Public findings
4
Skillset
MathStakingEVMSolanaOracleOptionsLendingCross ChainBridgesDeFiSolidity
Biography
- over 4. years experience in EVM auditing across range of protocols
- particular specialty in staking, securing many high TVL projects such as Eigenlayer, Rocketpool, Renzo
- Strong experience in cross-chain audits, bridging and messaging protocols
- Master of Cyber Security, with strong technical web2 security holistic skillset.
Top competitions
View allContest | Position | Date | Payout |
|---|---|---|---|
stakeup-bloomv2 | 64 / 111 | October 2024 | $54 |
morpho-blue | 25 / 51 | November 2023 | $0 |
Security portfolio
Title | Description |
|---|---|
| [EVM/GMX] Plume Markets | Cultured is a framework that allows users to trade on arbitrary data feeds, some of which will correspond very directly to real-world data ("What's the current temperature in NYC?"), and some of which will correspond in a proxied way based on real-time AI analysis of input data from Twitter, Reddit, news, etc ("What's the sentiment on Donald Trump?"). Unlike prediction markets whose price changes purely based on orders on the platform, these indexes update on a minute-by-minute basis so that traders are always on their toes and forced to react. |
| [EVM/Invoicing] Bulla Factoring | Bulla Network enables the on-chain creation of credit pools for invoice factoring. By adhering to the ERC4626 specification, permissioned depositors can earn interest for facilitating invoice funding. Through these contracts, invoice issuers can factor their receivables, allowing them to receive early payments in exchange for a premium. This integration not only broadens the utility of the Bulla Claim Protocol but also provides a new financial mechanism for liquidity and credit management on-chain. |
| [EVM/Bridge] Facet Bridge Contracts | Facet Protocol is an EVM-compatible rollup that offers a novel approach to scaling Ethereum without introducing new dependencies or trust assumptions. As a fork of Optimism’s OP Stack, the framework behind many of the largest Layer 2 rollups, Facet differentiates itself by eliminating all sources of centralization and privilege, resulting in the first rollup that preserves Ethereum’s liveness, censorship resistance, and credible neutrality. Facet Bridge, the focus of this audit, is a trust-minimized bridge built as a fork of OP Bridge. Given the Facet Protocol itself does not force the use of any enshrined(built-in) contracts, Facet Bridge is a third-party application developed to demonstrate how trust-minimized architecture can operate on Facet. |
| [EVM/NFT] Sanguine Yeet NFT | Yeet is a gamified DeFi protocol in the Berachain ecosystem with no dominant game theoretic strategy. Players can win or losemoney in a variety of different ways, and employmultiple types of tactics whilst playing. |
| [EVM/Vesting] MetaLex Metavest Contracts | MetaVesT is a BORG-compatible token vesting/lockup protocol for ERC20 tokens, supporting: • Unopinionated token allocations • Token Options • Restricted Token Awards with both vesting and unlock schedules, rates, and cliffs, as well as any number of milestones (each with any number of conditions and tokens to be awarded), internal transfer abilities, and configurable governing power for MetaVesTed tokens. Each MetaVest framework supports any number of grantees and different ERC20 tokens. |
| [EVM/Options] Derive V2 Matching | At a high level, Derive maintains a vault which trades on behalf of depositors. The vault owns a sub-account in the Derive matching system, and registers a session key so that it can trade on the exchange. Shares represent a portion of that sub-account (+ any excess funds just deposited/being withdrawn). The first use case of the new contracts will be a yield bearing delta neutral trade, where users will deposit yield bearing staked ETH (i.e. wstETH). An equivalent amount of short perps will be opened against the collateral to make it delta neutral, and to earn the additional funding on the perps. |
| [EVM/Staking] Renzo Restaking Contracts | Renzo is a liquid restaking protocol built on top of EigenLayer. Users deposit ETH or approved collateral tokens into RestakeManager in exchange for Renzo’s liquid restaking token ezETH. The deposited tokens get deposited into EigenLayer through OperatorDelegator's, which handle all interactions with EigenLayer including strategy and EigenPod deposits, delegation to EigenLayer operators, and withdrawals. |
| [EVM/Staking] Rocketpool Houston Upgrade | The Houston upgrade is largely aimed at introducing a fully onchain DAO to govern the protocol, known as the Protocol DAO or pDAO. It is a truly onchain DAO that does not require snapshot voting or any other 3rd party tools to function. The upgrade also introduces some other features allowing new integrations and platforms to be built on the protocol. Some of these include the ability to stake ETH on behalf of node (not just from the node itself) and a new RPL withdrawal address feature that can allow the node operator to supply the ETH for staking and another party to trustlessly provide the RPL for the insurance bond. |
| [EVM/Options] Derive Options Trading | The first section provides an overview of the functionality of the Derive smart contracts contained within the scope of the security review. A summary followed by a detailed review of the discovered vulnerabilities is then given which assigns each vulnerability a severity rating (see Vulnerability Severity Classification), an open/closed/resolved status and a recommendation. Additionally, findings which do not have direct security implications (but are potentially of interest) are marked as informational. |
| [EVM/Staking] EigenLayer Core M2 | EigenLayer is a restaking service on the Ethereum mainnet that utilizes already staked assets as collateral to secure new services. Assets which have already been staked, such as an Ethereum validator’s ETH, can be placed under the control of the EigenLayer smart contracts to act as stake securing additional services such as rollups, bridges or Dapps |
| [EVM/Staking] Eigenlayer Core M1 | EigenLayer is a restaking service on the Ethereum mainnet that utilizes already staked assets as collateral to secure new services. Assets which have already been staked, such as an Ethereum validator’s ETH, can be placed under the control of the EigenLayer smart contracts to act as stake securing additional services such as rollups, bridges or Dapps |
| [EVM/Dao] DxDao Carrot KPI | Carrot KPI is a token that takes collateral assets to "bet" on predefined KPIs (goals). The system relies on the Reality.eth infrastructure to define whether the KPIs are achieved or not. KPIs are translated into questions, while Reality.eth provides answers to those questions. Carrot KPI’s oracle contracts (i.e., instances of ManualRealityOracle contract) are responsible for forwarding the answers to the corresponding KPI Token contract. |
| [EVM/Dex] Sushi Swap Bentobox Strategies | BentoBox can allocate a percentage of a token’s reserves to be used in an underlying strategy to generate some passive income. BentoBox Strategies is a set of smart contracts showcasing the use of these investment stategies. The project defines a BaseStrategy interface as well as several actual strategy implementations. For example there are investment strategies using SushiSwap itself or the popular lending platform Aave across multiple networks. StakingContract implements a versatile and permissionless ERC20 token staking system. Anyone can create a new staking “incentive” for a custom period of time by depositing arbitrary tokens as reward. Users can then lock up the respective token and earn a share of these rewards in return. Every stake can be subscribed to up to six different incentives at the same time. |
| [GO/INFRA] Chainsafe Gossamer | Gossamer node implementation written in GO for Polkadot Ecosystem |
| [EVM] Chainlink Keeper Contracts | Linkpool staking contracts |