The 0xMacro Library

Here you will find Macro's growing
collection of public resources.

Check them out below.

Public Audits

A curated list of audits we have worked with in the past, available to the community.

SevenSeas-2

A collective of seasoned professionals in blockchain, data science, and finance committed to making crypto markets more efficient and transparent.

Audit Report Release Date
March 15, 2024
About

Audited a Pendle adaptor and its corresponding Pendle pricing extension, to allow cellars to interact the Pendle protocol and hold various Pendle tokens as positions, including LP, YT, PT, and SY tokens.

Summary of Findings
2
High
1
Low
1
Informational
Report Link
Full Report
References

Repository

Mento-A-3

A decentralized and transparent stable value asset protocol (including stablecoins) on the Celo blockchain

Audit Report Release Date
March 11, 2024
About

Audited an adjustment to the vote escrow curve function and adjustments to the governance contracts setup.

Summary of Findings
1
Medium
3
Low
2
Code Quality
2
Informational
Report Link
Full Report
References

Repository

Website

IDEX-B-1

DEX with leverage and gas-free trading

Audit Report Release Date
February 24, 2024
About

Audit of changes made to the core protocol including margin requirement changes, support for pending deposit, a new EscrowContract has been added, support for quote token migration, and other minor refactors.

Summary of Findings
1
Medium
3
Low
2
Code Quality
Report Link
Full Report

Connext-A-5

A modular interoperability protocol

Audit Report Release Date
February 22, 2024
About

We reviewed the new Connext's connector for Scroll L2. Scope included both ScrollHubConnector and ScrollSpokeConnector contracts.

Summary of Findings
1
Low
2
Code Quality
Report Link
Full Report
References

Repository

Website

Covenant-A-1

Borrow and lend against any tokenized asset through liquid, tradeable debt markets.

Audit Report Release Date
February 21, 2024
About

Covenant is a decentralized, non-custodial debt market, built on perpetual debt. It is a lending protocol based on Aave architecture with interest rate calculation externalized to AMM markets for particular debt asset. Macro audited their core protocol implementation prior to their beta release.

Summary of Findings
1
Critical
9
Medium
10
Low
5
Code Quality
2
Informational
Report Link
Full Report

Sommelier-16b

Automated DeFi yield optimization strategies

Audit Report Release Date
February 12, 2024
About

Audited Sommelier's multichain contracts that allow assets to be shared between different chains using Chainlink's CCIP protocol. Additionally, we audited the Compound v3 adapter as well as the support for various staking adapters including EtherFi, KelpDAO, Lido, Renzo, Stader, Swell.

Summary of Findings
4
High
2
Medium
2
Low
8
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Repository

Website

Patchwork-A-2

Supercharge tokens, contracts, and addresses by layering rich blocks of interoperable, interconnected, interactive data on top of any onchain entity.

Audit Report Release Date
February 1, 2024
About

Patchwork protocol was refactored and new functionality was added to the core system contract for managing and charging various fees related to different system operations. We have reviewed these changes and additional updates that were introduced to extract assignment functionality into a specific contract

Summary of Findings
2
High
3
Medium
4
Low
7
Code Quality
Report Link
Full Report
References

Repository

Twitter

Sommelier-16a

Automated DeFi yield optimization strategies

Audit Report Release Date
January 22, 2024
About

Audited the new addition to cellars to support multi-asset deposits as well as the support for MorphoBlue adapters.

Summary of Findings
1
High
1
Medium
2
Low
4
Code Quality
2
Gas Optimizations
2
Informational
Report Link
Full Report
References

Repository

Website

Sommelier-15

Automated DeFi yield optimization strategies

Audit Report Release Date
January 22, 2024
About

The ability to have a sequencer check was added to the price router to be used for cellars on layer 2 chains, preventing pricing when the sequencer is down.

Summary of Findings
1
Medium
Report Link
Full Report
References

Repository

Website

Kwenta-A-12

A synthetic perpetuals trading platform

Audit Report Release Date
January 17, 2024
About

Audit of Zap, a contract that allows the feeless exchange of USDC to sUSD and vice versa via SynthetixV3 spot markets.

