diff --git a/README.md b/README.md
index 065a665..d9ad111 100644
--- a/README.md
+++ b/README.md
@@ -3,7 +3,7 @@
 ## Addresses
 
 - ECDSA Signer : 0x6A6F069E2a08c2468e7724Ab3250CdBFBA14D4FF
-- Webauthn signer : 0x615d8641B6Ce9406DE7c3C01f57c552Ab3A96f83
+- Webauthn signer : 0x65DEeC8fEe717dc044D0CFD63cCf55F02cCaC2b3
 - Call policy : 0x9a52283276a0ec8740df50bf01b28a80d880eaf2
 - Call policy (Deprecated) : 0xe4Fec84B7B002273ecC86baa65a831ddB92d30a8
 - Gas policy : 0xaeFC5AbC67FfD258abD0A3E54f65E70326F84b23
@@ -11,6 +11,6 @@
 - Signature policy : 0xF6A936c88D97E6fad13b98d2FD731Ff17eeD591d
 - Sudo policy : 0x67b436caD8a6D025DF6C82C5BB43fbF11fC5B9B7
 - Timestamp policy : 0xB9f8f524bE6EcD8C945b1b87f9ae5C192FdCE20F
-- Webauthn Validator : 0xD990393C670dCcE8b4d8F858FB98c9912dBFAa06
+- Webauthn Validator : 0x7ab16Ff354AcB328452F1D445b3Ddee9a91e9e69
 - Recovery Action : 0xe884C2868CC82c16177eC73a93f7D9E6F3A5DC6E
 - Only EntryPoint Hook : 0xb230f0A1C7C95fa11001647383c8C7a8F316b900
diff --git a/signers/webauthn/src/WebAuthn.sol b/signers/webauthn/src/WebAuthn.sol
index 5ce64ce..9a3e6e8 100644
--- a/signers/webauthn/src/WebAuthn.sol
+++ b/signers/webauthn/src/WebAuthn.sol
@@ -154,7 +154,8 @@ library WebAuthn {
 
         // if responseTypeLocation is set to max, it means the signature is a dummy signature
         if (responseTypeLocation == type(uint256).max) {
-            return P256.verifySignature(messageHash, r, s, x, y, false);
+            P256.verifySignature(messageHash, r, s, x, y, false);
+            return false;
         }
 
         bool verified = P256.verifySignature(messageHash, r, s, x, y, usePrecompiled);
diff --git a/validators/webauthn/src/WebAuthn.sol b/validators/webauthn/src/WebAuthn.sol
index 5ce64ce..9a3e6e8 100644
--- a/validators/webauthn/src/WebAuthn.sol
+++ b/validators/webauthn/src/WebAuthn.sol
@@ -154,7 +154,8 @@ library WebAuthn {
 
         // if responseTypeLocation is set to max, it means the signature is a dummy signature
         if (responseTypeLocation == type(uint256).max) {
-            return P256.verifySignature(messageHash, r, s, x, y, false);
+            P256.verifySignature(messageHash, r, s, x, y, false);
+            return false;
         }
 
         bool verified = P256.verifySignature(messageHash, r, s, x, y, usePrecompiled);