MakerDAO

Spark PSM3 Contract Security Audit

Cantina Security Report

Organization

@makerdao

Engagement Type

Cantina Reviews

Period

-


Multi-Asset Liquidity Management Review of Spark PSM

MakerDAO introduced Spark PSM3 as a three-asset liquidity module designed to facilitate 1:1 swaps between stablecoins like USDC, DAI, and sDAI. This system supports seamless stablecoin movement while backing shares through aggregated asset accounting and permissioned liquidity interactions.

To evaluate its robustness, MakerDAO engaged Cantina for a security audits review of the Spark PSM3 contract. The assessment addressed LP share invariants, precision issues in withdrawal logic, rate synchronization concerns, and potential denial-of-withdrawal risks during edge-case interactions or depegging events.

Cantina supports MakerDAO’s asset-layer infrastructure with continuous protection services including bug bounty programs, crowdsourced security competitions, and multisig security, reinforcing safe stablecoin conversions across liquidity regimes.


Findings

Medium Risk

1 findings

0 fixed

1 acknowledged

Low Risk

2 findings

1 fixed

1 acknowledged

Informational

4 findings

3 fixed

1 acknowledged