Summary of Findings
1
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Repository

Website

Kwenta-A-11

A synthetic perpetuals trading platform

Audit Report Release Date
January 17, 2024
About

Kwenta V3 smart margin contract was made upgradeable and implemented Zap functionality to exchange USDC to uUSD and back. The ability for USDC to be converted to sUSD and used as collateral, or have collateral be withdrawn and converted to USDC was added.

Summary of Findings
1
Code Quality
Report Link
Full Report
References

Repository

Website

Mintra-A-1

On-chain, fee-sharing, Pulsechain NFT app

Audit Report Release Date
January 15, 2024
About

Audit of Mintra’s marketplace contract, a fork of Thirdweb's direct listing marketplace, with changes being made to permissions, royalty logic, and support for bulk buy.

Summary of Findings
10
Code Quality
2
Gas Optimizations
Report Link
Full Report
References

Repository

Website

Mento-A-2

A decentralized and transparent stable value asset protocol (including stablecoins) on the Celo blockchain

Audit Report Release Date
January 9, 2024
About

Audited Mento's new governance contracts using vote escrowed mento tokens to vote, as well as a immutable factory to deploy and setup relevant contracts.

Summary of Findings
3
Low
7
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Repository

Website

Sommelier-14

Automated DeFi yield optimization strategies

Audit Report Release Date
December 15, 2023
About

Audit of the following additions by Sommelier: A Curve adaptor and Convex curve adaptor allowing cellars to have a curve pool and Convex Curve positions. A pricing extension to price curve 2 pools. A slippage router to allow for deposits and withdrawals with specified slippage. A withdrawal queue, allowing users to specify withdrawal conditions and for a solver to bundle and execute withdrawal orders on their behalf.

Summary of Findings
3
High
2
Medium
2
Low
6
Code Quality
1
Gas Optimization
2
Informational
Report Link
Full Report
References

Repository

Website

Maple Finance-A-1

An institutional capital network that provides the infrastructure for credit experts to run on-chain lending businesses and connects institutional lenders and borrowers.

Audit Report Release Date
December 15, 2023
About

An audit of incremental updates to Maple V2 contracts packaged into the Q4 release. These included a new FIFO queue-based withdrawal manager submodule, a new pool permission manager submodule, and additional smaller changes and improvements for the rest of the system.

Summary of Findings
2
Medium
1
Low
12
Code Quality
3
Informational
Report Link
Full Report
References

Github Organization - Private Repo

Website

Kwenta-A-10

A synthetic perpetuals trading platform

Audit Report Release Date
December 6, 2023
About

Kwenta made conditional orders payable with ETH, allowing deposits and withdraws of ETH used for payment. Integration with EIP7412 was also added to allow price oracles to be updated when needed via off-chain verification.

Summary of Findings
1
Medium
1
Low
1
Code Quality
1
Informational
Report Link
Full Report
References

Repository

Website

Farcaster-3

A protocol for decentralized social apps

Audit Report Release Date
November 2, 2023
About

Audit of Farcaster v3.1 contracts. Updates implement new manager pattern to simplify future migrations, and adding additional mitigations to event spamming vectors

Summary of Findings
3
Low
7
Code Quality
2
Gas Optimizations
Report Link
Full Report
References

Repository

Website

Sommelier-12

Automated DeFi yield optimization strategies

Audit Report Release Date
October 27, 2023
About

Audited the new Aura position adaptor, Curve and Redstone pricing extensions, and small updates to the Frax adaptors.

Summary of Findings
2
Medium
2
Low
Report Link
Full Report
References

Repository

Website

Connext-A-4

A modular interoperability protocol

Audit Report Release Date
October 18, 2023
About

Audited upgrades to support an optimistic system on Spoke Connectors.

Summary of Findings
1
Low
4
Code Quality
1
Informational
Report Link
Full Report
References

Repository

Website

thirdWeb-15

Web3 developer tooling

Audit Report Release Date
October 6, 2023
About

Audited BurnToClaimERC721 as well as changes made to MarketplaceV3 since the previous audit.

Summary of Findings
1
Medium
3
Low
12
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Repository

Website

Nori-4

Carbon removal marketplace

Audit Report Release Date
October 2, 2023
About

Finished the second part of auditing core Nori contracts such as Market, Certificate, Removal, RestrictedNORI, and library helpers

Summary of Findings
1
Medium
4
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Repository

Website

Kwenta-A-9

A synthetic perpetuals trading platform

Audit Report Release Date
September 29, 2023
About

Small audit to review addition of a command that allows callers to update Synthetix keeper fee.

