Reserve Protocol Bug Bounty

@reserve-protocol

Live

Maximum reward

$10,000,000

Severity

Max. Reward

Critical

$10,000,000

High

$100,000

Medium

$5,000

Low

$1,000

Deposit required

$10

Findings submitted

Start date

26 Mar 2026

Please sign in as a researcher to join the bounty.

Instructions Scope

In scope

Smart Contracts

Severity

Min and Max Reward

Critical

$100,000 to $10,000,000

High

$5,000 to $100,000

Medium

Up to $5,000

Low

Up to $1,000

In-scope smart contract addresses and source code

reserve-protocol/protocol @ master

Core protocol contracts from the master branch

Name	Description	Asset
Allowance.sol	Smart contract: Allowance.sol	https://github.com/reserve-protocol/…/libraries/Allowance.sol
Array.sol	Smart contract: Array.sol	https://github.com/reserve-protocol/…/libraries/Array.sol
Fixed.sol	Smart contract: Fixed.sol	https://github.com/reserve-protocol/…/libraries/Fixed.sol
Permit.sol	Smart contract: Permit.sol	https://github.com/reserve-protocol/…/libraries/Permit.sol
String.sol	Smart contract: String.sol	https://github.com/reserve-protocol/…/libraries/String.sol
Throttle.sol	Smart contract: Throttle.sol	https://github.com/reserve-protocol/…/libraries/Throttle.sol
Auth.sol	Smart contract: Auth.sol	https://github.com/reserve-protocol/…/contracts/mixins/Auth.sol
ComponentRegistry.sol	Smart contract: ComponentRegistry.sol	https://github.com/…/mixins/ComponentRegistry.sol
Versioned.sol	Smart contract: Versioned.sol	https://github.com/reserve-protocol/…/mixins/Versioned.sol
AssetRegistry.sol	Smart contract: AssetRegistry.sol	https://github.com/reserve-protocol/…/p1/AssetRegistry.sol
BackingManager.sol	Smart contract: BackingManager.sol	https://github.com/reserve-protocol/…/p1/BackingManager.sol
BasketHandler.sol	Smart contract: BasketHandler.sol	https://github.com/reserve-protocol/…/p1/BasketHandler.sol
Broker.sol	Smart contract: Broker.sol	https://github.com/reserve-protocol/…/contracts/p1/Broker.sol
Deployer.sol	Smart contract: Deployer.sol	https://github.com/reserve-protocol/…/contracts/p1/Deployer.sol
Distributor.sol	Smart contract: Distributor.sol	https://github.com/reserve-protocol/…/p1/Distributor.sol
Furnace.sol	Smart contract: Furnace.sol	https://github.com/reserve-protocol/…/contracts/p1/Furnace.sol
Main.sol	Smart contract: Main.sol	https://github.com/reserve-protocol/…/contracts/p1/Main.sol
RToken.sol	Smart contract: RToken.sol	https://github.com/reserve-protocol/…/contracts/p1/RToken.sol
RevenueTrader.sol	Smart contract: RevenueTrader.sol	https://github.com/reserve-protocol/…/p1/RevenueTrader.sol
StRSR.sol	Smart contract: StRSR.sol	https://github.com/reserve-protocol/…/contracts/p1/StRSR.sol
StRSRVotes.sol	Smart contract: StRSRVotes.sol	https://github.com/reserve-protocol/…/contracts/p1/StRSRVotes.sol
BasketLib.sol	Smart contract: BasketLib.sol	https://github.com/reserve-protocol/…/p1/mixins/BasketLib.sol
Component.sol	Smart contract: Component.sol	https://github.com/reserve-protocol/…/p1/mixins/Component.sol
RecollateralizationLib.sol	Smart contract: RecollateralizationLib.sol	https://github.com/…/mixins/RecollateralizationLib.sol
RewardableLib.sol	Smart contract: RewardableLib.sol	https://github.com/reserve-protocol/…/p1/mixins/RewardableLib.sol
TradeLib.sol	Smart contract: TradeLib.sol	https://github.com/reserve-protocol/…/p1/mixins/TradeLib.sol
Trading.sol	Smart contract: Trading.sol	https://github.com/reserve-protocol/…/p1/mixins/Trading.sol
AppreciatingFiatCollateral.sol	Smart contract: AppreciatingFiatCollateral.sol	https://github.com/…/assets/AppreciatingFiatCollateral.sol
Asset.sol	Smart contract: Asset.sol	https://github.com/reserve-protocol/…/plugins/assets/Asset.sol
ERC4626FiatCollateral.sol	Smart contract: ERC4626FiatCollateral.sol	https://github.com/…/assets/ERC4626FiatCollateral.sol
EURFiatCollateral.sol	Smart contract: EURFiatCollateral.sol	https://github.com/…/assets/EURFiatCollateral.sol
