Audits

The OmniBridge and xDai Bridge have undergone multiple independent security audits and assessments. We have engaged in the auditing process after introducing major functionality, and have acknowledged and/or fixed all issues found during these audits. Audit results are presented starting with the most recent.

xDAI bridge upgrade Audit by Omega and ChainSafe

Omega

Completed: August 31, 2023
Conclusion: 2 medium issues, 5 low risk issues, 3 info issues. All issues has been resolved.
Contracts: https://github.com/gnosischain/tokenbridge-contracts/tree/xdaibridge-upgrade-sdai
Audit Report: Omega Gnosis Bridge Final Audit Report

ChainSafe

Completed: August 31, 2023
Conclusion: 2 minor issues, 2 optimizational issues.
Contracts: https://github.com/gnosischain/tokenbridge-contracts/tree/xdaibridge-upgrade-sdai
Audit Report: ChainSafe Audit Report

Reference: Savings xDAI

OmniBridge v6.0 Smart Contracts Audit by ChainSecurity

Completed: September 7, 2021
Conclusion: 0 Critical Risk Issues, 1 High Risk Issue Mitigated, 1 Medium Issue Mitigated, 2 Corrected, 13 Low Risk Issues all Acknowledged and/or Corrected.
Contracts: https://github.com/poanetwork/omnibridge
Audit Report: ChainSecurity v6.0 Audit

OmniBridge Audit by ChainSecurity

Completed: April 27, 2021
Conclusion: 0 Critical or High Risk Issues, 2 Medium Issues Accepted, 3 Low Risk Issues Accepted/Acknowledged
Contracts: https://github.com/poanetwork/omnibridge
Audit Report: Chainsecurity OmniBridge Audit

TokenBridge Audit by Quantstamp (covers OmniBridge)

Completed: November 6, 2020
Conclusion: No high and medium risk issues found, all low risk issues addressed.
Contracts: Revised in version 5.5.0-rc0 to address audit. https://github.com/poanetwork/tokenbridge-contracts/releases/tag/5.5.0-rc0
Audit Report: TokenBridge Audit by Quantstamp - OmniBridge

TokenBridge Audit by Quantstamp (covers AMB bridge)

Completed: January 8, 2020
Conclusion: : All high risk issues resolved and low risk issues addressed. More information available in this post.
Contracts: Revised in version 3.3.0 to address audit. https://github.com/poanetwork/tokenbridge-contracts/releases/tag/3.3.0
Audit Report: TokenBridge Audit by Quantstamp - AMB Bridge

Smart Contracts Security Analysis by SmartDec

Completed: July 2019
Conclusion: All of the issues were addressed, some of them fixed in the latest version of the code.
Contracts: Revised in version 2.3.3 to address audit. https://github.com/poanetwork/tokenbridge-contracts/releases/tag/2.3.3
Audit Report: SmartDec Security Audit

Initial TokenBridge Audit by Peppersec:

Completed: October 2018
Conclusion: Rated the overall security level of the system as “High”.
Contracts: Updated to version 2.0.0 to address audit. https://github.com/poanetwork/tokenbridge-contracts/releases/tag/2.0.0
Audit Report: Peppersec Initial TokenBridge Audit

xDAI bridge upgrade Audit by Omega and ChainSafe​

Omega​

ChainSafe​

OmniBridge v6.0 Smart Contracts Audit by ChainSecurity​

OmniBridge Audit by ChainSecurity​

TokenBridge Audit by Quantstamp (covers OmniBridge)​

TokenBridge Audit by Quantstamp (covers AMB bridge)​

Smart Contracts Security Analysis by SmartDec​

Initial TokenBridge Audit by Peppersec:​