December 14, 2022
OpenZeppelin and Compound DAO: a Year of DAO Security Best Practices
September 6, 2022
Bancor Compounding Rewards Audit
Given the relatively small scope of this audit with respect to the size of the entire project, we assess the severity of findings based on our recommendations for best practices without consideration of whether there are mitigations in other out-of-scope parts of the codebase. For libraries, in particular, we consider how these may be improved upon for safe reuse in potential future iterations or new applications.
July 20, 2022
Compound III Audit
As Compound's security partner we completed a comprehensive protocol audit. We looked at the code and now publish our results.
March 21, 2022
Compound Comprehensive Protocol Audit
As Compound's security partner we completed a comprehensive protocol audit. We looked at the code and now publish our results.
March 21, 2022
Compound-TUSD Integration Issue Retrospective
During a comprehensive audit of the Compound Finance protocol, OpenZeppelin reviewed a vulnerability in the cToken smart contract for TrueUSD (TUSD) previously discovered and reported to Compound Labs by ChainSecurity.
February 12, 2021
Compound Governor Bravo Audit
The Compound team engaged us to audit a new governance mechanism called Governor Bravo.
July 17, 2020
Compound Open Price Feed – Uniswap Integration Audit
The Compound team engaged us to audit their new view for the Open Oracle, featuring an integration with Uniswap V2.
May 22, 2020
Compound COMP Distribution System Audit
The Compound team engaged us to audit their new COMP distribution system, which will be added to the Comptroller.
April 26, 2020
Compound: Tether Integration Audit
The Compound team engaged us to finish auditing their integration of Tether's USDT token into the PriceOracleProxy contract.
December 14, 2022
OpenZeppelin and Compound DAO: a Year of DAO Security Best Practices
September 6, 2022
Bancor Compounding Rewards Audit
Given the relatively small scope of this audit with respect to the size of the entire project, we assess the severity of findings based on our recommendations for best practices without consideration of whether there are mitigations in other out-of-scope parts of the codebase. For libraries, in particular, we consider how these may be improved upon for safe reuse in potential future iterations or new applications.
July 20, 2022
Compound III Audit
As Compound's security partner we completed a comprehensive protocol audit. We looked at the code and now publish our results.
March 21, 2022
Compound Comprehensive Protocol Audit
As Compound's security partner we completed a comprehensive protocol audit. We looked at the code and now publish our results.
March 21, 2022
Compound-TUSD Integration Issue Retrospective
During a comprehensive audit of the Compound Finance protocol, OpenZeppelin reviewed a vulnerability in the cToken smart contract for TrueUSD (TUSD) previously discovered and reported to Compound Labs by ChainSecurity.
February 12, 2021
Compound Governor Bravo Audit
The Compound team engaged us to audit a new governance mechanism called Governor Bravo.
July 17, 2020
Compound Open Price Feed – Uniswap Integration Audit
The Compound team engaged us to audit their new view for the Open Oracle, featuring an integration with Uniswap V2.
May 22, 2020
Compound COMP Distribution System Audit
The Compound team engaged us to audit their new COMP distribution system, which will be added to the Comptroller.
April 26, 2020
Compound: Tether Integration Audit
The Compound team engaged us to finish auditing their integration of Tether's USDT token into the PriceOracleProxy contract.