September 2022 Update

Audit

Josh C
Behodler Liquidity Engine
3 min readOct 11, 2022

--

Behodler’s WatchPug audit was a success! This exercise reviewed the fixes for the C4 Limbo audit and audited PyroTokens v3 and PyroLoans. Fortunately, new findings surfaced through the audit, allowing for changes to ensure a robust and secure Limbo. In further good news, no significant architectural changes are needed. Still, some code reordering is required to improve gas optimisations, support various token types and, most importantly, protect Behodler from known attack vectors.

Once the final audit report is published, the findings will be shared with the community.

Limbo Monetary Policy

Whilst this analysis tends to be technical, it offers detailed justifications for the community to use as guidelines once Limbo is on mainnet.

https://github.com/Behodler/limbo/blob/watchpug/documentation/MonetaryPolicy.md

Having the smart contracts audited was beneficial to address potential exploits and bring along new concepts, enabling a more feature-rich Behodler ecosystem.

  • CliffFace — protects Behodler from impermanent loss death spirals. The CliffFace contract can place a lower floor on the price. If the price drops below this level, any additional minting steeply raises the redemption rate. The end-user experience is that selling on Behodler results in very high slippage when the price falls below this floor. The sales ram up against the cliff face of slippage so that the AMM doesn’t lose TVL through an impermanent loss death spiral. Whether for fast rugpulls or slow declines, the CliffFace contract is the ultimate defence necessary to protect the health of a single pool AMM.
  • PyroTokens rebase contract — Every PyroToken will have a rebase version of itself. This contract will allow users to express PyroTokens as 1:1 with the base token. The rebase contract will work the same as PyroTokens v3, the main difference being that balances accumulate directly in your wallet.
  • PyroTokens UI assistance contract — allows holders of base tokens to mint up the PyroToken without knowing about the proxy. So, on the Beholder UI, users won’t know about proxies or deal with additional complexity; they’ll discover that Behodler can’t be drained by rug pulls.

Areas under development

DeFi Developer***
  • PyroTokens v3 migration UI for existing PyroToken holders
  • Limbo DAO UI for frontend configuration of Limbo contract parameters
  • Final review and clean-up of the Limbo UI
  • Working on the UI for all Behodler dapp(s) to be able to handle multiple networks
  • We review all UI across all dapps for consistency and improvements to the user experience.

“Behodler stands within the tradition of ETH and its vision of prioritising the safe delivery of desired features. Behodler solves real problems and is innovating in multiple critical areas of DeFi. As time has progressed, Limbo and Behodler have grown in scope and complexity. The team’s priority has always been and continues to be to prioritise security while executing the vision of the Behodler ecosystem. Limbo will not be rushed and shipped early, nor is it running late — it will arrive precisely when the code is ready.”

Article written and edited by Wiggum & Woodsman

--

--