At the moment, we’re excited to announce the beginning of the Fusaka audit contest, co-sponsored by Gnosis and Lido, hosted on Sherlock, and operating for 4 weeks from September fifteenth. The purpose is straightforward: maximize scrutiny of the Fusaka improve and floor vulnerabilities earlier than they will impression the community.
To boost the stakes, legitimate findings reported within the first week have a 2x multiplier utilized to their factors rewarded, and people within the second week have a 1.5x multiplier. To assist safety researchers, we’ve ready a Fusaka auditor information.
We’re grateful to Gnosis for contributing 100,000 USD and Lido for contributing 25,000 USD to the competition. Past funding, co-sponsorship is strategically vital for the ecosystem as Ethereum upgrades have an effect on everybody, and distributing assist throughout a number of organizations reinforces that protocol safety just isn’t the only real accountability of a single entity.
What’s an audit contest?
An audit contest is a time-bound competitors designed to harden the protocol. Safety researchers are incentivized to actively seek for vulnerabilities within the Fusaka codebase below outlined guidelines. Solely impactful, rule-compliant findings are rewarded.
After the competition, all findings are reviewed, validated, and compiled into an official report. This ensures that found vulnerabilities are tracked, mitigated, and classes realized are shared. Prime researchers are acknowledged for his or her contributions.
Bug Bounty Program
Exterior of Fusaka, our ongoing Bug Bounty Program gives rewards of as much as 250,000 USD for vulnerabilities affecting the broader Ethereum protocol.
About Sherlock
Sherlock is dedicated to the continued safety of the Ethereum community, having beforehand carried out the audit of the Pectra Bytecode improve on the finish of 2024.
Based in 2021, Sherlock is a full sensible contract safety platform that protects protocols throughout their total lifecycle by collaborative audits with main researchers, large-scale contests to maximise protection, post-launch bug bounty packages, and monetary protection to bolster accountability. Constructing on its early popularity for audit contests, Sherlock right now operates as a complete safety suite trusted by main tasks to safeguard important on-chain techniques.
