Audits
nest inherits the contract architecture and full security maintenance from Fenix V2 which has undergone three interrogations, and was originally forked from Thena. The core protocol has been live since May 2024 on Blast with no security incidents. Although the protocol is audited this does not completely eliminate risks. We are currently engaging in a full protocol audit.
Audits & Competitions
Hats Finance Bug Bounty Contest
Prior to Blast deployment all implicated code derived from the Thena fork underwent a bounty contest by Hats Finance where $40,000 was offered to security researchers to identify issues within the codebase.
[Audit Repository] & [Audit Scope] - A total of 12 findings (2 High, 1 Medium, 2 Low). Status: All issues were resolved. Concentrated Liquidity: This audit included the addition of the Algebra Integral CLAMM which has undergone multiple audits and has experienced no vulnerabilities to date.
Hats Finance Bug Bounty Contest
This contest awarded $12,000 to interrogate the voting management system that provides vote delegation, vote optimisation and reward autocompounding.
[Scope & Repository & Findings] - A total of 12 findings (1 High, 3 Medium, 8 Low).
Status: All issues were resolved.
Code4rena Contest [3]
This contest awarded $16,000 to interrogate changes to voting contracts following implementation of the voting management system.
[Scope & Repository & Findings] - A total of 7 findings (1 High, 6 Medium).
Status: All issues were resolved.
Team Security
The team operates a 3/5 multisig for core protocol functions with hardware authentication and dedicated signing keys that are only used for multisig operations. Treasury holdings reside on a separate multisig with dedicated signing keys to mitigate risk.
Last updated