My automated vulnerability mining tool can now, under the condition of only being given source code + technical documentation, without any hints or online searches, rely entirely on the model's own reasoning ability (using codex/gpt-5.5) to independently audit code and pinpoint two recent famous vulnerabilities: Zcash HALO2/Orchard and Aztec numRealTxs.