This article was first published on: Stories by Augur on Medium --

In September 2017, Augur engaged Coinspect to perform a security audit of the Solidity Compiler. The objective of the audit was to evaluate the security of the compiler. Sergio Lerner lead the audit, and has delivered a thorough report of the codebase.

The full report can be found here, and summary of the audit and issues can be found next.

Assessment

During the assessment, Coinspect identified 0 high-risk issues, 0 medium-risk issues, and 10 low-risk issues. The issues identified during the assessment do not lead to the compilation of vulnerable code. Some of the low-risk issues were communicated to the Solidity team and fixed in newer releases, while some other issues remain unfixed.

Development teams of products which one or more of these issues may effect were notified on Friday, December 8th, 2017.

The audited project can be found in the ethereum/solidity Github repository.

Introduction

A white box security audit was conducted on the Solidity Compiler in order to detect detect compiler f...

This content is synced from the rightful owners. Copyright on text and images belong to the original source. -- This article was first published on: Stories by Augur on Medium

Tagged on: