Audit Reports

Security audits and vulnerability assessments for MCS smart contracts

🔍

Audit Status: Pending

MCS is currently in development on testnet. Professional audits are planned before mainnet deployment.

Planned Audits

The following smart contract audits are planned for the MCS mainnet launch:

Core Contracts

  • MandateNFT.sol
  • ProtocolRegistry.sol
  • MandatedVault.sol
  • PolicyOracle.sol

Oracle Integration

  • ChainlinkPolicyOracle.sol
  • Don ID and Functions integration
  • Claude API callback verification

Target Audit Firms

We are engaging with top-tier blockchain security firms for comprehensive audits:

  • OpenZeppelin — Smart contract security best practices
  • Trail of Bits — Advanced vulnerability detection
  • ConsenSys Diligence — DeFi protocol expertise
  • PeckShield — Blockchain security specialists

Final firm selection will be announced closer to the mainnet launch date.

Bug Bounty Program

A bug bounty program will be launched following the initial audits to encourage responsible disclosure of vulnerabilities. Details will include:

  • Reward tiers based on severity (Critical, High, Medium, Low)
  • Clear scope of in-scope contracts
  • Guidelines for responsible disclosure
  • Payout structure in AVAX or stablecoins

Coming Soon: Bug bounty program will launch after mainnet deployment via a platform such as Immunefi or HackerOne.

Current Security Status

While professional audits are pending, the following security measures are in place:

✓ Internal Review

Code has been internally reviewed and tested with Foundry test suite.

✓ Testnet Deployment

Currently deployed on Avalanche Fuji testnet for testing.

✓ Open Source

Code is publicly available for community review on GitHub.

⏳ Pending Audit

Professional audit scheduled before mainnet launch.

Security Researcher?

We welcome security researchers to review our code. If you find a vulnerability, please disclose it responsibly.