Libra’s Move IR Compiler Vulnerability: Technical Description

We describe a vulnerability in the Move IR compiler whereby inline comments can be disguised as executable code. This is due to the Move IR parser…

Read More

Latest stories

Opyn Contracts Audit

The Opyn team asked us to review and audit the system. We looked at the code and now publish our results.

Read More

Compound Finance – MCD & DSR Integration

The Compound team asked us to audit their integration of Multi-Collateral Dai and the Dai Savings System. Here we…

Read More

PoolTogether Audit

The PoolTogether team asked us to review and audit the system. We looked at the code and now publish our results.

Read More

Our most popular audit reports

SEE ALL >
More stories

Aave Protocol Audit Summary

The Aave team asked us to review and audit a pre-production version of their protocol.

Aave Protocol Audit

The Aave team asked us to review and audit a pre-production version of their protocol. We looked at the code and now publish our results.

Eco Contracts Audit

The Eco team asked us to review and audit the contracts for their open payment network. We looked at the code and have now published our results.

A Year of Research at OpenZeppelin

It's been a busy 2019 for our dearest Research team. These are the main highlights of the year!.

Deep dive into the Minimal Proxy contract

In this deep dive into low-level EVM code, you will learn how to code a Minimal Proxy (EIP 1167) from scratch, no Solidity involved. Finally, we see how to easily deploy the proxy using…

Bounties Network Review Summary

We take a look at Bounties Network implementation of MetaTransactions and find two medium severity issues.

Changing the feedback experience using positive psychology

One of the topics we focused on at OpenZeppelin this year was feedback. We feel that giving and receiving feedback is part of a healthy culture and we want to make sure that we are adding value while…

Reentrancy After Istanbul

How to protect your contracts against reentrancy after Ethereum’s Istanbul hard fork.

Compound Finance – Timelock Audit

The Compound team asked us to audit a patch of their smart contract code. We examined the code and now present our findings.

Microsoft integrates OpenZeppelin Contracts into Microsoft Azure

We are excited to collaborate with Microsoft and announce the launch of the OpenZeppelin Audited Smart Contract library as part of the Microsoft Azure Blockchain Development Kit VSCode plugin! 

More stories

Aave Protocol Audit Summary

The Aave team asked us to review and audit a pre-production version of their protocol.

Aave Protocol Audit

The Aave team asked us to review and audit a pre-production version of their protocol. We looked at the code and now publish our results.

Eco Contracts Audit

The Eco team asked us to review and audit the contracts for their open payment network. We looked at the code and have now published our results.

A Year of Research at OpenZeppelin

It's been a busy 2019 for our dearest Research team. These are the main highlights of the year!.

Deep dive into the Minimal Proxy contract

In this deep dive into low-level EVM code, you will learn how to code a Minimal Proxy (EIP 1167) from scratch, no Solidity involved. Finally, we see how to easily deploy the proxy using…

Bounties Network Review Summary

We take a look at Bounties Network implementation of MetaTransactions and find two medium severity issues.

Changing the feedback experience using positive psychology

One of the topics we focused on at OpenZeppelin this year was feedback. We feel that giving and receiving feedback is part of a healthy culture and we want to make sure that we are adding value while…

Reentrancy After Istanbul

How to protect your contracts against reentrancy after Ethereum’s Istanbul hard fork.

Compound Finance – Timelock Audit

The Compound team asked us to audit a patch of their smart contract code. We examined the code and now present our findings.

Microsoft integrates OpenZeppelin Contracts into Microsoft Azure

We are excited to collaborate with Microsoft and announce the launch of the OpenZeppelin Audited Smart Contract library as part of the Microsoft Azure Blockchain Development Kit VSCode plugin!