Security Audits

The TokenBridge has undergone multiple independent security audits and assessments. We have engaged in the auditing process after introducing major functionality, and have acknowledged and/or fixed all issues found during these audits. Audit results are presented starting with the most recent.
OmniBridge Audit by ChainSecurity
Completed: April 27, 2021
Conclusion: 0 Critical or High Risk Issues, 2 Medium Issues Accepted, 3 Low Risk Issues Accepted/Acknowledged
Contracts: https://github.com/poanetwork/omnibridge​
ChainSecurity
Smart contract audits with formal verification
chainsecurity.com
Link to Audit Report on ChainSecurity
TokenBridge Audit by Quantstamp (covers OmniBridge)
Completed: November 6, 2020
Conclusion: No high and medium risk issues found, all low risk issues addressed.
Contracts: Revised in version 5.5.0-rc0 to address audit. https://github.com/poanetwork/tokenbridge-contracts/releases/tag/5.5.0-rc0​
​Quantstamp Security Audit PDF​
TokenBridge Audit by Quantstamp (covers AMB bridge)
Completed: January 8, 2020
Conclusion: All high risk issues resolved and low risk issues addressed. More information available in this post.
Contracts: Revised in version 3.3.0 to address audit. https://github.com/poanetwork/tokenbridge-contracts/releases/tag/3.3.0​
​Quantstamp Security Audit PDF​
Smart Contracts Security Analysis by SmartDec
Completed: July 2019
Conclusion:  All of the issues were addressed, some of them fixed in the latest version of the code.
Contracts: Revised in version 2.3.3 to address audit. https://github.com/poanetwork/tokenbridge-contracts/releases/tag/2.3.3​
​SmartDec Security Audit PDF​
Initial Token Bridge Audit by Peppersec: 
Completed: October 2018
Conclusion: We can rate the overall security level of the system as “High”.
Contracts: Updated to version 2.0.0 to address audit.  https://github.com/poanetwork/tokenbridge-contracts/releases/tag/2.0.0​
​Peppersec Security Audit PDF​
Last updated 2 months ago