PoolTogether Audit

The PoolTogether team asked us to review and audit the system. We looked at the code and now publish our results.

Aave Protocol Audit Summary

The Aave team asked us to review and audit a pre-production version of their protocol.

Aave Protocol Audit

The Aave team asked us to review and audit a pre-production version of their protocol. We looked at the code and now publish our results.

Eco Contracts Audit

The Eco team asked us to review and audit the contracts for their open payment network. We looked at the code and have now published our results.

Bounties Network Review Summary

We take a look at Bounties Network implementation of MetaTransactions and find two medium severity issues.

Compound Finance – Timelock Audit

The Compound team asked us to audit a patch of their smart contract code. We examined the code and now present our findings.

InstaDApp Audit Summary

The InstaDApp team asked us to audit their proxy wallet and wallet registry contracts. Here is a summary of our findings.

InstaDApp Audit

The InstaDApp team asked us to audit their proxy wallet and wallet registry contracts. We examined the code and now publish our results.

Libra’s Move IR Compiler Vulnerability: Technical Description

We describe a vulnerability in the Move IR compiler whereby inline comments can be disguised as executable code.

OpenZeppelin Uncovers Vulnerability in Libra’s Move IR Compiler

We found a problem in Libra’s intermediate representation language compiler, the Move IR, that could allow cybercriminals to exploit the yet-to-be-launched cryptocurrency network.