Introducing OpenZeppelin Defender

Introducing OpenZeppelin Defender: secure operations for Ethereum OpenZeppelin Defender allows projects to get products to market faster and…

Read More

Latest stories

FEI Post Mortem

On Sunday May 2nd, 2021, the Fei Labs team identified an economic vulnerability that affected the Fei Protocol, which…

Read More

Workshop Recap: Building an NFT Merkle-Drop

Upgradeable contracts allow us to alter a smart contract to fix a bug, add additional features, or simply to change the…

Read More

Alpha Finance Homora V2 Audit

The Alpha Finance Lab team asked us to review and audit their Homora V2 smart contracts. We looked at the code and now…

Read More

Our most popular audit reports

SEE ALL >
More stories

OpenZeppelin Contracts 4.1

This new release introduces UUPS proxies as a cheaper alternative to Transparent proxies. Additionally, a new ERC20 extension allows easy creation of tokens with built-in flash minting, and a new…

Workshop Recap: Managing Smart Contract Upgrades

Upgradeable contracts allow us to alter a smart contract to fix a bug, add additional features, or simply to change the rules enforced by it. Smart contract upgrades can be managed using…

Workshop Recap: Setting Up Access Control for Smart Contracts

Access control—that is, “who is allowed to do this thing”—is incredibly important in the world of smart contracts. The access control of your contract may govern who can mint tokens, vote on…

UMA Continuous Audit

In this audit we are taking an iterative approach where we will review individual pull requests as they are developed by the UMA team. We will repeatedly update this report with any new findings for…

The Graph RewardsManager Upgrade Audit

The Graph team found an edge case condition in which the amount of accumulated rewards retrieved from the `RewardsManager` for a specific signal can be zero.

Introducing Contracts Wizard: An Interactive Contract Generator

Contracts Wizard is an interface to interactively build a contract out of components from OpenZeppelin Contracts. Select the kind of contract that you want (current support for ERC20 and ERC721), set…

Holdefi Audit

Holdefi is a lending platform where users can hold their assets and earn interest or borrow tokens and repay them after a specific period of time. Anyone can supply assets to Holdefi's liquidity pool…

OpenZeppelin Contracts 4.0

Due to the new built-in overflow checks in Solidity 0.8, which mark the end of the `SafeMath` era, this release of OpenZeppelin Contracts is a new major version of the library.

Celo Contracts Audit – Phase 7

After a seventh phase of auditing, the cLabs team asked us to review and audit the recent changes in the smart contracts and scripts of their protocol.

Admin Accounts and Multisigs

Best practice for securing admin accounts is to use a multisig (short for multi-signature wallet). A multisig is a contract that can execute actions, as long as a predefined number of trusted members…

More stories

OpenZeppelin Contracts 4.1

This new release introduces UUPS proxies as a cheaper alternative to Transparent proxies. Additionally, a new ERC20 extension allows easy creation of tokens with built-in flash minting, and a new…

Workshop Recap: Managing Smart Contract Upgrades

Upgradeable contracts allow us to alter a smart contract to fix a bug, add additional features, or simply to change the rules enforced by it. Smart contract upgrades can be managed using…

Workshop Recap: Setting Up Access Control for Smart Contracts

Access control—that is, “who is allowed to do this thing”—is incredibly important in the world of smart contracts. The access control of your contract may govern who can mint tokens, vote on…

UMA Continuous Audit

In this audit we are taking an iterative approach where we will review individual pull requests as they are developed by the UMA team. We will repeatedly update this report with any new findings for…

The Graph RewardsManager Upgrade Audit

The Graph team found an edge case condition in which the amount of accumulated rewards retrieved from the `RewardsManager` for a specific signal can be zero.

Introducing Contracts Wizard: An Interactive Contract Generator

Contracts Wizard is an interface to interactively build a contract out of components from OpenZeppelin Contracts. Select the kind of contract that you want (current support for ERC20 and ERC721), set…

Holdefi Audit

Holdefi is a lending platform where users can hold their assets and earn interest or borrow tokens and repay them after a specific period of time. Anyone can supply assets to Holdefi's liquidity pool…

OpenZeppelin Contracts 4.0

Due to the new built-in overflow checks in Solidity 0.8, which mark the end of the `SafeMath` era, this release of OpenZeppelin Contracts is a new major version of the library.

Celo Contracts Audit – Phase 7

After a seventh phase of auditing, the cLabs team asked us to review and audit the recent changes in the smart contracts and scripts of their protocol.

Admin Accounts and Multisigs

Best practice for securing admin accounts is to use a multisig (short for multi-signature wallet). A multisig is a contract that can execute actions, as long as a predefined number of trusted members…