FiatCollateral.sol	Smart contract: FiatCollateral.sol	https://github.com/reserve-protocol/…/assets/FiatCollateral.sol
L2LSDCollateral.sol	Smart contract: L2LSDCollateral.sol	https://github.com/reserve-protocol/…/assets/L2LSDCollateral.sol
NonFiatCollateral.sol	Smart contract: NonFiatCollateral.sol	https://github.com/…/assets/NonFiatCollateral.sol
OracleErrors.sol	Smart contract: OracleErrors.sol	https://github.com/reserve-protocol/…/assets/OracleErrors.sol
OracleLib.sol	Smart contract: OracleLib.sol	https://github.com/reserve-protocol/…/assets/OracleLib.sol
RTokenAsset.sol	Smart contract: RTokenAsset.sol	https://github.com/reserve-protocol/…/assets/RTokenAsset.sol
SelfReferentialCollateral.sol	Smart contract: SelfReferentialCollateral.sol	https://github.com/…/assets/SelfReferentialCollateral.sol
VersionedAsset.sol	Smart contract: VersionedAsset.sol	https://github.com/reserve-protocol/…/assets/VersionedAsset.sol
ATokenFiatCollateral.sol	Smart contract: ATokenFiatCollateral.sol	https://github.com/…/aave/ATokenFiatCollateral.sol
IStaticATokenLM.sol	Smart contract: IStaticATokenLM.sol	https://github.com/reserve-protocol/…/aave/IStaticATokenLM.sol
StaticATokenErrors.sol	Smart contract: StaticATokenErrors.sol	https://github.com/reserve-protocol/…/aave/StaticATokenErrors.sol
StaticATokenLM.sol	Smart contract: StaticATokenLM.sol	https://github.com/reserve-protocol/…/aave/StaticATokenLM.sol
AaveV3FiatCollateral.sol	Smart contract: AaveV3FiatCollateral.sol	https://github.com/…/aave-v3/AaveV3FiatCollateral.sol
MockStaticATokenV3.sol	Smart contract: MockStaticATokenV3.sol	https://github.com/reserve-protocol/…/mock/MockStaticATokenV3.sol
AnkrStakedEthCollateral.sol	Smart contract: AnkrStakedEthCollateral.sol	https://github.com/…/ankr/AnkrStakedEthCollateral.sol
CBETHCollateral.sol	Smart contract: CBETHCollateral.sol	https://github.com/reserve-protocol/…/cbeth/CBETHCollateral.sol
CBETHCollateralL2.sol	Smart contract: CBETHCollateralL2.sol	https://github.com/reserve-protocol/…/cbeth/CBETHCollateralL2.sol
CTokenFiatCollateral.sol	Smart contract: CTokenFiatCollateral.sol	https://github.com/…/compoundv2/CTokenFiatCollateral.sol
CTokenNonFiatCollateral.sol	Smart contract: CTokenNonFiatCollateral.sol	https://github.com/…/compoundv2/CTokenNonFiatCollateral.sol
CTokenSelfReferentialCollateral.sol	Smart contract: CTokenSelfReferentialCollateral.sol	https://github.com/…/CTokenSelfReferentialCollateral.sol
ICToken.sol	Smart contract: ICToken.sol	https://github.com/reserve-protocol/…/compoundv2/ICToken.sol
CTokenV3Collateral.sol	Smart contract: CTokenV3Collateral.sol	https://github.com/…/compoundv3/CTokenV3Collateral.sol
CometHelpers.sol	Smart contract: CometHelpers.sol	https://github.com/reserve-protocol/…/compoundv3/CometHelpers.sol
CusdcV3Wrapper.sol	Smart contract: CusdcV3Wrapper.sol	https://github.com/…/compoundv3/CusdcV3Wrapper.sol
ICusdcV3Wrapper.sol	Smart contract: ICusdcV3Wrapper.sol	https://github.com/…/compoundv3/ICusdcV3Wrapper.sol
IWrappedERC20.sol	Smart contract: IWrappedERC20.sol	https://github.com/…/compoundv3/IWrappedERC20.sol
WrappedERC20.sol	Smart contract: WrappedERC20.sol	https://github.com/reserve-protocol/…/compoundv3/WrappedERC20.sol
CurveAppreciatingRTokenFiatCollateral.sol	Smart contract: CurveAppreciatingRTokenFiatCollateral.sol	https://github.com/…/CurveAppreciatingRTokenFiatCollateral.sol
CurveAppreciatingRTokenSelfReferentialCollateral.sol	Smart contract: CurveAppreciatingRTokenSelfReferentialCollateral.sol	https://github.com/…
CurveRecursiveCollateral.sol	Smart contract: CurveRecursiveCollateral.sol	https://github.com/…/curve/CurveRecursiveCollateral.sol
CurveStableCollateral.sol	Smart contract: CurveStableCollateral.sol	https://github.com/…/curve/CurveStableCollateral.sol
CurveStableMetapoolCollateral.sol	Smart contract: CurveStableMetapoolCollateral.sol	https://github.com/…/curve/CurveStableMetapoolCollateral.sol
