The goal is still the same, we need to verify the:
- Ring signatures
- Check the amounts
- Check the uniqueness of key images
- Check the emission
Check if the Grootle proofs (replacing CLSAG) is theoretically safe and if the implementation is flawless. A Python draft can be found here.
Verify if BP+ (or maybe BP++) is doing its job correctly and that the commitments equation is satisfied.
Make sure only one key-image per output is being created (automatically done by proving the safety of the ring signatures and the composition proofs).
Make sure that the nodes are generating amounts up to the maximum agreed emission curve.