Summary of Findings
1
Code Quality
2
Gas Optimizations
Report Link
Full Report

Patchwork-A-1

Supercharge tokens, contracts, and addresses by layering rich blocks of interoperable, interconnected, interactive data on top of any onchain entity.

Audit Report Release Date
September 27, 2023
About

Patchwork protocol enables new onchain use cases by defining and utilising new composition capabilities for ERC721 and ERC1155 tokens. We have reviewed a contract which enforces compliance and manages token transfers with these extra capabilities, including additional access controlled functionality for enabling cross token associations. In addition we have performed review of a set of abstract contracts that are meant to be inherited and reused for implementing specific token composition behaviors in a Patchwork compliant way.

Summary of Findings
2
High
3
Medium
3
Low
11
Code Quality
Report Link
Full Report
References

Repository

Twitter

Endaoment-2

A grantmaking foundation supporting every kind of giving, built entirely onchain.

Audit Report Release Date
September 22, 2023
About

Audited an update to the Aave, Yearn, and Compound portfolios to inherit from the updated Portfolio contract.

Summary of Findings
1
Low
4
Code Quality
3
Gas Optimizations
Report Link
Full Report

PoolTogether-A-1

A decentralized prize savings protocol

Audit Report Release Date
September 19, 2023
About

Audited V5 Prize Pool and V5 TWAB Controller contracts.

Summary of Findings
2
Critical
4
High
4
Medium
7
Low
16
Code Quality
4
Gas Optimizations
Report Link
Full Report

Kwenta-A-8

A synthetic perpetuals trading platform

Audit Report Release Date
September 19, 2023
About

Audit of Kwenta's Smart Margin v3 contract, which leverages Synthetix v3's account-based architecture and offers improved tools for trading Synthetix derivatives.

Summary of Findings
2
High
3
Medium
2
Low
2
Code Quality
1
Gas Optimization
1
Informational
Report Link
Full Report
References

Repository

Website

Kwenta-A-7

A synthetic perpetuals trading platform

Audit Report Release Date
September 19, 2023
About

Audit of the V2 version of Kwenta's staking rewards and rewards escrow contracts, as well as V1 -> V2 escrow migrator contract.

Summary of Findings
1
Medium
3
Low
6
Code Quality
1
Gas Optimization
Report Link
Full Report

Sommelier-11

Automated DeFi yield optimization strategies

Audit Report Release Date
August 30, 2023
About

Audited the addition of Frax collateral and debt adaptors, and changes to the AxelarProxy contract.

Summary of Findings
2
Medium
2
Low
3
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Repository

Website

Farcaster-2

A protocol for decentralized social apps

Audit Report Release Date
August 29, 2023
About

Audit of two new features in the KeyRegistry and IdRegistry contracts.

Summary of Findings
1
Code Quality
Report Link
Full Report
References

Repository

Website

thirdWeb-14

Web3 developer tooling

Audit Report Release Date
August 21, 2023
About

Audited the EvolvingNFT and LoyaltyPoints contracts, as well as changes to the smart contract wallet account contracts and their factories.

Summary of Findings
1
Critical
1
High
4
Medium
5
Low
10
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Repository

Website

Farcaster-1

A protocol for decentralized social apps

Audit Report Release Date
August 18, 2023
About

Audit of Farcaster's core L1 and L2 contracts.

Summary of Findings
2
Medium
5
Low
10
Code Quality
Report Link
Full Report
References

Repository

Website

Mento-1

A decentralized and transparent stable value asset protocol (including stablecoins) on the Celo blockchain

Audit Report Release Date
August 17, 2023
About

Audited multiple contracts for the v2.2 Mento protocol release. Adding Oracle circuit breakers and updating the constant sum pricing module, pool manager, and a new and simpler ERC20 token implementation for stable tokens.

Summary of Findings
1
High
3
Medium
3
Low
7
Code Quality
Report Link
Full Report
References

Repository

Website

Sommelier-10

Automated DeFi yield optimization strategies

Audit Report Release Date
August 12, 2023
About

The CellarAdaptor was audited again with the added scope of using SavingsDai ERC4626 vault as a position, and no issues were found.

