ImmuneBytes Completes Sheesha Finance Smart Contract Audit | Read Details
ImmuneBytes officially announced the successful completion of the smart contract security audit for Sheesha Finance.
The auditors at ImmuneBytes carried out a thorough audit to make sure they have eliminated all the vulnerabilities and maximum risk coverage. The smart contract code was audited by a team of independent auditors which included:
- Conducting the tests for the functionality of the smart contract to determine proper logic has been followed throughout.
- Ensuring the smart contract behaves as intended.
- Analyzing the complexity of the code by thorough, manual review of the code, line-by-line.
- Deploying the code on testnet using multiple clients to run live tests.
- Checking whether all the libraries used in the code are on the latest version.
Our team has performed thorough testing of the project, including reviewing the code design patterns and analyzing the smart contract architecture. This ensures it is structured and safe.
Overview of the Audit Report
Project Name: Sheesha Finance
Languages: Solidity(Smart contract)
Github Link/Smart Contract Address for audit: 36adeff12204228c1473b00199c1a35bfb61e943
Deployed Smart Contract Address (kovan):
○ SHEESHAGlobals — 0x75b7524c355F67cff7D16e51f0C5CdF26bBBb2fe
○ LGE — 0xc78d2255e9cf5952C40e16C3B3D2e02BABeB0a18
○ SHEESHAVault — 0xB0C32604Ea44b814Fff891D943e787c5B04488fD
○ SHEESHAVaultLP — 0x8F46f6E392d27a4b2d2C98004335299d33f7DB55
Audit Summary
Auditors performed a check for vulnerabilities in the system to verify that the smart contract system is secure, resilient, and working according to its specifications. This was taken up under 3 different categories:
1. Security: Identifying security-related issues within each contract and the system of contracts.
2. Sound Architecture: Evaluation of the architecture of this system through the lens of established smart contract best practices and general software best practices.
3. Code Correctness and Quality: A full review of the contract source code.
The primary areas of focus during the audit process included:
- Correctness
- Readability
- Sections of code with high complexity
- Quantity and quality of test coverage
The team then performed a formal line-by-line inspection of the Smart Contract to find any potential issues like Signature Replay Attacks, Unchecked External Calls, External Contract Referencing, Variable Shadowing, Race conditions, Transaction-ordering dependence, timestamp dependence, DoS attacks, and others.
Security Level References
Every issue in this report was assigned a severity level from the following:
Admin/Owner Privileges can be misused either intentionally or unintentionally.
High severity issues will bring problems and should be fixed.
Medium severity issues could potentially bring problems and should eventually be fixed.
Low severity issues are minor details and warnings that can remain unfixed but would be better fixed at some point in the future.
The smart contract audit report with in-depth details about the contract code and its vulnerabilities can be found here: Sheesha Finance Audit Report
The admin/owner of Sheesha Finance smart contracts has various privileges over the smart contracts. These privileges can be misused either intentionally or unintentionally (in case the admin’s private key gets hacked). We assume that these extra rights will always be used appropriately.
We then confirmed that all use cases and edge scenarios were accounted for and that no unintended functionality had been left in the code.
About Sheesha Finance
The team at Sheesha Finance is inspired to bring a powerful DeFi platform to the industry, one that is trusted, well-funded, and heavily supported by a strong community. Sheesha is here for the long haul and, as such, will be rolling out our implementation in phases to ensure everything is correct and safe for its users!
Participating in Sheesha Finance is a straightforward approach known as a liquidity generation event. This event allows anyone to participate by contributing ETH/BNB and receiving a portion of Liquidity Provision (LP) tokens in the process. These tokens can be staked and should be for a variety of benefits.
About ImmuneBytes
ImmuneBytes is a fast-growing company that combines blockchain security and smart contract auditing to secure your digital assets. Since 2020, we have helped secure over $1.8 billion in assets by employing cutting-edge tools and practices to identify vulnerabilities in the source code behind cryptocurrency wallets and decentralized applications (dApps).
ImmuneBytes works closely with clients to identify and resolve potential vulnerabilities in their smart contracts without disrupting normal activity or activity on the blockchain. With an experienced team of security professionals, ImmuneBytes delivers an unparalleled level of expertise and commitment to quality — guaranteeing that our clients’ blockchains can operate without disruption.
For further discussion and queries on the same topic, join the discussion on the Telegram group of ImmuneBytes- https://t.me/immunebytes
Check the GitHub repository- https://github.com/ImmuneBytes