CurveStableRTokenMetapoolCollateral.sol	Smart contract: CurveStableRTokenMetapoolCollateral.sol	https://github.com/…/CurveStableRTokenMetapoolCollateral.sol
L2ConvexStableCollateral.sol	Smart contract: L2ConvexStableCollateral.sol	https://github.com/…/curve/L2ConvexStableCollateral.sol
PoolTokens.sol	Smart contract: PoolTokens.sol	https://github.com/reserve-protocol/…/assets/curve/PoolTokens.sol
CurveGaugeWrapper.sol	Smart contract: CurveGaugeWrapper.sol	https://github.com/reserve-protocol/…/crv/CurveGaugeWrapper.sol
StakeDAORecursiveCollateral.sol	Smart contract: StakeDAORecursiveCollateral.sol	https://github.com/…/stakedao/StakeDAORecursiveCollateral.sol
SDaiCollateral.sol	Smart contract: SDaiCollateral.sol	https://github.com/reserve-protocol/…/dsr/SDaiCollateral.sol
RewardableERC20.sol	Smart contract: RewardableERC20.sol	https://github.com/reserve-protocol/…/erc20/RewardableERC20.sol
RewardableERC20Wrapper.sol	Smart contract: RewardableERC20Wrapper.sol	https://github.com/…/erc20/RewardableERC20Wrapper.sol
RewardableERC4626Vault.sol	Smart contract: RewardableERC4626Vault.sol	https://github.com/…/erc20/RewardableERC4626Vault.sol
USDeFiatCollateral.sol	Smart contract: USDeFiatCollateral.sol	https://github.com/…/ethena/USDeFiatCollateral.sol
SFraxCollateral.sol	Smart contract: SFraxCollateral.sol	https://github.com/reserve-protocol/…/frax/SFraxCollateral.sol
SFraxEthCollateral.sol	Smart contract: SFraxEthCollateral.sol	https://github.com/…/frax-eth/SFraxEthCollateral.sol
L2LidoStakedEthCollateral.sol	Smart contract: L2LidoStakedEthCollateral.sol	https://github.com/…/lido/L2LidoStakedEthCollateral.sol
LidoStakedEthCollateral.sol	Smart contract: LidoStakedEthCollateral.sol	https://github.com/…/lido/LidoStakedEthCollateral.sol
MetaMorphoFiatCollateral.sol	Smart contract: MetaMorphoFiatCollateral.sol	https://github.com/…/meta-morpho/MetaMorphoFiatCollateral.sol
MetaMorphoSelfReferentialCollateral.sol	Smart contract: MetaMorphoSelfReferentialCollateral.sol	https://github.com/…/MetaMorphoSelfReferentialCollateral.sol
IMorpho.sol	Smart contract: IMorpho.sol	https://github.com/reserve-protocol/…/morpho-aave/IMorpho.sol
MorphoAaveV2TokenisedDeposit.sol	Smart contract: MorphoAaveV2TokenisedDeposit.sol	https://github.com/…/morpho-aave/MorphoAaveV2TokenisedDeposit.sol
MorphoFiatCollateral.sol	Smart contract: MorphoFiatCollateral.sol	https://github.com/…/morpho-aave/MorphoFiatCollateral.sol
MorphoNonFiatCollateral.sol	Smart contract: MorphoNonFiatCollateral.sol	https://github.com/…/morpho-aave/MorphoNonFiatCollateral.sol
MorphoSelfReferentialCollateral.sol	Smart contract: MorphoSelfReferentialCollateral.sol	https://github.com/…/MorphoSelfReferentialCollateral.sol
MorphoTokenisedDeposit.sol	Smart contract: MorphoTokenisedDeposit.sol	https://github.com/…/morpho-aave/MorphoTokenisedDeposit.sol
USDMCollateral.sol	Smart contract: USDMCollateral.sol	https://github.com/reserve-protocol/…/mountain/USDMCollateral.sol
ApxEthCollateral.sol	Smart contract: ApxEthCollateral.sol	https://github.com/…/pirex-eth/ApxEthCollateral.sol
RethCollateral.sol	Smart contract: RethCollateral.sol	https://github.com/…/rocket-eth/RethCollateral.sol
StargatePoolFiatCollateral.sol	Smart contract: StargatePoolFiatCollateral.sol	https://github.com/…/stargate/StargatePoolFiatCollateral.sol
StargateRewardableWrapper.sol	Smart contract: StargateRewardableWrapper.sol	https://github.com/…/stargate/StargateRewardableWrapper.sol
YearnV2CurveFiatCollateral.sol	Smart contract: YearnV2CurveFiatCollateral.sol	https://github.com/…/yearnv2/YearnV2CurveFiatCollateral.sol
Governance.sol	Smart contract: Governance.sol	https://github.com/reserve-protocol/…/governance/Governance.sol
DutchTrade.sol	Smart contract: DutchTrade.sol	https://github.com/reserve-protocol/…/trading/DutchTrade.sol
GnosisTrade.sol	Smart contract: GnosisTrade.sol	https://github.com/reserve-protocol/…/trading/GnosisTrade.sol
3_4_0.sol	Smart contract: 3_4_0.sol	https://github.com/reserve-protocol/…/contracts/spells/3_4_0.sol

