In February 2021, Incognito engaged Coinspect to perform a source code review of the smart contracts that comprise the Incognito-Ethereum bridge.

The main contracts are:

• IncognitoProxy: stores beacon and bridge committee members of the Incognito Chain, and other contracts can query this contract to check if an instruction is confirmed on the Incognito Chain.
• Vault: responsible for deposits and withdrawals; it holds assets (Ether or ERC20 tokens) and emits events that the Incognito Chain interprets as minting instructions; and when presented with a burn proof created over at the Incognito Chain, it releases the assets back to the user.

Continue reading Coinspect’s Incognito Smart Contract Audit report to learn more about how the bridge works and the details of the security issues identified.

In March 2021, Liquity engaged Coinspect to perform its second third-party source code review of the smart contracts that comprise the Liquity Protocol.

Coinspect identified a high risk issue, a missing requirement in a function that allowed attackers to force the system to enter Recovery Mode in order to liquidate…

In August 2020, Aragon engaged Coinspect to perform a series of third-party source code reviews of the smart contracts that comprise their Protocol.

Following are descriptions of the scope for several of those reviews:

1. Aragon Protocol is a dispute resolution protocol. It handles subjective disputes that cannot be solved purely…

In September 2020, SpaceChain engaged Coinspect to perform a security audit of the following SpaceChain Token V2 contract deployed to mainnet on September 19th, 2020:

• SpaceChainV2 (SPC)

https://etherscan.io/address/0x86ed939b500e121c0c5f493f399084db596dad20

The objective of the audit was to evaluate the security of the smart contract source code, deployment, and user tokens migration procedures…

Executive Summary

In February 2020, Horizen engaged Coinspect to audit the security of its blockchain platform. In particular this first engagement focused on reviewing Horizen platform additions to the Zcash protocol implementation including its core consensus rules, network protocols and privacy features. …

Starting in September 2020, Bloq requested Coinspect to review selected parts of Vesper Pool’s source code while the contracts were being developed. Coinspect auditors spent 5 weeks during a period of 5 months.

Coinspect published 5 smart contract audit reports detailing the tasks performed. Each report focused on an individual new feature and/or set of modifications performed to previously reviewed code, specifically selected by the development team. Hence, the reviews do not represent a complete audit of the final project code and does not include the interactions with external components such as third party DeFi systems which were not in scope as per the client’s request.

Continue reading Vesper Pools Smart Contract Audit

Contact us to request a Smart Contract Audit

Executive Summary

In October 2020, Sovryn engaged Coinspect to perform a source code review of their new decentralized Bitcoin trading and lending platform. The objective of the audit was to evaluate the security of their smart contracts.

The code reviewed was found to be clear, well written, and properly documented. The modifications…

Executive Summary

In January 2021, Sovryn engaged Coinspect to perform a source code review of their new governance, staking and fee sharing contracts. The objective of the audit was to evaluate the security of the smart contracts implementing these features.

The code reviewed was found to be clear, well written, and properly…