In this audit we are taking an iterative approach where we will review individual pull requests as they are developed by the UMA team. We will repeatedly update this report with any new findings for…

The Graph team found an edge case condition in which the amount of accumulated rewards retrieved from the `RewardsManager` for a specific signal can be zero.

Contracts Wizard is an interface to interactively build a contract out of components from OpenZeppelin Contracts. Select the kind of contract that you want (current support for ERC20 and ERC721), set…

Holdefi is a lending platform where users can hold their assets and earn interest or borrow tokens and repay them after a specific period of time. Anyone can supply assets to Holdefi's liquidity pool…

Due to the new built-in overflow checks in Solidity 0.8, which mark the end of the `SafeMath` era, this release of OpenZeppelin Contracts is a new major version of the library.

After a seventh phase of auditing, the cLabs team asked us to review and audit the recent changes in the smart contracts and scripts of their protocol.

Best practice for securing admin accounts is to use a multisig (short for multi-signature wallet). A multisig is a contract that can execute actions, as long as a predefined number of trusted members…

Break down of the bytecode and assembly code used by GST2 (Gas Token 2) in order to understand how it works at a low-level.

The DeFi space, and recently the NFT space, have continued to see a variety of exploits and even insider attacks resulting in vault losses, unexpected liquidations, and fraudulent token mints.…

Gas tokens should be minted at a low gas price, and then burnt at a high gas price, thereby saving gas fees.