20/BEP-20 token on Ethereum and BSC, secured entirely by classical ECDSA (secp256k1) with no PQ-protected production transaction path.
- QANX token exists as an ERC-20/BEP-20 on quantum-vulnerable Ethereum and BSC host chains; production spend authorization is entirely ECC-only. The 2022 bridge hack demonstrated the classical ECDSA exposure of the project's bridge infrastructure.
- Core L1 protocol source code is not publicly available, preventing independent verification of quantum-critical claims beyond the audited XLINK/QVM libraries.
- Consensus-layer (validator authentication) quantum resistance is undocumented and unverified for the planned PoS MainNet Beta; PoR is described as experimental and the quantum properties of its VRF/randomness components are not specified.
Key Risks
- All production QANX value (~$24M market cap) is secured by classical ECDSA on Ethereum and BSC; any holder address that has sent a transaction has an exposed public key vulnerable to quantum key-recovery attacks. No PQ-protected production path exists.
- No mainnet launch date has been announced. The Integration Audit is still in progress and the May 2026 architectural rebase to Ethereum's official implementation may extend timelines and reduce the applicability of existing component audits to the eventual production system.
- Core L1 protocol source code is closed-source in a private GitLab, preventing independent code-level verification of quantum-critical claims. Public evidence is limited to audits of the XLINK and QVM libraries, testnet explorer data, and documentation.
- The consensus mechanism for MainNet Beta will be Proof-of-Stake rather than the originally planned Proof-of-Randomness. The quantum resistance of validator authentication signatures in the PoS design is not publicly specified.
- When the native L1 mainnet launches, the ERC-20/BEP-20 QANX token will need to be migrated via a bridge mechanism. The bridge design, security model, and quantum resistance of the future cross-chain bridge are not yet specified. The 2022 bridge hack (Profanity vanity-address vulnerability) demonstrates historical exposure of the project's bridge administration to classical ECDSA weaknesses.
- A May 2026 secondary-source claim (Tangem) that QANplatform is 'quantum-resistant at mainnet today' conflicts with the project's own roadmap (TestNet v4, MainNet pending Integration Audit) and with another secondary source (LBank, January 2026). This disagreement is consistent with marketing overstatement rather than production mainnet launch; nonetheless, the project should be re-evaluated once an independent mainnet-launch announcement is verified.
Assurance Notes
- Hacken audit of QAN XLINK (November 2025) is ~7 months old — stale but relevant to the current PQ cross-signer design. Scope is limited to the XLINK Go library, not the full integrated L1 protocol.
- Hacken audit of QVM (July 2025) is ~11 months old — stale but relevant to the multi-language VM execution environment.
- Core L1 protocol source code (consensus, full node, P2P, state management) is held in a private GitLab; only peripheral components (ERC-20 token contract, bridge contracts, SDKs, documentation) are open on GitHub. This prevents independent code-level verification of quantum-critical claims beyond the audited XLINK/QVM libraries.
- May 2026 strategic update announced a controlled architectural rebase of QAN core features onto Ethereum's official implementation. This may reduce the applicability of the existing XLINK audit to the eventual production system and introduces design uncertainty.
- No formal quantum-specific incident-response playbook or public disclosure process for quantum-related vulnerabilities.
- No public performance benchmarks for ML-DSA signature generation/verification in the QAN context (block validation time, gas/fee impact, mempool sizing, archival storage growth).
- The Proof-of-Randomness (PoR) consensus is documented as experimental; the public MainNet Beta will launch with Proof-of-Stake instead. The quantum resistance of validator authentication signatures in the planned PoS design is not publicly specified.
- The Integration Audit (covering QVM, XLINK, RPC, Database Layer, Consensus, Governance, Token Economics) is still in progress as of the evaluation date.
