Liquity Smart Contract Audit

In March 2021, Liquity engaged Coinspect to perform its second third-party source code review of the smart contracts that comprise the Liquity Protocol.

Coinspect identified a high risk issue, a missing requirement in a function that allowed attackers to force the system to enter Recovery Mode in order to liquidate troves. This finding was promptly fixed by Liquity’s team during the assessment and the resulting code was verified by Coinspect.

Coinspect also identified two medium risks issues, one shows how attackers could leverage flash loans to inflate system fees, the other calls attention to how after the introduction of batch liquidationsthe liquidators incentives were not always aligned with system health.

Liquity also addressed a low risk issue reported by Coinspect about missing checks in the liquidateBatch function.

Off-chain components such as the front-end were out of scope for this assessment.

Continue reading Coinspect's Liquity Smart Contract Audit report to learn more about how Liquity works and the details of the security issues identified.

--

--

--

Security for a Decentralized World

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

For These Functions Our main Communication Channel Is Telegram

Has Soldex Been Audited?

{UPDATE} 時之歌:無盡之詩 Hack Free Resources Generator

Security Vulnerability in Munin Node for Windows

{UPDATE} The Wheel Deal™ – Slots Casino Hack Free Resources Generator

How do Hackers break through your WordPress Security?

{UPDATE} Farm Night Story ? Hidden Objects Hack Free Resources Generator

HashCash Gears Up for McAfee Collaboration on Next-Gen Quantum Security

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Coinspect Security

Coinspect Security

Security for a Decentralized World

More from Medium

CCM—The first legally issued game virtual currency logs into Uniswap

How Blockchain, Smart Contracts, and Tokens Provide the Architecture for a New Form of Internet

Ethernaut Solutions: Challenge 24 Puzzle Wallet

Artifact Staking Joins the Chainlink Network as a Node Operator