Summary of Findings
Report Link
Full Report
References

Repository

Website

Sommelier-9

Automated DeFi yield optimization strategies

Audit Report Release Date
August 4, 2023
About

Audited the addition of the SharePriceOracle contract that uses Chainlink automation to update the share price of a cellar in order to reduce gas costs and lower share price volatility, as well as cellars that integrate this oracle.

Summary of Findings
3
High
1
Medium
2
Low
4
Code Quality
1
Informational
Report Link
Full Report
References

Repository

Website

Kwenta-A-6

A synthetic perpetuals trading platform

Audit Report Release Date
July 21, 2023
About

Audit of smart-margin V2.10 on the code changes from the prior audit of smart-margin V2.02, including a command that allows whitelisted token swaps to and from sUSD.

Summary of Findings
2
Code Quality
2
Gas Optimizations
1
Informational
Report Link
Full Report

IDEX-A-1

DEX with leverage and gas-free trading

Audit Report Release Date
July 21, 2023
About

We audited the core smart contracts, including their exchange and governance protocols.

Summary of Findings
8
Medium
4
Low
5
Code Quality
2
Informational
Report Link
Full Report

Connext-A-2

A modular interoperability protocol

Audit Report Release Date
July 12, 2023
About

Audit scope included, among other things, new connectors to support additional chains, templatized IXReceiver contracts, updates to the Optimism connector to support Bedrock, and adding initial implementation of Optimistic roots to avoid the direct use of AMBs to propagate messages to the RootManage.

Summary of Findings
7
High
8
Medium
6
Low
15
Code Quality
1
Informational
Report Link
Full Report
References

Repository

Website

Connext-A-3

A modular interoperability protocol

Audit Report Release Date
July 6, 2023
About

Audit of Wormhole hub and spoke connectors.

Summary of Findings
4
Code Quality
Report Link
Full Report
References

Repository

Website

Bitcone-A-1

ERC20 token for the Coneheads community

Audit Report Release Date
July 6, 2023
About

We audited Bitcone's ERC20 token contract deployed on the Polygon blockchain.

Summary of Findings
3
Informational
Report Link
Full Report
References

Deployed Contract

thirdWeb-13

Web3 developer tooling

Audit Report Release Date
June 30, 2023
About

We audited two new contracts being deployed by thirdWeb: Dynamic Drops and Loyalty Cards.

Summary of Findings
1
High
1
Medium
4
Code Quality
2
Informational
Report Link
Full Report
References

Repository

Website

Sommelier-8

Automated DeFi yield optimization strategies

Audit Report Release Date
June 28, 2023
About

Audited the updated PriceRouter to include pricing extensions as well as the corresponding price extensions for balancer pools and lido wsETH. Added Frax and Morpho position adapters, as well as using Axelar to bridge transaction from the sommelier chain.

Summary of Findings
4
Medium
1
Low
6
Code Quality
3
Gas Optimizations
3
Informational
Report Link
Full Report
References

Repository

Website

Citadel-A-3

A fully on-chain game

Audit Report Release Date
June 26, 2023
About

We audited minor refactors, a new auth strategy for delegatecash, and improved events among other things

Summary of Findings
2
Low
5
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Citadel Game Docs

GitHub Organization - Private Repo

Kwenta-A-5

A synthetic perpetuals trading platform

Audit Report Release Date
June 22, 2023
About

Re-audited Kwenta's accounts and events functionality.

Summary of Findings
1
Code Quality
3
Informational
Report Link
Full Report

Fuji-1

A cross-chain money market aggregator optimizing lending and borrowing positions

Audit Report Release Date
June 21, 2023
About

We reviewed Fuji's full platform, including their lending, cross-chain, and permits functionality.

Summary of Findings
5
Critical
7
High
8
Medium
9
Low
10
Code Quality
4
Gas Optimizations
Report Link
Full Report
References

Repository

Tales-Of-Elleria-A-1

3D role-playing GameFi project

Audit Report Release Date
June 19, 2023
About

We audited their staking and bridge contracts that are used to manage staking and rewards logic.

Summary of Findings
1
High
3
Medium
7
Low
5
Code Quality
2
Gas Optimizations
Report Link
Full Report
References

Repository

Website

thirdWeb-A-12

Web3 developer tooling

Audit Report Release Date
June 15, 2023
About

Audit of two separate features, the Smart Accounts and Open Edition ERC-721 Accounts.

