Security Audits

EIP-4337 – Ethereum Account Abstraction Incremental Audit

EIP-4337 is a specification to add account abstraction functionality to the Ethereum mainnet without modifying the consensus rules. The Ethereum Foundation asked us to review the latest version…

Compound Polygon Bridge Receiver Audit

OpenZeppelin recently audited Compound's Polygon Bridge Receiver and here we publish the results.

UMA Optimistic Asserter Audit

UMA's OptimisticAsserter contract uses the same incentive mechanism as the Optimistic Oracle to quickly resolve claims that could be resolved by the (slow) Data Verification Mechanism (DVM). The main…

zkSync Bootloader Audit Report

zkSync is a layer 2 scaling solution for Ethereum based on zero-knowledge rollup technology. The protocol aims to provide low transaction fees and high throughput while maintaining a large degree of…

zkSync Layer 1 Diff Audit

zkSync is a layer 2 scaling solution for Ethereum based on zero-knowledge rollup technology. The protocol aims to provide low transaction fees and high throughput while maintaining full EVM…

Opyn Bull Strategy Contracts Audit

The system we audited is for an automated trading strategy that allows investors to execute a specific trade-flow and reap its returns. Different strategies have distinct objectives, exposing…

Pods Finance Ethereum Volatility Vault Audit #2

The Pods Finance staked Ethereum Volatility Vault is a one-click deposit investment product that features an options strategy to generate principal-protected returns when the ETH market is volatile.…

Pods Finance Ethereum Volatility Vault Audit #1

The Pods Yield Vault is a one-click deposit investment product that features an options strategy to generate principal-protected returns when the ETH market is volatile. The underlying technique uses…

UMA DVM 2.0 Incremental Audit

The primary focus of these modifications is on the UMA Data Verification Mechanism (DVM) 2.0 system. PR #4135 is notable because it reverts some suggested changes from the prior UMA DVM 2.0 audit in…

UMA DVM 2.0 Audit

The UMA Data Verification Mechanism (DVM) is the ultimate source of truth in the oracle and governance system of the UMA Protocol. UMA's purpose is to serve as a trustworthy oracle for price requests…

EIP-4337 – Ethereum Account Abstraction Incremental Audit

EIP-4337 is a specification to add account abstraction functionality to the Ethereum mainnet…

Read More

Compound Polygon Bridge Receiver Audit

OpenZeppelin recently audited Compound's Polygon Bridge Receiver and here we publish the results.

Read More

UMA Optimistic Asserter Audit

UMA's OptimisticAsserter contract uses the same incentive mechanism as the Optimistic Oracle to…

Read More

zkSync Bootloader Audit Report

zkSync is a layer 2 scaling solution for Ethereum based on zero-knowledge rollup technology. The…

Read More

zkSync Layer 1 Diff Audit

zkSync is a layer 2 scaling solution for Ethereum based on zero-knowledge rollup technology. The…

Read More

Opyn Bull Strategy Contracts Audit

The system we audited is for an automated trading strategy that allows investors to execute a…

Read More

Pods Finance Ethereum Volatility Vault Audit #2

The Pods Finance staked Ethereum Volatility Vault is a one-click deposit investment product that…

Read More

Pods Finance Ethereum Volatility Vault Audit #1

The Pods Yield Vault is a one-click deposit investment product that features an options strategy to…

Read More

UMA DVM 2.0 Incremental Audit

The primary focus of these modifications is on the UMA Data Verification Mechanism (DVM) 2.0…

Read More

UMA DVM 2.0 Audit

The UMA Data Verification Mechanism (DVM) is the ultimate source of truth in the oracle and…

Read More