- Tangem secondary source (May 2026) claims QANplatform is 'quantum-resistant at mainnet today'; this conflicts with the project's own roadmap and documentation (TestNet v4, MainNet pending) and with LBank (January 2026) stating MainNet activation is still the immediate goal. Treated as marketing claim, not evidence of production mainnet.
Non-Scoring Caveats
- Hacken XLINK audit is ~7 months old but remains relevant to the PQ cross-signer design; scope does not cover the full integrated L1, so this is treated as an assurance caveat rather than a score deduction per QRI v3.1 §6.4.
- QANX ERC-20/BEP-20 token existed before the native L1 design; migration of token supply to the native chain is a future dependency once MainNet launches, not a current production-protection gap beyond the 0% PQ coverage already captured.
- May 2026 architectural rebase to Ethereum's official implementation is a roadmap/structural change; it does not affect current production quantum-attack readiness (no production L1 to attack) but is noted for future evaluation cycles.
- QAN XLINK desktop app is available for Windows, Linux, and macOS for testnet use; MetaMask/Trust Wallet integration is documented. These are positive migration-readiness signals but do not protect production users.
- The 2022 bridge hack (Profanity vanity address vulnerability on the deployer EOA) is a historical classical-cryptography incident that highlights bridge-dependency risk for the ERC-20 token; it does not directly affect current quantum-attack readiness beyond the classical-token risk already scored.
- QANplatform is a member of the Linux Foundation's Post-Quantum Cryptography Alliance; this is a positive ecosystem signal but does not substitute for production PQ deployment.
Evidence record
Claims and Caveats
Security Assessment & Evidence Preparedness
Public cryptographic inventory and quantum threat model
Claim: QANplatform publishes a cryptographic inventory identifying secp256k1 (EVM compatibility), ML-DSA-65 via QAN XLINK (PQ spend authorization), and a PoR/PoS consensus. The quantum threat to ECDSA-based wallets with at least one outgoing transaction is described in project documentation.
Coverage basis: Public design documentation and threat-model description
Implementation score: 0.5 · Evidence confidence: Medium
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: Inventory exists at the design/documentation level but cannot be independently verified against implementation because the core L1 source code is held in a private GitLab.
Consensus-layer quantum resistance (validator authentication, VRFs, randomness) for the planned PoS MainNet Beta is not documented.
Security Assessment & Evidence Preparedness
Public evidence record supporting the assessment
Claim: Evidence base includes two Hacken audits (XLINK November 2025, QVM July 2025), testnet explorer (testnet.qanscan.com), SDK documentation, GitHub peripheral repositories, and public roadmap.
Coverage basis: Component audits, testnet data, and public documentation
Implementation score: 0.5 · Evidence confidence: Medium
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: Audits are component-scoped (XLINK library, QVM), not full integrated L1. No mainnet evidence exists. Core L1 source is private, limiting reproducibility.
Evidence is substantial for the design and testnet phases but zero for production mainnet. Tangem (May 2026) contradicts the project's own TestNet v4 / pending-MainNet status and is treated as marketing.
Production Cryptographic Protection
Spend authorization / transaction signatures on mainnet
Claim: Production QANX token is an ERC-20/BEP-20 on Ethereum and BSC. All spend authorization uses ECDSA (secp256k1) only. The QAN TestNet supports ML-DSA via XLINK, but this is testnet, not production mainnet.
Coverage basis: ERC-20 token on classical host chains; testnet-only PQ support
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: All production QANX spend authorization is ECDSA-only on Ethereum/BSC. No PQ-protected production transaction path exists.
Assurance: ERC-20 token address and its classical-cryptography dependency are verifiable on-chain. Testnet PQ support is documented but not production.
The project's PQ-native L1 design cannot be credited for production protection because the mainnet has not launched. Testnet XLINK PQ signatures demonstrate design capability but do not protect any production value.
