Right this moment, we’re excited to announce the beginning of the Fusaka audit contest, co-sponsored by Gnosis and Lido, hosted on Sherlock, and working for 4 weeks from September fifteenth. The purpose is easy: maximize scrutiny of the Fusaka improve and floor vulnerabilities earlier than they’ll influence the community.
To boost the stakes, legitimate findings reported within the first week have a 2x multiplier utilized to their factors rewarded, and people within the second week have a 1.5x multiplier. To assist safety researchers, we’ve ready a Fusaka auditor guide.
We’re grateful to Gnosis for contributing 100,000 USD and Lido for contributing 25,000 USD to the competition. Past funding, co-sponsorship is strategically necessary for the ecosystem as Ethereum upgrades have an effect on everybody, and distributing assist throughout a number of organizations reinforces that protocol safety just isn’t the only real duty of a single entity.
What’s an audit contest?
An audit contest is a time-bound competitors designed to harden the protocol. Safety researchers are incentivized to actively seek for vulnerabilities within the Fusaka codebase beneath outlined guidelines. Solely impactful, rule-compliant findings are rewarded.
After the competition, all findings are reviewed, validated, and compiled into an official report. This ensures that found vulnerabilities are tracked, mitigated, and classes discovered are shared. High researchers are acknowledged for his or her contributions.
Bug Bounty Program
Exterior of Fusaka, our ongoing Bug Bounty Program presents rewards of as much as 250,000 USD for vulnerabilities affecting the broader Ethereum protocol.
About Sherlock
Sherlock is dedicated to the continued safety of the Ethereum community, having beforehand performed the audit of the Pectra Bytecode improve on the finish of 2024.
Based in 2021, Sherlock is a full sensible contract safety platform that protects protocols throughout their whole lifecycle by way of collaborative audits with main researchers, large-scale contests to maximise protection, post-launch bug bounty packages, and monetary protection to bolster accountability. Constructing on its early repute for audit contests, Sherlock in the present day operates as a complete safety suite trusted by main initiatives to safeguard vital on-chain programs.