Summary of Findings
1
High
5
Medium
2
Low
6
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Repository

Website

Glo-1

A stablecoin supported by the Glo Foundation.

Audit Report Release Date
May 25, 2023
About

We reviewed the token contract, including access controls and core ERC-20 functionality.

Summary of Findings
1
Low
2
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Repository

Website

Kwenta-A-4

A synthetic perpetuals trading platform

Audit Report Release Date
May 4, 2023
About

We audited the Kwenta smart margin accounts functionality and related contracts.

Summary of Findings
3
Medium
3
Low
8
Code Quality
3
Gas Optimizations
Report Link
Full Report

thirdWeb-A-11

Web3 developer tooling

Audit Report Release Date
April 24, 2023
About

We audited two separate features for thirdWeb, including PackVFR and the Extension Registry contracts.

Summary of Findings
2
Medium
5
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Repository

Website

Sommelier-7

Automated DeFi yield optimization strategies

Audit Report Release Date
April 4, 2023
About

The Cellar, Registry, CellarFactory, PriceRouter, and SwapRouter contracts were audited, as well as position adaptors integrating Aave, compound, uniswapV3, one inch and 0x.

Summary of Findings
2
Critical
2
High
1
Medium
1
Code Quality
1
Informational
Report Link
Full Report
References

Repository

Website

Bueno.art-A-2

No-code NFT generation and deployment

Audit Report Release Date
March 31, 2023
About

Audit of Bueno.art's deployed 1155Drop contract deployed on Ethereum, as well as the clone factory contract used to deploy the 1155Drop contract.

Summary of Findings
1
Critical
2
High
2
Medium
4
Low
3
Code Quality
3
Gas Optimizations
Report Link
Full Report

Bueno.art-A-3

No-code NFT generation and deployment

Audit Report Release Date
March 31, 2023
About

We audited Bueno.art's deployed 1155Drop contract, specifically looking at the differences between solidity contracts and the deployed version on Ethereum mainnet referenced in the previous Bueno.art audit.

Summary of Findings
2
Low
3
Code Quality
Report Link
Full Report

thirdWeb-9

Web3 developer tooling

Audit Report Release Date
March 13, 2023
About

Audit of thirdWeb's Airdrop and Multichain Registry functionality.

Summary of Findings
1
High
5
Medium
1
Low
2
Code Quality
4
Gas Optimizations
Report Link
Full Report
References

Repository

Website

Synthetix-1

DeFi liquidity layer

Audit Report Release Date
March 2, 2023
About

Macro audited three separate parts of the Synthetix V3 infrastructure: ERC standard tokens (20 and 721), Hardhat Router and Hardhat Storage

Summary of Findings
5
High
4
Medium
3
Code Quality
1
Gas Optimization
Report Link
Full Report
References

Repository

Website

Synthetix-2

DeFi liquidity layer

Audit Report Release Date
March 2, 2023
About

We audited the Synthetix V3 contracts, specifically focusing on the core functionaltiy of the Synthetix V3 protocol.

Summary of Findings
3
High
2
Code Quality
Report Link
Full Report
References

Repository

Website

Synthetix-3

DeFi liquidity layer

Audit Report Release Date
March 2, 2023
About

Re-audit of the Synthetix V3 contracts, specifically focusing on the core functionaltiy of the Synthetix V3 protocol. This was a second audit of similar functionality that was reviewed in the Synthetix-2 audit.

Summary of Findings
2
High
3
Medium
3
Low
4
Code Quality
1
Informational
Report Link
Full Report
References

Repository

Website

thirdWeb-10

Web3 developer tooling

Audit Report Release Date
March 1, 2023
About

We audited a collection of token extensions related to ERC721 tokens. This included functionality for ownership, permissions, sales, royalties, and more. We also reviewed the routing functionality for the contract.

Summary of Findings
2
High
2
Medium
1
Low
2
Code Quality
1
Gas Optimization
1
Informational
Report Link
Full Report
References

Repository

Website

The-Graph-A-1

Blockchain indexing and query protocol.