Production Cryptographic Protection
Account, address, public-key exposure and key-derivation design
Claim: Production QANX token holders use Ethereum/BSC addresses with ECDSA public keys. Any address that has sent a transaction has an exposed public key vulnerable to quantum key-recovery attacks; no PQ migration path exists on host chains.
Coverage basis: Ethereum/BSC account model with classical ECDSA
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: All production QANX token holders have long-exposure ECDSA public keys on Ethereum/BSC with no PQ migration path available.
Assurance: Verifiable on-chain. QANX token has thousands of holders on Ethereum/BSC, many with exposed public keys.
The XLINK design would theoretically allow migration of these keys to PQ pairs once mainnet launches, but no production migration path is available today.
Production Cryptographic Protection
Consensus-critical authentication (validator signatures, VRFs, randomness beacons, block certificates)
Claim: No production L1 mainnet exists. The QAN TestNet uses a consensus mechanism (PoR) whose quantum resistance is not publicly documented. MainNet Beta is planned to launch with Proof-of-Stake; PoR is documented as experimental and deferred.
Coverage basis: No production consensus; testnet consensus quantum properties unverified
Implementation score: 0 · Evidence confidence: Low
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Quantum blocker: Consensus-layer validator authentication quantum resistance is undocumented. MainNet Beta will use PoS with unspecified signature scheme.
Assurance: PoR documentation explicitly states it is experimental and MainNet Beta will use PoS. Neither consensus mechanism has publicly documented quantum-resistant validator authentication.
PoR is described as 'verifiable pseudorandomness' but the underlying cryptographic primitives (e.g., VRFs, randomness beacons) and their quantum resistance are not specified.
Production Cryptographic Protection
State-integrity and data-availability mechanisms (commitments, nullifiers, accumulators, supply-binding, KZG/pairings, bridge verification)
Claim: No production L1 mainnet exists. State-integrity mechanisms for the planned L1 are not publicly documented at a level that allows quantum-resistance assessment; EVM-compatibility suggests Merkle Patricia Trie-style commitments but quantum-resistant binding properties are unspecified.
Coverage basis: No production state-integrity layer
Implementation score: 0 · Evidence confidence: Low
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: No public specification of state commitment scheme, Merkle tree construction, or data-availability mechanism exists for the planned L1.
Cannot be assessed from public evidence without a production mainnet.
Production Cryptographic Protection
Privacy and proof layers (ZK proof assumptions, note encryption, viewing keys, stealth addresses, shielded state)
Claim: QANplatform does not implement a privacy layer, shielded transactions, ZK proofs, or confidential asset protocols in its current design.
Coverage basis: No privacy layer exists in the architecture
Implementation score: 1 · Evidence confidence: Medium
Issue classification: none · Score treatment: not applicable
Production Cryptographic Protection
P2P transport, node identity, and peer authentication
Claim: No production L1 mainnet exists. P2P layer quantum resistance is not documented; cannot be evaluated as satisfied-by-design because the L1 is not yet in production.
Coverage basis: No production P2P layer
Implementation score: 0 · Evidence confidence: Low
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Assurance: No public documentation of P2P transport encryption or node identity scheme for the planned L1. Cannot apply satisfied-by-design because there is no production chain.
P2P is not consensus-critical or spend-critical; would normally be evaluated as satisfied-by-design if a PQ-native production chain existed. Not applicable here because no production chain exists.
Production Cryptographic Protection
Critical wallet, custody, HSM, and hardware-wallet workflows
Claim: No production PQ wallet path exists. QAN XLINK desktop app supports testnet only (Windows, Linux, macOS). MetaMask and Trust Wallet integration for XLINK cross-signing is documented for testnet. No hardware wallet, HSM, or institutional custody solution supports a production QAN PQ path.
Coverage basis: No production PQ wallet/custody support
Implementation score: 0 · Evidence confidence: Medium
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: No production wallet, custody, or HSM path exists for PQ-protected QANX transactions.
Assurance: XLINK desktop app and MetaMask integration exist for testnet only. No production deployment.
