search

Audits & Bug Bounties

Kiln aims to provide a secured and enhanced experience of staking through the different Kiln On-Chain smart contract platforms.

On-Chain products have been audited multiple time by various security firms and are under exhaustive monitoring and security practices to limit security risks as much as possible.

hashtag
Kiln Onchain Dedicated Staking v1

hashtag
Resources

Resource
Link

Source Code (Smart Contracts only)

https://github.com/kilnfi/staking-contracts/tree/masterarrow-up-right

Ledger Live mainnet

https://etherscan.io/address/0x1e68238ce926dec62b3fbc99ab06eb1d85ce0270arrow-up-right

Ledger Live testnet

https://goerli.etherscan.io/address/0xe8Ff2a04837aac535199eEcB5ecE52b2735b3543arrow-up-right

Other mainnet and testnet deployments

https://github.com/kilnfi/staking-contracts/tree/master/deploymentsarrow-up-right

hashtag
Audits

Security firm
Audit link
Scope
Date

Ledger Donjonarrow-up-right

not available

Smart Contractsarrow-up-right

July 21st 2022 March 15th 2023

Halbornarrow-up-right

Reportarrow-up-right

Smart Contractsarrow-up-right

July 22nd 2022

Spearbitarrow-up-right

Reportarrow-up-right

Smart Contractsarrow-up-right

July 27th 2023

Ledger Donjonarrow-up-right

not available

Ledger Nano Pluginarrow-up-right

July 21st 2022 March 15th 2023

hashtag
Bug Bounty

A $1,000,000 max bounty program is live since 21 August 2023. All bug reports must come with a working PoC impacting asset listed in the "Assets in Scope" section of the program which only addresses smart contracts.

hashtag
Kiln Onchain Platform ("v2")

Security firm
Audit link
Date

Spearbitarrow-up-right

Audit report is available upon request herearrow-up-right.

July 27th 2023

hashtag
Kiln Operator Infrastructure

Kiln is SOC 2 Type I and SOC 2 Type II certified and has been undergoing multiple penetration testings and audits from third parties.

Certifications and audits reports are available upon request herearrow-up-right.

hashtag
Bug Bounty

A $500,000 max bounty program is live since September 9th 2024. All bug reports must come with a working PoC impacting asset listed in the "Assets in Scope" section of the program which only addresses smart contracts.

PreviousStaking RisksNextBusiness Continuity

Last updated

Was this helpful?