reserve-index-dtf @ main

Folio/DTF contracts from reserve-protocol/reserve-index-dtf

Name	Description	Asset
Folio.sol	Smart contract: Folio.sol	https://github.com/reserve-protocol/…/main/contracts/Folio.sol
FolioDAOFeeRegistry.sol	Smart contract: FolioDAOFeeRegistry.sol	https://github.com/…/folio/FolioDAOFeeRegistry.sol
FolioDeployer.sol	Smart contract: FolioDeployer.sol	https://github.com/reserve-protocol/…/deployer/FolioDeployer.sol
FolioProxy.sol	Smart contract: FolioProxy.sol	https://github.com/reserve-protocol/…/folio/FolioProxy.sol
FolioVersionRegistry.sol	Smart contract: FolioVersionRegistry.sol	https://github.com/…/folio/FolioVersionRegistry.sol
FolioGovernor.sol	Smart contract: FolioGovernor.sol	https://github.com/…/governance/FolioGovernor.sol
GovernanceDeployer.sol	Smart contract: GovernanceDeployer.sol	https://github.com/…/deployer/GovernanceDeployer.sol
StakingVault.sol	Smart contract: StakingVault.sol	https://github.com/reserve-protocol/…/staking/StakingVault.sol
UnstakingManager.sol	Smart contract: UnstakingManager.sol	https://github.com/…/staking/UnstakingManager.sol
Versioned.sol	Smart contract: Versioned.sol	https://github.com/reserve-protocol/…/utils/Versioned.sol
RebalancingLib.sol	Smart contract: RebalancingLib.sol	https://github.com/reserve-protocol/…/utils/RebalancingLib.sol
MathLib.sol	Smart contract: MathLib.sol	https://github.com/reserve-protocol/…/contracts/utils/MathLib.sol
FolioLib.sol	Smart contract: FolioLib.sol	https://github.com/reserve-protocol/…/utils/FolioLib.sol

trusted-fillers @ main

Trusted filler contracts from reserve-protocol/trusted-fillers

Name	Description	Asset
TrustedFillerRegistry.sol	Smart contract: TrustedFillerRegistry.sol	https://github.com/…/contracts/TrustedFillerRegistry.sol
CowSwapFiller.sol	Smart contract: CowSwapFiller.sol	https://github.com/reserve-protocol/…/cowswap/CowSwapFiller.sol
GPv2OrderLib.sol	Smart contract: GPv2OrderLib.sol	https://github.com/reserve-protocol/…/cowswap/GPv2OrderLib.sol
ImmutableTokenJar.sol	Smart contract: ImmutableTokenJar.sol	https://github.com/…/extras/ImmutableTokenJar.sol