Testnet wallet tooling is a positive migration-readiness signal but does not protect production users.
Migration Status & Value-at-Risk
Percentage of economically relevant value-at-risk protected from quantum key-recovery across all attack windows
Claim: 100% of QANX production value (~$24M market cap) resides on the ERC-20/BEP-20 token on Ethereum and BSC, secured entirely by classical ECDSA. 0% of production value is PQ-protected. Coverage is <25%.
Coverage basis: ERC-20/BEP-20 token on classical host chains
Implementation score: 0.05 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Quantum blocker: 0% of production QANX value-at-risk is PQ-protected. All value is on ECDSA-secured Ethereum and BSC.
Assurance: Token supply, holder count, and contract address are verifiable on-chain. Market cap from CoinGecko.
Maps to score band 1 (<25%) per QRI 9.3.1. Migration of QANX to the native L1 is a future dependency once mainnet launches.
Migration Status & Value-at-Risk
Critical wallets migrated, protected, or inherently PQ-native (treasuries, exchanges, custodians, bridges, foundations, major protocols)
Claim: No critical wallets (treasury, exchange, custody, bridge, foundation) have been migrated to PQ protection because no production PQ-secure L1 exists.
Coverage basis: No migration has occurred
Implementation score: 0 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Assurance: No evidence of any critical wallet migration. The QANX deployer address on Ethereum is a standard EOA with classical ECDSA security; the 2022 bridge hack showed its exposure.
Critical wallets cannot be migrated until the native L1 mainnet launches.
Migration Status & Value-at-Risk
Legacy vulnerable pools/accounts/UTXOs/contracts identified, measurable, deprecated, migrated, frozen, or proven not to exist by design
Claim: The QANX ERC-20/BEP-20 token contract, its deployer address, the (historical) bridge contract, and all holder addresses are identified on-chain. The 2022 bridge hack resulted in a token migration to a new contract. No deprecation, freeze, or migration to PQ security has occurred for the production token.
Coverage basis: On-chain token and holder identification
Implementation score: 0.25 · Evidence confidence: High
Issue classification: quantum-critical vulnerability · Score treatment: score-reducing
Assurance: Token holders and contract addresses are fully verifiable on-chain. The 2022 bridge hack and subsequent token migration are well-documented.
The project has identified the vulnerable production surface (ERC-20/BEP-20 on classical chains) and ran a claim process for the post-hack token migration. No quantum-specific deprecation, freeze, or migration mechanism exists for production.
Migration Mechanism, Governance & Ecosystem Coordination
Public migration or protection roadmap with sequencing, activation criteria, and dependencies
Claim: QANplatform has published a roadmap showing MainNet launch as the migration target, with XLINK as the migration mechanism. QVM and XLINK audits are completed; Integration Audit is in progress. A May 2026 strategic update announced a controlled architectural rebase onto Ethereum's official implementation.
Coverage basis: Published roadmap and strategic updates
Implementation score: 0.25 · Evidence confidence: Medium
Issue classification: operational/product caveat · Score treatment: score-reducing
Assurance: Roadmap is high-level with no specific MainNet launch date. The May 2026 rebasing announcement introduces architectural uncertainty. Integration Audit still in progress.
Roadmap provides directional guidance but lacks concrete activation criteria, sequenced dependencies with dates, or binding governance commitments. Treated as a roadmap/proposal per QRI 6.2 (0.25).
Migration Mechanism, Governance & Ecosystem Coordination
Migration accessibility and defaults (PQ/hybrid account creation, wallet tooling, transaction paths, user-facing warnings, education, migration prompts)
Claim: QAN XLINK desktop app is available on Windows, Linux, and macOS for testnet use. SDKs exist for multiple languages (Go, JavaScript, C#, Java, Bash, etc.). TestNet documentation covers smart contract deployment. No production migration tooling exists.
