Security Audits

The TokenBridge has undergone multiple independent security audits and assessments. We have engaged in the auditing process after introducing major functionality, and have acknowledged and/or fixed all issues found during these audits. Audit results are presented starting with the most recent.

OmniBridge v6.0 Smart Contracts Audit by ChainSecurity

Completed: September 7, 2021

Conclusion: 0 Critical Risk Issues, 1 High Risk Issue Mitigated, 1 Medium Issue Mitigated, 2 Corrected, 13 Low Risk Issues all Acknowledged and/or Corrected.

Contracts: https://github.com/poanetwork/omnibridge Audit Report:

OmniBridge Audit by ChainSecurity

Completed: April 27, 2021

Conclusion: 0 Critical or High Risk Issues, 2 Medium Issues Accepted, 3 Low Risk Issues Accepted/Acknowledged

Contracts: https://github.com/poanetwork/omnibridge​

TokenBridge Audit by Quantstamp (covers OmniBridge)

Completed: November 6, 2020

Conclusion: No high and medium risk issues found, all low risk issues addressed.

Contracts: Revised in version 5.5.0-rc0 to address audit. https://github.com/poanetwork/tokenbridge-contracts/releases/tag/5.5.0-rc0​

TokenBridge Audit by Quantstamp (covers AMB bridge)

Completed: January 8, 2020

Conclusion: All high risk issues resolved and low risk issues addressed. More information available in this post.

Contracts: Revised in version 3.3.0 to address audit. https://github.com/poanetwork/tokenbridge-contracts/releases/tag/3.3.0​

Smart Contracts Security Analysis by SmartDec

Completed: July 2019

Conclusion: All of the issues were addressed, some of them fixed in the latest version of the code.

Contracts: Revised in version 2.3.3 to address audit. https://github.com/poanetwork/tokenbridge-contracts/releases/tag/2.3.3​

Initial Token Bridge Audit by Peppersec:

Completed: October 2018

Conclusion: We can rate the overall security level of the system as “High”.

Contracts: Updated to version 2.0.0 to address audit. https://github.com/poanetwork/tokenbridge-contracts/releases/tag/2.0.0​