reserve-protocol/protocol @ 3.4.0-rc1

Core protocol contracts from the 3.4.0-rc1 branch

Name	Description	Asset
Allowance.sol	Smart contract: Allowance.sol	https://github.com/reserve-protocol/…/libraries/Allowance.sol
Array.sol	Smart contract: Array.sol	https://github.com/reserve-protocol/…/libraries/Array.sol
Fixed.sol	Smart contract: Fixed.sol	https://github.com/reserve-protocol/…/libraries/Fixed.sol
Permit.sol	Smart contract: Permit.sol	https://github.com/reserve-protocol/…/libraries/Permit.sol
String.sol	Smart contract: String.sol	https://github.com/reserve-protocol/…/libraries/String.sol
Throttle.sol	Smart contract: Throttle.sol	https://github.com/reserve-protocol/…/libraries/Throttle.sol
Auth.sol	Smart contract: Auth.sol	https://github.com/reserve-protocol/…/contracts/mixins/Auth.sol
ComponentRegistry.sol	Smart contract: ComponentRegistry.sol	https://github.com/…/mixins/ComponentRegistry.sol
Versioned.sol	Smart contract: Versioned.sol	https://github.com/reserve-protocol/…/mixins/Versioned.sol
AssetRegistry.sol	Smart contract: AssetRegistry.sol	https://github.com/reserve-protocol/…/p1/AssetRegistry.sol
BackingManager.sol	Smart contract: BackingManager.sol	https://github.com/reserve-protocol/…/p1/BackingManager.sol
BasketHandler.sol	Smart contract: BasketHandler.sol	https://github.com/reserve-protocol/…/p1/BasketHandler.sol
Broker.sol	Smart contract: Broker.sol	https://github.com/reserve-protocol/…/contracts/p1/Broker.sol
Deployer.sol	Smart contract: Deployer.sol	https://github.com/reserve-protocol/…/contracts/p1/Deployer.sol
Distributor.sol	Smart contract: Distributor.sol	https://github.com/reserve-protocol/…/p1/Distributor.sol
Furnace.sol	Smart contract: Furnace.sol	https://github.com/reserve-protocol/…/contracts/p1/Furnace.sol
Main.sol	Smart contract: Main.sol	https://github.com/reserve-protocol/…/contracts/p1/Main.sol
RToken.sol	Smart contract: RToken.sol	https://github.com/reserve-protocol/…/contracts/p1/RToken.sol
RevenueTrader.sol	Smart contract: RevenueTrader.sol	https://github.com/reserve-protocol/…/p1/RevenueTrader.sol
StRSR.sol	Smart contract: StRSR.sol	https://github.com/reserve-protocol/…/contracts/p1/StRSR.sol
StRSRVotes.sol	Smart contract: StRSRVotes.sol	https://github.com/reserve-protocol/…/contracts/p1/StRSRVotes.sol
BasketLib.sol	Smart contract: BasketLib.sol	https://github.com/reserve-protocol/…/p1/mixins/BasketLib.sol
Component.sol	Smart contract: Component.sol	https://github.com/reserve-protocol/…/p1/mixins/Component.sol
RecollateralizationLib.sol	Smart contract: RecollateralizationLib.sol	https://github.com/…/mixins/RecollateralizationLib.sol
RewardableLib.sol	Smart contract: RewardableLib.sol	https://github.com/reserve-protocol/…/p1/mixins/RewardableLib.sol
TradeLib.sol	Smart contract: TradeLib.sol	https://github.com/reserve-protocol/…/p1/mixins/TradeLib.sol
Trading.sol	Smart contract: Trading.sol	https://github.com/reserve-protocol/…/p1/mixins/Trading.sol
AppreciatingFiatCollateral.sol	Smart contract: AppreciatingFiatCollateral.sol	https://github.com/…/assets/AppreciatingFiatCollateral.sol
Asset.sol	Smart contract: Asset.sol	https://github.com/reserve-protocol/…/plugins/assets/Asset.sol
ERC4626FiatCollateral.sol	Smart contract: ERC4626FiatCollateral.sol	https://github.com/…/assets/ERC4626FiatCollateral.sol
EURFiatCollateral.sol	Smart contract: EURFiatCollateral.sol	https://github.com/…/assets/EURFiatCollateral.sol
FiatCollateral.sol	Smart contract: FiatCollateral.sol	https://github.com/reserve-protocol/…/assets/FiatCollateral.sol
L2LSDCollateral.sol	Smart contract: L2LSDCollateral.sol	https://github.com/reserve-protocol/…/assets/L2LSDCollateral.sol
NonFiatCollateral.sol	Smart contract: NonFiatCollateral.sol	https://github.com/…/assets/NonFiatCollateral.sol