Coverage basis: Testnet tooling only
Implementation score: 0.25 · Evidence confidence: Medium
Issue classification: operational/product caveat · Score treatment: score-reducing
Assurance: Testnet tooling is extensive and cross-platform. No production deployment exists, so migration accessibility for real users is zero.
The XLINK desktop app and multi-language SDKs are positive indicators of migration readiness but they only serve the testnet. Production users cannot migrate because there is no production PQ system to migrate to.
Migration Mechanism, Governance & Ecosystem Coordination
Migration enforcement and coordination (deprecation, freeze, disabled legacy signing, restricted withdrawals, mandatory migration deadlines; exchange/custody/wallet coordination)
Claim: No mainnet exists, so no enforcement mechanisms are active. Exchange, custody, bridge, and wallet coordination for PQ migration has not begun.
Coverage basis: No production enforcement
Implementation score: 0 · Evidence confidence: Medium
Issue classification: operational/product caveat · Score treatment: score-reducing
Assurance: No evidence of exchange, custody, or bridge coordination for PQ migration. The ERC-20 token trades on centralized exchanges (Gate, MEXC, etc.) with no PQ withdrawal path.
Migration enforcement is not applicable until mainnet launches.
Migration Mechanism, Governance & Ecosystem Coordination
Emergency disclosure, incident-response, or governance process for quantum-related vulnerabilities
Claim: QANplatform demonstrated incident-response capability during the 2022 bridge hack with a token migration and compensation program (claim.qanplatform.com). No quantum-specific incident-response playbook or governance process is publicly documented.
Coverage basis: General incident-response history; no quantum-specific IR
Implementation score: 0.25 · Evidence confidence: Medium
Issue classification: assurance-only caveat · Score treatment: confidence-only
Assurance: The 2022 bridge hack response demonstrates general operational incident capability. Per QRI v3.1 §7.4 Note-Only Caveat Rule, the absence of a formal quantum-specific IR playbook does not reduce the QRI Score unless it leaves a current quantum-vulnerable path unresolved.
General IR capability demonstrated historically; quantum-specific IR is an assurance note rather than a score-reducing issue.
Algorithm & Implementation Assurance
Uses NIST-standardized, standards-track, or broadly reviewed PQC/hybrid-PQC algorithms appropriate to the use case
Claim: QANplatform uses ML-DSA (FIPS 204, CRYSTALS-Dilithium), the NIST primary recommendation for post-quantum signatures. Implemented in Go via the QAN XLINK cross-signer and documented as ML-DSA-65.
Coverage basis: NIST-standardized ML-DSA (FIPS 204)
Implementation score: 1 · Evidence confidence: High
Issue classification: none · Score treatment: not applicable
Assurance: ML-DSA is NIST FIPS 204 standardized. The Hacken audit confirms the use of ML-DSA-65 in the XLINK library. Algorithm choice is appropriate for the use case.
Choice of NIST-standardized ML-DSA well before NIST's official finalization (August 2024) demonstrates early and appropriate algorithm selection.
Algorithm & Implementation Assurance
Independent cryptographic and implementation audit exists for the quantum-critical scope
Claim: Hacken audited the QAN XLINK cryptographic protocol (Go) in November 2025: 31 findings, 29 resolved, 2 accepted. Covers Link/Renew/Relink payloads, validation, and key management for binding secp256k1 to ML-DSA-65 keys. QVM was audited separately by Hacken in July 2025.
Coverage basis: Hacken audit of XLINK library (November 2025) and QVM (July 2025)
Implementation score: 0.75 · Evidence confidence: High
Issue classification: assurance-only caveat · Score treatment: confidence-only
Assurance: Audits are ~7 months and ~11 months old (stale but relevant). Scope is limited to the XLINK library and QVM, not the full integrated L1. The May 2026 architectural rebase may affect applicability to the eventual production system. 2 XLINK findings were accepted rather than resolved.
