The STASIS smart contract just underwent another audit

When it comes to dealing with people’s money, even the smallest flaw in a system is too big. But not every flaw is easy to spot; that’s why you have to run things by an expert. Whether it’s the small nuances that flag a piece of fine art piece as a fake, or a subtle issue buried deep in a block of open source code, specialists have the ability to notice and interpret details that the average person would never even see.

Arguably, the most pressing issue these days as far as cryptocurrency and smart contracts are concerned is security breaches and potential loss of customer funds. Hardly a day goes by without a hack being discovered, one of the most recent ones being at Bitpoint in Japan. Another pressing issue in the space is the possible use of customer funds for illicit purposes such as money laundering, which is what happened to the WEX exchange.

To make sure that our own customers’ funds are as secure as possible, we took our smart contract to the experts at CertiK for a rigorous smart contract audit. The audit — the second one we’ve had done since our smart contract launchd last summer — was intended to check for any possible issues and vulnerabilities in the source code of STASIS’ smart contract.

The smart contract was reviewed against best practices such as DASP top 10, as well as known smart contract weakness classifications, or SWEs, which you can learn more about here.

The STASIS smart contract received a security score of 90/100, with no issues flagged that increase the risk of lost client funds. As reported by CertiK, the auditing process paid special attention to the following considerations:

• Testing the smart contracts against both common and uncommon attack vectors,

• Assessment of the codebase for best practice and industry standards,

• Ensuring contract logic meets the specifications and intentions of the client,

• Cross referencing contract structure and implementation against similar smart contracts produced by industry leaders,

• Thorough line by line manual review of the entire codebase by industry experts.

There’s nothing more important to the team at STASIS than making sure that our clients’ funds are always safe. If you have any questions about our technology or security processes, feel free to send our team a message on Telegram.