OracleErrors.sol	Smart contract: OracleErrors.sol	https://github.com/reserve-protocol/…/assets/OracleErrors.sol
OracleLib.sol	Smart contract: OracleLib.sol	https://github.com/reserve-protocol/…/assets/OracleLib.sol
RTokenAsset.sol	Smart contract: RTokenAsset.sol	https://github.com/reserve-protocol/…/assets/RTokenAsset.sol
SelfReferentialCollateral.sol	Smart contract: SelfReferentialCollateral.sol	https://github.com/…/assets/SelfReferentialCollateral.sol
VersionedAsset.sol	Smart contract: VersionedAsset.sol	https://github.com/reserve-protocol/…/assets/VersionedAsset.sol
ATokenFiatCollateral.sol	Smart contract: ATokenFiatCollateral.sol	https://github.com/…/aave/ATokenFiatCollateral.sol
IStaticATokenLM.sol	Smart contract: IStaticATokenLM.sol	https://github.com/reserve-protocol/…/aave/IStaticATokenLM.sol
StaticATokenErrors.sol	Smart contract: StaticATokenErrors.sol	https://github.com/reserve-protocol/…/aave/StaticATokenErrors.sol
StaticATokenLM.sol	Smart contract: StaticATokenLM.sol	https://github.com/reserve-protocol/…/aave/StaticATokenLM.sol
AaveV3FiatCollateral.sol	Smart contract: AaveV3FiatCollateral.sol	https://github.com/…/aave-v3/AaveV3FiatCollateral.sol
MockStaticATokenV3.sol	Smart contract: MockStaticATokenV3.sol	https://github.com/reserve-protocol/…/mock/MockStaticATokenV3.sol
AnkrStakedEthCollateral.sol	Smart contract: AnkrStakedEthCollateral.sol	https://github.com/…/ankr/AnkrStakedEthCollateral.sol
CBETHCollateral.sol	Smart contract: CBETHCollateral.sol	https://github.com/reserve-protocol/…/cbeth/CBETHCollateral.sol
CBETHCollateralL2.sol	Smart contract: CBETHCollateralL2.sol	https://github.com/reserve-protocol/…/cbeth/CBETHCollateralL2.sol
CTokenFiatCollateral.sol	Smart contract: CTokenFiatCollateral.sol	https://github.com/…/compoundv2/CTokenFiatCollateral.sol
CTokenNonFiatCollateral.sol	Smart contract: CTokenNonFiatCollateral.sol	https://github.com/…/compoundv2/CTokenNonFiatCollateral.sol
CTokenSelfReferentialCollateral.sol	Smart contract: CTokenSelfReferentialCollateral.sol	https://github.com/…/CTokenSelfReferentialCollateral.sol
DEPRECATED_CTokenWrapper.sol	Smart contract: DEPRECATED_CTokenWrapper.sol	https://github.com/…/compoundv2/DEPRECATED_CTokenWrapper.sol
ICToken.sol	Smart contract: ICToken.sol	https://github.com/reserve-protocol/…/compoundv2/ICToken.sol
CTokenV3Collateral.sol	Smart contract: CTokenV3Collateral.sol	https://github.com/…/compoundv3/CTokenV3Collateral.sol
CometHelpers.sol	Smart contract: CometHelpers.sol	https://github.com/reserve-protocol/…/compoundv3/CometHelpers.sol
CusdcV3Wrapper.sol	Smart contract: CusdcV3Wrapper.sol	https://github.com/…/compoundv3/CusdcV3Wrapper.sol
ICusdcV3Wrapper.sol	Smart contract: ICusdcV3Wrapper.sol	https://github.com/…/compoundv3/ICusdcV3Wrapper.sol
IWrappedERC20.sol	Smart contract: IWrappedERC20.sol	https://github.com/…/compoundv3/IWrappedERC20.sol
WrappedERC20.sol	Smart contract: WrappedERC20.sol	https://github.com/reserve-protocol/…/compoundv3/WrappedERC20.sol
CurveAppreciatingRTokenFiatCollateral.sol	Smart contract: CurveAppreciatingRTokenFiatCollateral.sol	https://github.com/…/CurveAppreciatingRTokenFiatCollateral.sol
CurveAppreciatingRTokenSelfReferentialCollateral.sol	Smart contract: CurveAppreciatingRTokenSelfReferentialCollateral.sol	https://github.com/…
CurveRecursiveCollateral.sol	Smart contract: CurveRecursiveCollateral.sol	https://github.com/…/curve/CurveRecursiveCollateral.sol
CurveStableCollateral.sol	Smart contract: CurveStableCollateral.sol	https://github.com/…/curve/CurveStableCollateral.sol
CurveStableMetapoolCollateral.sol	Smart contract: CurveStableMetapoolCollateral.sol	https://github.com/…/curve/CurveStableMetapoolCollateral.sol