Per QRI v3.1 §6.4, stale-but-relevant audit does not by itself reduce the QRI Score; it caps confidence at Medium. The two accepted findings should be reviewed for quantum-security implications.
Algorithm & Implementation Assurance
Open-source, reproducible implementation
Claim: Core L1 protocol source code is in a private GitLab and not publicly available. Peripheral components (ERC-20 token contract, bridge contracts, SDKs, documentation) are open source on GitHub. The project states core code will be open-sourced after MainNet launch.
Coverage basis: Partial open source; core protocol closed
Implementation score: 0.25 · Evidence confidence: Medium
Issue classification: quantum-critical uncertainty · Score treatment: score-reducing
Quantum blocker: Core L1 protocol source code is not publicly available. Quantum-critical claims cannot be independently verified through code review or reproducible builds.
Assurance: Project FAQ explicitly states code is in a private GitLab for IP protection and will be open-sourced after MainNet launch. Token contracts, SDKs, and docs are open. This is a deliberate business decision, not a technical limitation.
The private codebase is a significant limitation for QRI evaluation. Without access to the core protocol implementation, the actual integration of ML-DSA, key management, signature verification, and consensus authentication cannot be independently assessed.
Algorithm & Implementation Assurance
Parameter agility and future upgrade path are documented
Claim: The May 2026 architectural rebase to Ethereum's official implementation indicates a planned upgrade path. QANplatform is a member of the Linux Foundation's Post-Quantum Cryptography Alliance. Specific parameter agility (e.g., ML-DSA parameter set upgrade, algorithm swap) is not documented.
Coverage basis: Rebasing plan and PQ Alliance membership
Implementation score: 0.5 · Evidence confidence: Low
Issue classification: operational/product caveat · Score treatment: score-reducing
Assurance: The rebasing plan is directional but lacks technical detail on parameter agility. PQ Alliance membership is a positive signal but not a substitute for documented upgrade procedures.
ML-DSA parameter sets (44, 65, 87) provide some inherent agility. The rebasing to Ethereum may improve or complicate future algorithm upgrades depending on how tightly the implementation couples to specific Ethereum conventions.
Algorithm & Implementation Assurance
Stateful-signature safety (XMSS/LMS-style concerns)
Claim: ML-DSA (CRYSTALS-Dilithium) is a stateless signature scheme. Stateful-signature concerns (anti-reuse controls, signing-state discipline) that apply to XMSS/LMS do not apply to ML-DSA.
Coverage basis: ML-DSA is stateless by design
Implementation score: 1 · Evidence confidence: High
Issue classification: none · Score treatment: not applicable
Assurance: ML-DSA's stateless property is inherent to the NIST standard. No additional implementation controls are needed for state management.
Genuine advantage of choosing ML-DSA over stateful hash-based schemes for blockchain applications; eliminates an entire class of implementation risks.
Algorithm & Implementation Assurance
Performance and resource-impact analysis exists where PQ signature/verification costs could affect safe deployment
Claim: No public performance benchmarks for ML-DSA signature generation, verification, key sizes, or resource impact within the QAN blockchain context (block validation time, gas/fee impact, mempool sizing, archival storage growth) have been published. Project website references 1,600+ TPS for the public blockchain but does not isolate ML-DSA verification cost.
Coverage basis: No public benchmarks
Implementation score: 0 · Evidence confidence: None
Issue classification: assurance-only caveat · Score treatment: confidence-only
Assurance: ML-DSA signatures are ~2.4 KB and public keys ~1.3 KB, significantly larger than ECDSA. Without benchmarks, the impact on block propagation, storage, and validation times cannot be assessed. Per QRI v3.1 Note-Only Caveat Rule, this is treated as confidence-only because it does not create a current quantum-vulnerable path.
Performance data will be critical for assessing whether the PQ path is practically deployable at scale once the mainnet launches.
Report metadata