Poll

ReAudit YFDFI Contracts

Yes
17 (94.4%)
No
1 (5.6%)

Total Members Voted: 18

Voting closed: December 23, 2020, 08:53:41 pm

Author Topic: YFDFI-IP 6 : Second Audit of ALL Contracts by Trusted Third Party  (Read 699 times)

futjrnaut

  • Global Moderator
  • Jr. Member
  • *****
  • Posts: 52
  • Karma: +0/-0
  • DFI.MODERATOR
  • Location: MetaVerse
    • View Profile
    • DFI.CHAT
Lets make a move to have these contracts audited by a trusted third party.

I am acquainted with and have leveraged the strength of Zokyo Audit Firm in the past and would trust their work.

This thread is to propose this and discuss which firm to use and when to do it.

Share on Facebook Share on Twitter

Like Like x 1 View List

ApexPredator

  • Newbie
  • *
  • Posts: 3
  • Karma: +1/-0
  • New YfDFI Fellow
    • View Profile
It will sure help the project overall!
Agree Agree x 1 View List

futjrnaut

  • Global Moderator
  • Jr. Member
  • *****
  • Posts: 52
  • Karma: +0/-0
  • DFI.MODERATOR
  • Location: MetaVerse
    • View Profile
    • DFI.CHAT
I've seen that it was mentioned in the AMA today
Would like to hear from the early contributors

gregory

  • Newbie
  • *
  • Posts: 8
  • Karma: +1/-0
  • New YfDFI Fellow
    • View Profile
Check this:
https://twitter.com/SolidityFinance/status/1334901537676558338
It's interesting as they did the audit for $BUND and observed the team's moves afterwards, so they could send an alert to the token holders once $BUND introduced a malicious code. Is it a common practice for auditing companies? Some people tend to say sth like "audits are worthless, as the code can be changed anytime after the audit is done". It seems it's not necessarily true.
Like Like x 1 Agree Agree x 3 View List

futjrnaut

  • Global Moderator
  • Jr. Member
  • *****
  • Posts: 52
  • Karma: +0/-0
  • DFI.MODERATOR
  • Location: MetaVerse
    • View Profile
    • DFI.CHAT
Check this:
https://twitter.com/SolidityFinance/status/1334901537676558338
It's interesting as they did the audit for $BUND and observed the team's moves afterwards, so they could send an alert to the token holders once $BUND introduced a malicious code. Is it a common practice for auditing companies? Some people tend to say sth like "audits are worthless, as the code can be changed anytime after the audit is done". It seems it's not necessarily true.

unless there is an upgrade proxy in the smart contract once deployed to mainnet ethereum it cannot be changed
some firms do have extended services and its just for a check and balance to the community

DJcrypto12

  • Newbie
  • *
  • Posts: 7
  • Karma: +2/-0
  • New YfDFI Fellow
    • View Profile
The safer we can be the better.
Agree Agree x 2 View List

0xRugged

  • Newbie
  • *
  • Posts: 9
  • Karma: +3/-0
  • New YfDFI Fellow
    • View Profile
If the audit has not started yet, Can the second level audit be done by groups like The Arcadia Group ?. Theyíve donít audits of some big projects in DEFI. Would add a great deal of confidence in investors.

0xRugged

  • Newbie
  • *
  • Posts: 9
  • Karma: +3/-0
  • New YfDFI Fellow
    • View Profile
Typo above. Correction : They have done audits of some big projects in defi

futjrnaut

  • Global Moderator
  • Jr. Member
  • *****
  • Posts: 52
  • Karma: +0/-0
  • DFI.MODERATOR
  • Location: MetaVerse
    • View Profile
    • DFI.CHAT
Closing this thread as there is one already here
https://www.dfi.community/proposalsideas/yfdfi-ip-6-second-audit-of-all-contracts-by-trusted-third-party/

We can discuss the audit vendors there

0xRugged

  • Newbie
  • *
  • Posts: 9
  • Karma: +3/-0
  • New YfDFI Fellow
    • View Profile
Got it. Letís keep this ball rolling and get onboard some credible third party auditors like I mentioned in the above closed thread. Ex: Arcadia Group

nate

  • Newbie
  • *
  • Posts: 4
  • Karma: +1/-0
  • New YfDFI Fellow
    • View Profile
I think dishing out more for a qualified audit early on will pay off in the long run!!

Tony3159292

  • Newbie
  • *
  • Posts: 7
  • Karma: +2/-0
  • New YfDFI Fellow
    • View Profile
Im down for Arcadia group to do the audit as well