Silopedia
  • Read Me
  • Introduction
    • What is Silo?
  • The Silo Protocol
    • Protocol Design
      • Base and Bridge Assets
      • Silo Deployments
      • Collateral Status
      • Interest Rate Model
        • Dynamic IRM with PI Controller
        • Kink IRM with Multiplier
        • Fixed IRM
      • $XAI
      • Curve LP Markets
      • Incentives
    • Lending 101
      • The Markets
      • The Lender
      • The Borrower
      • Liquidation
    • Risks
      • Smart Contract
      • Economic
      • Oracle
      • Bad Debt
      • Liquidation
    • Integrations
      • Pendle Finance
      • Contango
      • Beefy
      • Factor
  • Walkthroughs
    • Using Silo
      • Connect Wallet
      • Lending (Depositing)
      • Withdrawing
      • Borrowing
      • Repaying
    • Delegating $SILO to Vote
      • Delegate to Self
      • Delegate to Somebody Else
    • Farming with $SILO
      • LPing SILO/ETH v3 on Camelot (Arbitrum)
    • Borrowing Strategies
      • Borrow to Short
      • Borrow to Leverage
  • Yield farming opportunities
  • Oracles
  • Liquidate a position manually
  • SiloDAO
    • $SILO
      • Token Allocation and Vesting
    • Governance
    • Creating a Silo
    • Wallets and DAO Contracts
  • Security
    • Audit
    • Formal Verification
    • Bug Bounty Program
    • Smart Contracts
  • Additional Information
    • Brand Assets
    • Developer Docs
    • Submit a Bug
    • Official Channels
    • SiloDAO (Snapshot)
    • SiloDAO (Tally; On-Chain Voting)
Powered by GitBook
On this page
  • What is Smart Contract risk?
  • What precautions has Silo taken to prevent this?
  • Audits
  • Formal Verification Testing
  • Bug Bounty Program
  1. The Silo Protocol
  2. Risks

Smart Contract

PreviousRisksNextEconomic

Last updated 1 year ago

What is Smart Contract risk?

DeFi protocols rely on code to create a product - in Silo's case, a risk-isolated lending market.

Since code is written by humans, it is possible that a code base may contain vulnerabilities that are exploitable putting user funds at risk.

What precautions has Silo taken to prevent this?

There is no precaution that grants 100% protection against smart contract risk. However, Silo has undergone several audits, formal verification testing, and has a live bug bounty program.

We intend to continue this process for all major product releases to expose vulnerabilities before they have the opportunity to manifest.

Audits

Each of Silo's releases have been audited by external auditors that failed to expose any vulnerabilities in the code bases. This includes:

We will continue to audit all new version of the protocol that contain major upgrades to our architecture - With over four already planned for our upcoming version 2.

Formal Verification Testing

Formal verification testing involves the repeated simulation of contract interactions against a series of written rules. This is a supplement to auditing that aims to reveal issues that may not have been exposed in a manual review.

We will continue this process for all major releases.

Bug Bounty Program

Bug bounty programs allow community whitehats to search our code for vulnerabilities in exchange for a bounty.

Formal verification testing has been conducted via and includes:

The bug bounty program is live on .

ABDK Audit Report for Silo v1
Quantstamp Audit Report for Silo v1
Chainsecurity Audit Report for Curve LP Silos
Certora
Certora Formal Verification Report for Silo v1
Certora Formal Verification Report for Chainlink Price Provider
Immunefi