At the moment, we’re excited to announce the beginning of the Fusaka audit contest, co-sponsored by Gnosis and Lido, hosted on Sherlock, and working for 4 weeks from September fifteenth. The aim is straightforward: maximize scrutiny of the Fusaka improve and floor vulnerabilities earlier than they’ll impression the community.
To lift the stakes, legitimate findings reported within the first week have a 2x multiplier utilized to their factors rewarded, and people within the second week have a 1.5x multiplier. To assist safety researchers, we’ve ready a Fusaka auditor information.
We’re grateful to Gnosis for contributing 100,000 USD and Lido for contributing 25,000 USD to the competition. Past funding, co-sponsorship is strategically necessary for the ecosystem as Ethereum upgrades have an effect on everybody, and distributing help throughout a number of organizations reinforces that protocol safety is just not the only duty of a single entity.
What’s an audit contest?
An audit contest is a time-bound competitors designed to harden the protocol. Safety researchers are incentivized to actively seek for vulnerabilities within the Fusaka codebase beneath outlined guidelines. Solely impactful, rule-compliant findings are rewarded.
After the competition, all findings are reviewed, validated, and compiled into an official report. This ensures that found vulnerabilities are tracked, mitigated, and classes realized are shared. High researchers are acknowledged for his or her contributions.
Bug Bounty Program
Exterior of Fusaka, our ongoing Bug Bounty Program affords rewards of as much as 250,000 USD for vulnerabilities affecting the broader Ethereum protocol.
About Sherlock
Sherlock is dedicated to the continued safety of the Ethereum community, having beforehand performed the audit of the Pectra Bytecode improve on the finish of 2024.
Based in 2021, Sherlock is a full good contract safety platform that protects protocols throughout their total lifecycle via collaborative audits with main researchers, large-scale contests to maximise protection, post-launch bug bounty applications, and monetary protection to bolster accountability. Constructing on its early status for audit contests, Sherlock as we speak operates as a complete safety suite trusted by main initiatives to safeguard vital on-chain methods.
