ImmuneBytes Completes Retreeb Smart Contract Audit Read Details
ImmuneBytes officially announced the successful completion of the smart contract security audit for Retreeb.
The auditors at ImmuneBytes carried out a thorough audit to make sure they have eliminated all the vulnerabilities and maximum risk coverage. The smart contract code was audited by a team of independent auditors which included:
- Conducting the tests for the functionality of the smart contract to determine proper logic has been followed throughout.
- Ensuring the smart contract behaves as intended.
- Analyzing the complexity of the code by thorough, manual review of the code, line-by-line.
- Deploying the code on testnet using multiple clients to run live tests.
- Checking whether all the libraries used in the code are on the latest version.
Our team has performed thorough testing of the project, including reviewing the code design patterns and analyzing the smart contract architecture. This ensures it is structured and safe.
Overview of the Audit reports
Project Name: Retreeb Preliminary Audit
Contracts Names: StakingPlatform, TesterStakingPlatform, Token.sol
Languages: Solidity(Smart contract), Typescript (Unit Testing)
Github commit hash for audit: 30471f1fe81580d56cbc2f3189e64d583cd78a85
Platforms and Tools: Remix IDE, Truffle, Truffle Team, Ganache, Solhint, VScode, Contract Library, Slither, SmartCheck, SFuzz
Audit Summary
Auditors performed a check for vulnerabilities in the system to verify that the smart contract system is secure, resilient, and working according to its specifications. This was taken up under 3 different categories:
1. Security: Identifying security-related issues within each contract and the system of contracts.
2. Sound Architecture: Evaluation of the architecture of this system through the lens of established smart contract best practices and general software best practices.
3. Code Correctness and Quality: A full review of the contract source code.
The primary areas of focus during the audit process included:
- Correctness
- Readability
- Sections of code with high complexity
- Quantity and quality of test coverage
The team then performed a formal line-by-line inspection of the Smart Contract to find any potential issues like Signature Replay Attacks, Unchecked External Calls, External Contract Referencing, Variable Shadowing, Race conditions, Transaction-ordering dependence, timestamp dependence, DoS attacks, and others.
Security Level References
Every issue in this report was assigned a severity level from the following:
Our smart contract auditors split the issues according to the severity levels:
Admin/Owner Privileges can be misused either intentionally or unintentionally.
High severity issues will bring problems and should be fixed.
Medium severity issues could potentially bring problems and should eventually be fixed.
Low severity issues are minor details and warnings that can remain unfixed but would be better fixed at some point in the future.
The smart contract audit report with in-depth details about the contract code and its vulnerabilities can be found here: Report
While conducting the audits of the Retreeb smart contracts, it was observed that the contracts contained High, Medium, and Low severity issues.
The final audit was then conducted and the details are as follows:
Contracts Names: StakingPlatform, TesterStakingPlatform, Token.sol
Languages: Solidity(Smart contract), Typescript (Unit Testing)
Github commit hash for audit: 30471f1fe81580d56cbc2f3189e64d583cd78a85
Github commit hash for final audit: d482164125e65a36e652d7bb5df7475bd4bcb50b
Platforms and Tools: Remix IDE, Truffle, Truffle Team, Ganache, Solhint, VScode, Contract Library, Slither, SmartCheck, SFuzz
Audit Summary
The report for the smart contract audit can be found here
While conducting the audits of the Retreeb smart contracts, it was observed that the contracts contain no High, Medium, and Low severity issues.
The final audit was then conducted and the details are as follows:
Contracts Names: StakingPlatform, TesterStakingPlatform, Token.sol
Languages: Solidity(Smart contract), Typescript (Unit Testing)
Github commit hash for audit: 30471f1fe81580d56cbc2f3189e64d583cd78a85
Github commit hash for final audit: d482164125e65a36e652d7bb5df7475bd4bcb50b
Github commit hash for final audit(15th November): b28ead2bb3174f8ee8d3bcc13aebcea0442b53af
Platforms and Tools: Remix IDE, Truffle, Truffle Team, Ganache, Solhint, VScode, Contract Library, Slither, SmartCheck, SFuzz
Audit Summary
The final audit report for the smart contract audit can be found here: Final Audit Report of Retreeb.
All the issues that were found during the audit were closed and the potential threats were assessed by our team of auditors. The Retreeb smart contracts contain no vulnerabilities after the audit.
About Retreeb
Within a rapidly changing sector, Retreeb presents a new means of payment, simple, practical, and economical, which allows it to comply with universal values such as ethics, sharing, and solidarity. It targets all persons who are part of a solidarity and sustainable approach.
In consideration of their adoption of the service, Retreeb commits its users to pay 33% of the transaction fees collected by Retreeb to the funding of social and environmental projects. With this business model, the technical infrastructure, the redistribution of transaction fees, and the monitoring of projects, they opt for an unprecedented level of transparency in a particularly opaque sector.
Concerned about environmental issues, their technological choices are determined by a desire to reduce our carbon footprint to its strict minimum. Finally, they take a new approach to payment by placing corporate social and environmental responsibility (CSR) at the heart of their ambitions.
About ImmuneBytes
ImmuneBytes is a fast-growing company that combines blockchain security and smart contract auditing to secure your digital assets. Since 2020, we have helped secure over $1.8 billion in assets by employing cutting-edge tools and practices to identify vulnerabilities in the source code behind cryptocurrency wallets and decentralized applications (dApps).
ImmuneBytes works closely with clients to identify and resolve potential vulnerabilities in their smart contracts without disrupting normal activity or activity on the blockchain. With an experienced team of security professionals, ImmuneBytes delivers an unparalleled level of expertise and commitment to quality — guaranteeing that our clients’ blockchains can operate without disruption.
For further discussion and queries on the same topic, join the discussion on the Telegram group of ImmuneBytes- https://t.me/immunebytes
Check the GitHub repository- https://github.com/ImmuneBytes/Smart-Contract-Audit-Reports
Join Coinmonks Telegram Channel and Youtube Channel learn about crypto trading and investing
Also, Read
- 3Commas Review | Pionex Review | Coinrule review
- Ledger vs Ngrave | Ledger nano s vs x | Binance Review
- Bybit Exchange Review | Bityard Review | Jet-Bot Review
- 3Commas vs Cryptohopper | Earn crypto interest
- The Best Bitcoin Hardware wallet | BitBox02 Review
- BlockFi vs Celsius | Hodlnaut Review | KuCoin Review