Audit Report Release Date
February 24, 2023
About

Audit of The Graph's subscription contract, which allows users to pay for their service with ETH for their services

Summary of Findings
3
High
1
Medium
3
Low
4
Code Quality
4
Gas Optimizations
1
Informational
Report Link
Full Report
References

Repository

Website

Sommelier-5

Automated DeFi yield optimization strategies

Audit Report Release Date
February 20, 2023
About

Audited their Euler Debt and E token adapters.

Summary of Findings
2
High
2
Code Quality
Report Link
Full Report
References

Repository

Website

Nori-2

Carbon removal marketplace

Audit Report Release Date
February 14, 2023
About

We re-audited Nori's core contracts, which are used to manage their carbon offsetting platform.

Summary of Findings
1
Medium
2
Low
4
Code Quality
1
Informational
Report Link
Full Report
References

Repository

Website

xDonations A-1

A Connext project allowing NGOs to fundraise via on-chain cryptocurrency donations

Audit Report Release Date
February 10, 2023
About

Audit of the xDonations donation contract.

Summary of Findings
2
High
1
Low
1
Code Quality
1
Gas Optimization
1
Informational
Report Link
Full Report

Arcade-A-2

P2P Loan Protocol for NFTs

Audit Report Release Date
February 6, 2023
About

Our review included their core protocol and market contracts.

Summary of Findings
2
Critical
3
High
5
Medium
1
Low
9
Code Quality
4
Gas Optimizations
Report Link
Full Report
References

Repository

Website

Connext-A-1

A modular interoperability protocol

Audit Report Release Date
January 31, 2023
About

We audited Connext's messaging layer contracts, responsible for coordinating state updates between various Connext modules.

Summary of Findings
1
Critical
4
High
4
Medium
5
Low
9
Code Quality
5
Gas Optimizations
Report Link
Full Report
References

Repository

Website

thirdWeb-8

Web3 developer tooling

Audit Report Release Date
January 30, 2023
About

Audit of their wallet accounts and signature drop 1155 contracts.

Summary of Findings
1
Critical
2
High
3
Medium
1
Low
1
Code Quality
Report Link
Full Report
References

Repository

Website

Double-A-1

A DeFi primitive for AMM liquidity providing

Audit Report Release Date
January 20, 2023
About

Audited Double core vaults, reward distribution, and UniswapV2 liquidity provider and migratory contracts

Summary of Findings
2
High
1
Medium
1
Low
3
Code Quality
1
Gas Optimization
4
Informational
Report Link
Full Report
References

Website

GitHub Organization - Private Repo

mStable-A-1

Stablecoin yield aggregator

Audit Report Release Date
January 11, 2023
About

Audit of mStable's MetaVaults, which are based on EIP-4626 vaults. We reviewed the underlying logic that allows users to deposit and withdraw assets from these vaults.

Summary of Findings
2
High
4
Medium
2
Low
3
Code Quality
3
Gas Optimizations
3
Informational
Report Link
Full Report
References

Repository

Website

Sommelier-4

Automated DeFi yield optimization strategies

Audit Report Release Date
January 11, 2023
About

Audited the core Sommelier contracts, including the contract factory, router, staking, and 3rd party integrations.

Summary of Findings
5
High
8
Medium
2
Low
7
Code Quality
Report Link
Full Report
References

Repository

Website

Maker-A-1

Decentralized stablecoin and lending protocol

Audit Report Release Date
December 22, 2022
About

Audit of MakerDAO's dss-kiln module, which is used to manage liquidations. We reviewed its core functionality, including the mathematical logic underlying the liquidations functions.

Summary of Findings
1
Medium
2
Low
7
Code Quality
5
Informational
Report Link
Full Report
References

Repository

Website

Nori-A-1

Carbon removal marketplace

Audit Report Release Date
December 13, 2022
About

We audited Nori's core contracts, which are used to manage their carbon offsetting platform. This included access controls, bridging functionality and certificate minting functions.

Summary of Findings
4
High
6
Medium
4
Low
9
Code Quality
4
Gas Optimizations
Report Link
Full Report
References

Repository

Website

Bueno.art-A-1

No-code NFT generation and deployment

Audit Report Release Date
December 8, 2022
About

Audit of Bueno.art's deployed 721Drop contract on Polygon, including their contract proxy and administrative functions.