CurveStableRTokenMetapoolCollateral.sol	Smart contract: CurveStableRTokenMetapoolCollateral.sol	https://github.com/…/CurveStableRTokenMetapoolCollateral.sol
L2ConvexStableCollateral.sol	Smart contract: L2ConvexStableCollateral.sol	https://github.com/…/curve/L2ConvexStableCollateral.sol
PoolTokens.sol	Smart contract: PoolTokens.sol	https://github.com/reserve-protocol/…/assets/curve/PoolTokens.sol
CurveGaugeWrapper.sol	Smart contract: CurveGaugeWrapper.sol	https://github.com/reserve-protocol/…/crv/CurveGaugeWrapper.sol
StakeDAORecursiveCollateral.sol	Smart contract: StakeDAORecursiveCollateral.sol	https://github.com/…/stakedao/StakeDAORecursiveCollateral.sol
SDaiCollateral.sol	Smart contract: SDaiCollateral.sol	https://github.com/reserve-protocol/…/dsr/SDaiCollateral.sol
RewardableERC20.sol	Smart contract: RewardableERC20.sol	https://github.com/reserve-protocol/…/erc20/RewardableERC20.sol
RewardableERC20Wrapper.sol	Smart contract: RewardableERC20Wrapper.sol	https://github.com/…/erc20/RewardableERC20Wrapper.sol
RewardableERC4626Vault.sol	Smart contract: RewardableERC4626Vault.sol	https://github.com/…/erc20/RewardableERC4626Vault.sol
SFraxCollateral.sol	Smart contract: SFraxCollateral.sol	https://github.com/reserve-protocol/…/frax/SFraxCollateral.sol
SFraxEthCollateral.sol	Smart contract: SFraxEthCollateral.sol	https://github.com/…/frax-eth/SFraxEthCollateral.sol
L2LidoStakedEthCollateral.sol	Smart contract: L2LidoStakedEthCollateral.sol	https://github.com/…/lido/L2LidoStakedEthCollateral.sol
LidoStakedEthCollateral.sol	Smart contract: LidoStakedEthCollateral.sol	https://github.com/…/lido/LidoStakedEthCollateral.sol
MetaMorphoFiatCollateral.sol	Smart contract: MetaMorphoFiatCollateral.sol	https://github.com/…/meta-morpho/MetaMorphoFiatCollateral.sol
MetaMorphoSelfReferentialCollateral.sol	Smart contract: MetaMorphoSelfReferentialCollateral.sol	https://github.com/…/MetaMorphoSelfReferentialCollateral.sol
IMorpho.sol	Smart contract: IMorpho.sol	https://github.com/reserve-protocol/…/morpho-aave/IMorpho.sol
MorphoAaveV2TokenisedDeposit.sol	Smart contract: MorphoAaveV2TokenisedDeposit.sol	https://github.com/…/morpho-aave/MorphoAaveV2TokenisedDeposit.sol
MorphoFiatCollateral.sol	Smart contract: MorphoFiatCollateral.sol	https://github.com/…/morpho-aave/MorphoFiatCollateral.sol
MorphoNonFiatCollateral.sol	Smart contract: MorphoNonFiatCollateral.sol	https://github.com/…/morpho-aave/MorphoNonFiatCollateral.sol
MorphoSelfReferentialCollateral.sol	Smart contract: MorphoSelfReferentialCollateral.sol	https://github.com/…/MorphoSelfReferentialCollateral.sol
MorphoTokenisedDeposit.sol	Smart contract: MorphoTokenisedDeposit.sol	https://github.com/…/morpho-aave/MorphoTokenisedDeposit.sol
RethCollateral.sol	Smart contract: RethCollateral.sol	https://github.com/…/rocket-eth/RethCollateral.sol
DO_NOT_USE_StargatePoolETHCollateral.sol	Smart contract: DO_NOT_USE_StargatePoolETHCollateral.sol	https://github.com/…/DO_NOT_USE_StargatePoolETHCollateral.sol
StargatePoolFiatCollateral.sol	Smart contract: StargatePoolFiatCollateral.sol	https://github.com/…/stargate/StargatePoolFiatCollateral.sol
StargateRewardableWrapper.sol	Smart contract: StargateRewardableWrapper.sol	https://github.com/…/stargate/StargateRewardableWrapper.sol
YearnV2CurveFiatCollateral.sol	Smart contract: YearnV2CurveFiatCollateral.sol	https://github.com/…/yearnv2/YearnV2CurveFiatCollateral.sol
Governance.sol	Smart contract: Governance.sol	https://github.com/reserve-protocol/…/governance/Governance.sol
DutchTrade.sol	Smart contract: DutchTrade.sol	https://github.com/reserve-protocol/…/trading/DutchTrade.sol
GnosisTrade.sol	Smart contract: GnosisTrade.sol	https://github.com/reserve-protocol/…/trading/GnosisTrade.sol
3_4_0.sol	Smart contract: 3_4_0.sol	https://github.com/reserve-protocol/…/contracts/spells/3_4_0.sol

