Security
Last updated
Last updated
Since Bug Finance will be a completely reimagined version of Solidly, we can't just go off the audits that Solidly and Thena did. However, Bug Finance was adapted from THENA's Codebase which was adapted from Velodrome codebase, which is directly derived from the Solidly smart contracts that have been open-sourced in March 2022.
THENA has been completely audited by PeckShield on March 25, 2023:
The AMM part of Solidly has been audited by PeckShield that revealed 5 low-severity and 1 informal finding. There have been no security-related incidents involving Solidly smart contracts since their deployment on Fantom in February 2022.
The Velodrome codebase underwent a security audit and a peer review as part of a Code4rena bug bounty contest. All high or medium-risk issues were resolved pre-deployment, except for one known issue (users can claim eligible rewards from ExternalBribe contracts more than once) that has been addressed via a wrapped contract solution.
Since Bug Finance made so many adaptions to the model, we are going to undergo our own audits before launch to make sure everything is working like it's supposed to work. Once the audits are ready, we will put them in here!
Bug Finance will also launch a Bug Bounty on Immunefi at launch to make sure the platform is as safe as possible.
All treasury funds and contract modifications will be made through the team multi-sig wallet. More details TBA