Proof Generation

STARK (Stone/Integrity) — Trustless verification via transparent setup. Proof verified by Starknet node via call_contract. Fact registered in ObsqraFactRegistry (~5K steps). Cannot invoke on-chain directly (exceeds 10M step limit).

Groth16 (Circom/Garaga) — On-chain verifiable via Garaga verifier contract (fits within 10M step limit). Requires trusted setup, but the STARK binding neutralizes this: the STARK fact_hash is a public input in the Groth16 proof, tying both together.

Partial success — Either proof system succeeding independently is a valid result. Both succeeding gives the strongest guarantee: trustless verification + on-chain verifiability.