Out of scope

Items explicitly excluded from the bounty. See also: https://docs.cantina.xyz/evaluations-and-standards/severity-classifications/bug-bounty-finding-severity#out-of-scope

Name	Description	Asset
Any 3rd party contracts not deployed by the Reserve Protocol team	Third-party contracts outside Reserve Protocol's control	-
All websites & APIs	Web interfaces and API endpoints	-
Known issues — ImmutableTokenJar Jan 2026 (Trust Security)	Previously reported and known issues	https://github.com/…/ImmutableTokenJar_Jan2026_TrustSecurity.pdf
Known issues — Reserve DTF Competition Jan 2025 (Cantina)	Previously reported and known issues	https://github.com/…/report-competition-reserve-jan2025.pdf
Known issues — Reserve DTF Security Review Jun 2025 (Pashov)	Previously reported and known issues	https://github.com/…/reserve-security-review_2025-06-02.pdf
Known issues — Reserve Folio 2.0.0 Apr 2025 (Trail of Bits)	Previously reported and known issues	https://github.com/…/2025-04-reserve-folio-solidity-2.0.0.pdf
Known issues — Reserve Folio 4.0.0 Jun 2025 (Trail of Bits)	Previously reported and known issues	https://github.com/…/2025-06-reserve-folio-solidity-4.0.0.pdf
Known issues — Reserve DTF v1 Dec 2024 (Trust Security)	Previously reported and known issues	https://github.com/…/trust-security/v1-audit-dec-2024.pdf
Known issues — Reserve Protocol Aug 2022 (Trail of Bits)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Protocol Fix Review Aug 2022 (Trail of Bits)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Audit 4.2.0 (Trust Security)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Audit 3.2.0 (Trust Security)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Audit 3.1.0 (Trust Security)	Previously reported and known issues	https://github.com/…
Known issues — Reserve 3.4.0 Spell (Trust Security)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Protocol Audit (Solidified)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Protocol 3.4.0 (Solidified)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Protocol Apr 2024 (Solidified)	Previously reported and known issues	https://github.com/…
Known issues — Reserve PR 4.0.0 v1	Previously reported and known issues	https://github.com/…/audits/Reserve_PR_4_0_0_v1.pdf
Known issues — Reserve June Plugins v1	Previously reported and known issues	https://github.com/…/audits/Reserve_June_Plugins_v1.pdf
Known issues — Reserve Protocol Smart Contract Audit (Halborn)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Protocol 1.1 (Ackee)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Release 2.1.0 (Code4rena)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Release 3.0.0 Collaterals (Code4rena)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Release 3.0.0 Core (Code4rena)	Previously reported and known issues	https://github.com/…
Known issues — Reserve Release 4.0.0 (Code4rena)	Previously reported and known issues	https://github.com/…
All unlisted assets	Any repo, site, service, product, API, or resource not mentioned in the in-scope targets	-