DRAW The model and its limits
The model and its limits

The security model, and its limits.

How the draw stays unpredictable, where its one real edge is, and why there is no operator left to trust — the limits included.

The randomness

Your number is sealed after you sign.

A ticket resolves on the keccak hash of its own buy block, the buyer's address, and the ticket count. A block's hash is not known until the block is mined. So at the moment you sign your buy, the number that will judge you does not yet exist — there is no winning result to aim for.

The live window

Within 256 blocks, there is nothing to grind.

Ethereum keeps the most recent 256 block hashes available on-chain. Every ticket in an active pool is settled inside that window, against a real, already-sealed blockhash. It is not a number that is slow to compute — it is a number that was not defined when the buy was made. Nothing to precompute, nothing to simulate.

YOUR TICKET LIVE WINDOW — 256 BLOCKS BLOCKHASH ON-CHAIN PAST 256 BLOCKS HASH GONE
A flagged limit

The one real edge: a fully stalled pool.

If a ticket is left unsettled past the 256-block window — only possible in a pool where buys have entirely stopped for roughly 51 minutes — its buy block hash is no longer on-chain. The draw does not fall back to a recent, knowable hash, which would hand a self-settling next-buyer something to grind. Instead the stale ticket simply misses. It is a stall-only state: the contract names it, accepts it, and it is never reached while buys keep arriving.

A flagged limit

A block proposer has a weak edge on their own buy.

The proposer of the block your buy lands in has limited influence over that block's hash. For an ordinary buyer this changes nothing — you are not proposing your own block. For a proposer buying into their own block it is a weak, costly edge — stated here plainly, not hidden behind a claim that the draw cannot be gamed.

No operator

There is no one to trust, by design.

No owner key, no pause switch, no fee dial, no treasury address. The draw fee is fixed in the contract bytecode at 1%. The payout is the vault. Nobody — not the deployer — can move the funds, stop the draw, or change a parameter.

Audit status

Short, verified, and immutable.

The contracts are short and their source is verified on Etherscan — read them before you buy. They are immutable: that is the point of having no operator, and it is also the cost. A bug cannot be patched after launch. Smart-contract risk is real and does not disappear because the design is simple. Buy with that understood.