Summary of Findings
2
High
3
Medium
6
Low
5
Code Quality
1
Gas Optimization
Report Link
Full Report

thirdWeb-7

Web3 developer tooling

Audit Report Release Date
December 7, 2022
About

We audited three new staking contracts for thirdweb: TokenStake, a contract for staking ERC20 tokens; NFTStake, a contract for staking ERC721 NFTs; and EditionStake, a contract for staking ERC1155 tokens. Each contract supports configurable staking rewards.

Summary of Findings
1
Critical
2
High
3
Medium
1
Low
8
Code Quality
3
Gas Optimizations
Report Link
Full Report
References

Repository

Website

Citadel-A-1

A fully on-chain game

Audit Report Release Date
December 2, 2022
About

We audited their main contracts, ZK ConstructionBay contract and Deployment scripts.

Summary of Findings
1
Critical
9
High
17
Medium
18
Low
21
Code Quality
6
Gas Optimizations
Report Link
Full Report
References

Citadel Game Docs

GitHub Organization - Private Repo

thirdWeb-A-6

Web3 developer tooling

Audit Report Release Date
November 17, 2022
About

Audit of Marketplace and TieredDrop contracts.

Summary of Findings
4
Critical
1
High
1
Medium
4
Low
3
Code Quality
2
Gas Optimizations
Report Link
Full Report
References

Repository

Website

thirdWeb-A-5

Web3 developer tooling

Audit Report Release Date
November 11, 2022
About

Audit of their ERC20, ERC721 and ERC1155 drop contracts.

Summary of Findings
1
Medium
2
Code Quality
Report Link
Full Report
References

Repository

Website

PartyDAO-A-1

Multiplayer crypto software

Audit Report Release Date
October 31, 2022
About

Audit of PartDAO's core contracts, which are used to manage their governance and treasury.

Summary of Findings
1
High
2
Medium
1
Low
9
Code Quality
2
Gas Optimizations
1
Informational
Report Link
Full Report
References

Repository

Website

Kwenta-3

A synthetic perpetuals trading platform

Audit Report Release Date
October 19, 2022
About

Audit of the smart margin contracts, including the future's market and interfaces.

Summary of Findings
1
High
1
Medium
3
Low
2
Code Quality
1
Gas Optimization
Report Link
Full Report

Sommelier-3

Automated DeFi yield optimization strategies

Audit Report Release Date
October 7, 2022
About

Macro is excited to continue its ongoing engagement with Sommelier Finance as they realize their vision of algorithmic, automated DeFi yield optimization strategies. Cellars support dynamic management and balancing across multiple asset types: ERC20s, other ERC4626s, and other Cellars – which are themselves ERC4626 vaults. They utilize governance and control mechanisms for management; Uniswap V2/V3 for asset rebalancing; and Chainlink price oracles for asset valuation.

Summary of Findings
3
High
9
Medium
4
Low
11
Code Quality
10
Informational
Report Link
Full Report
References

Repository

Website

thirdWeb-A-4

Web3 developer tooling

Audit Report Release Date
September 29, 2022
About

Audit of their ERC20, ERC721 and ERC1155 token contracts.

Summary of Findings
1
Critical
3
Medium
2
Low
4
Code Quality
1
Gas Optimization
1
Informational
Report Link
Full Report
References

Repository

Website

thirdWeb-A-3

Web3 developer tooling

Audit Report Release Date
August 19, 2022
About

We audited thirdWeb's Pack functionality and subsequent extensions and interfaces for the contract.

Summary of Findings
1
High
3
Medium
7
Low
5
Code Quality
1
Informational
Report Link
Full Report
References

Repository

Website

Kwenta-2 Mini

A synthetic perpetuals trading platform

Audit Report Release Date
July 22, 2022
About

We reviewed upcoming Kwenta feature designs to give their team confidence in the direction they were going.

Report Link
Full Report

thirdWeb-2

Web3 developer tooling

Audit Report Release Date
June 17, 2022
About

We audited three new exciting features for thirdweb: Multiwrap, a contract that allows transferring and trading of multiple assets as a single unit; DropERC1155, a contract that allows users to easily mint multiple sets of NFTs with no redeployment; and SignatureDrop, a contract that allows facilitating both drops and mints via signatures.

Summary of Findings
2
High
7
Low
5
Code Quality
5
Gas Optimizations
Report Link
Full Report

Cool Stuff

Useful resources for developing on Solidity, Ethereum, and the EVM.