Audits
Security is Our Top Priority
Smart contract risk is highly prevalent among DeFi protocols. One of Usual’s top priorities is to mitigate and reduce the potential risk from the underlying Usual smart contracts by conducting in-depth audits aimed at identifying potential vulnerabilities, logical errors, or inefficiencies and further by conducting continuous security monitoring of the smart contracts. The audits are conducted by leading industry experts and will be used to enhance trust through proper risk and security management on the smart contracts.
Completed Audits
Usual employs a multi-phased audit program to achieve the highest level of protocol security.
Phase 1 (Nov-Dec 2023):
vCISO Program: Conducted with Spearbit
Security Researcher: Stermi (Former Maker, Morpho Auditor)
Phase 2 (Jan-Feb 2024):
Security Audit: Smart contracts audit by Bailsec
Lead Researcher: Unrevealed
Phase 3 (Feb-Mar 2024):
Audit Review: Conducted by Bailsec
Phase 4 (April 2024):
2nd vCISO Program: Conducted with Spearbit
Security Researcher: D-Nice
Phase 5 (May & June 2024):
Codebase Simplification: Replacing the "mint engine" with the "swap engine"
Cantina Managed Audit Phase 1: Permissioned launch smart contracts audit
Cantina Managed Audit Phase 2: Permissionless launch smart contracts audit
Lead Security Researcher: xmxanuel
Security Researcher: deadroses
Associate Security Researcher: jonatas
Phase 6 (June 2024):
October 2024
Auditor
Scope
L2 Token contracts for USD0 & USD0++
OFT MintAndBurnAdapter
L1 OFT Adapter
November 2024
Auditors
Lead Security Researcher: deadroses
Lead Security Researcher: xmxanuel
Security Researcher: Phaze
Associate Security Researcher: Chinmay Farkya
Sherlock (public audit competition)
Scope
V1 contract upgrades & additions covering:
USD0++
DAO Collateral
SwapperEngine
USUAL
USUALS
USUALSP
USUAL distribution
USUAL Airdrop
USUALx
December 2024
Auditors
Blackthorne
Scope
WrappedM
For more detailed information on our security measures or to report a potential vulnerability, please contact our security team at security@usual.company.
Last updated