1. Arena Smart Contract Vulnerability: Unstaked Addresses Can Corrupt Game Resolution
A critical security flaw has been identified in the `submit_choice` function of the Arena smart contract. The function currently accepts submissions from any caller without verifying if the address is an active, staked participant in the game. This absence of a `DataKey::Survivor` check allows random, unstaked addresse...