Libra’s Move IR Compiler Vulnerability: Technical Description

We describe a vulnerability in the Move IR compiler whereby inline comments can be disguised as executable code. This is due to the Move IR parser…

Read More

Latest stories

Reentrancy After Istanbul

How to protect your contracts against reentrancy after Ethereum’s Istanbul hard fork.

Read More

Compound Finance – Patch Audit

The Compound team asked us to audit a patch of their smart contract code. We examined the code and now present our…

Read More

Microsoft integrates OpenZeppelin Contracts into Microsoft Azure

We are excited to collaborate with Microsoft and announce the launch of the OpenZeppelin Audited Smart Contract library…

Read More

Our most popular audit reports

SEE ALL >
More stories

InstaDApp Audit Summary

The InstaDApp team asked us to audit their proxy wallet and wallet registry contracts. Here is a summary of our findings.

InstaDApp Audit

The InstaDApp team asked us to audit their proxy wallet and wallet registry contracts. We examined the code and now publish our results.

Libra’s Move IR Compiler Vulnerability: Technical Description

We describe a vulnerability in the Move IR compiler whereby inline comments can be disguised as executable code.

OpenZeppelin Uncovers Vulnerability in Libra’s Move IR Compiler

We found a problem in Libra’s intermediate representation language compiler, the Move IR, that could allow cybercriminals to exploit the yet-to-be-launched cryptocurrency network.

PROPS Rewards Engine Contracts Audit

The YouNow team asked us to review and audit their Rewards Engine contracts that distribute their PROPS token. We looked at the code and now publish our results.

PROPS Token Contracts Audit

The YouNow team asked us to review and audit their PROPS Token contracts. We looked at the code and now publish our results.

Compound Finance Audit Summary

Compound Finance is a protocol, currently deployed on the Ethereum network, for automatic, permissionless, and trust-minimized loans of Ether and various ERC20 tokens.

Compound Audit

The Compound team asked us to review and audit their platform's smart contracts. We examined their code and our results are published here.

Build your app with the Gas Station Network

The Gas Station Network, or GSN for short, is a decentralized solution for solving user onboarding to Ethereum applications. It allows you as an app developer to pay for your users' transactions...

Bypassing Smart Contract Timelocks

In this article, we look at a game theoretical attack against smart contract timelock systems that allows the beneficiary (i.e., the early ICO investor or the company founder)...

More stories

InstaDApp Audit Summary

The InstaDApp team asked us to audit their proxy wallet and wallet registry contracts. Here is a summary of our findings.

InstaDApp Audit

The InstaDApp team asked us to audit their proxy wallet and wallet registry contracts. We examined the code and now publish our results.

Libra’s Move IR Compiler Vulnerability: Technical Description

We describe a vulnerability in the Move IR compiler whereby inline comments can be disguised as executable code.

OpenZeppelin Uncovers Vulnerability in Libra’s Move IR Compiler

We found a problem in Libra’s intermediate representation language compiler, the Move IR, that could allow cybercriminals to exploit the yet-to-be-launched cryptocurrency network.

PROPS Rewards Engine Contracts Audit

The YouNow team asked us to review and audit their Rewards Engine contracts that distribute their PROPS token. We looked at the code and now publish our results.

PROPS Token Contracts Audit

The YouNow team asked us to review and audit their PROPS Token contracts. We looked at the code and now publish our results.

Compound Finance Audit Summary

Compound Finance is a protocol, currently deployed on the Ethereum network, for automatic, permissionless, and trust-minimized loans of Ether and various ERC20 tokens.

Compound Audit

The Compound team asked us to review and audit their platform's smart contracts. We examined their code and our results are published here.

Build your app with the Gas Station Network

The Gas Station Network, or GSN for short, is a decentralized solution for solving user onboarding to Ethereum applications. It allows you as an app developer to pay for your users' transactions...

Bypassing Smart Contract Timelocks

In this article, we look at a game theoretical attack against smart contract timelock systems that allows the beneficiary (i.e., the early ICO investor or the company founder)...