Umee is no longer an idea. It’s a cross chain DeFi protocol on mainnet! That said, a proper and continuously audited codebase is necessary to an evolving blockchain. On that front, we’re able to share some amazing news. Umee’s second official audit report — comprehensively conducted by Trail of Bits — has been finalized!
“We conducted this audit with full knowledge of the target system, including access to the source code and documentation. We performed static and dynamic testing of the target system and its codebase, using both automated and manual processes.”
The audit covered 3 Github repositories, and 30 thousand lines of code. Trail of Bits focused on reviewing the security of the Umee blockchain, the native Umee lending module and Peggo orchestrator. Through the audit, a few flaws of varying levels that could impact system confidentiality, integrity, or availability were found. Our engineering team promptly addressed those issues and they are now resolved, per Trail of Bit’s confirmation.
“Trail of Bits reviewed the fixes and mitigations implemented by the Umee team for issues identified in this report.”
In the report, you will find Trail of Bits’ project goals, detailed findings, and fix log. As Umee continues to grow and onboard more users, we want to ensure our community feels safe, secure, and confident regarding our codebase and blockchain. Through the audits that have been conducted thus far, user and protocol security are continually being addressed and improved.
As we’ve successfully launched mainnet, we will keep engaging in audits to fortify the Umee blockchain as we continue to upgrade and scale. One of those upgrades in question will be our native lending module, which you can look forward to in the coming weeks. As always, we will keep the community posted on the results and findings. If you have any comments or thoughts, let us know. Our team would love to hear from you. To interoperability and beyond!
Read the report here