Quantstamp & OpenZeppelin
Our smart contracts have been reviewed by Quantstamp & OpenZeppelin - both found no high or medium risk vulnerabilities. They did observe there was a certain amount risk due to the centralization of power in the Pool administrators, but they deemed it low risk because users can control their funds at anytime.
We're looking at ways to decentralize the role of adminstrators in the near future.
View OpenZeppelin Certificate #1 (Coming soon)
View Quantstamp Certificate #2
View Quantstamp Certificate #1
Security Bug Bounty
We have an open security bug bounty to incentive vulnerability disclosures. The bug bounty is described on GitHub.
See bug bounties on Github Issues
Public Source Code
We strive to be as transparent as possible by publishing the source code on Github and verifying the smart contracts on Etherscan.
View source code on Github
See verified code on Etherscan