NEWTON
Asked
8 months ago
66
views
0
How can I prepare my Cairo lang project for an audit?
Newton
asked
8 months ago
1
Accepted answer
Audits are an important step in the launch of any protocol. It is always recommended to get at least one audit from a reputable firm, as they will (hopefully) find bugs in your code. In order to maximise your chances of shipping a secure product, you should aim to have two companies audit your protocol (if funding allows of course). This allows some room for errors from an auditing firm, as auditors are human and can make mistakes and miss some vulnerabilities.
Also, running a bug bounty program on a platform such as Immunefi is a good way to incentivize white hat hackers to look at your code and help you. Finally, Code4rena is a great way to have some of the best minds in blockchain security try to break your code.
The following steps should be completed before submitting a project for an audit, as this will save time to the auditors (and reduce costs) as well as increase the chances of finding any bugs before the code is audited.
We are building a security team under the name Spectra. If you are interested in getting your Cairo smart contracts (or Solidity and other technologies) audited, feel free to reach directly to @ctrlc03 or to @spectra_sec.
ctrlc03
answered
8 months ago
Is Kakarot a Starkware project?
What is the most valuable project on starknet?
How do I connect my wallet to my Pathfinder node?
How can I interact with my contract on Starknet using starknetjs?
How can I create an array and populate it in the hint Cairo lang/Protostar?
What Implicit arguments are in Cairo lang?
How to generate a proof for a Cairo program and verify it?[StackOverflow]
How large can addresses be in Cairo?
Why does Starkware pedersen Hash Function split numbers in high and low bits
How can I read contract memory with starknetjs?
Is starknet.id legit?
A TypeError while unpacking nested tuples into felts
How do I connect my DAPP to a private Starknet network using starknetjs?
Does starknet have name service?