Documentation · Audit

Audit packet

Six documents that give an auditor everything they need to start reviewing on day one. The audit engagement itself is pending.

Packet shippedAudit engagement pending

Scope

audit/01-scope.md

Contracts in scope, out-of-scope items, deployment surface, threat actors.

Threat model

audit/02-threat-model.md

Asset map, trust boundaries, oracle assumptions, ownership topology.

Contract reference

audit/03-contracts.md

Per-contract narrative: invariants, state transitions, access control.

Test catalog

audit/04-tests.md

176 / 176 Foundry tests with case-by-case description and coverage notes.

Known limitations

audit/05-limitations.md

Honest list of design trade-offs and accepted risks.

Remediation index

audit/06-remediation.md

Findings tracker the auditor populates; BOLT's response track lives here.

Solidity

0.8.24

Contracts

Tests

176 / 176

The audit packet lives under audit/ in the repository. Engagement with a third-party auditor is on the partnership track described under /partnership/.