Kiln actively monitors all deployed smart contracts for suspicious activity and promptly responds to incidents.
Integrators have the option to hold the PAUSER role. Kiln continues monitoring all contracts but collaborates with integrator security teams for investigations and remediation, ensuring robust security measures are in place.
Integrators have the option to delegate the PAUSER role to Kiln. In this scenario, Kiln can pause interactions on the contract, while still following the collaborative process with integrator security teams. Kiln can respond faster to security incidents and pause contracts, making it a preferred choice for some integrators.
Kiln aims to provide a secured and enhanced experience of DeFi through the Kiln DeFi smart contracts.
Kiln DeFi products have been audited multiple time by various security firms and are under exhaustive monitoring and security practices to limit security risks as much as possible.
Security firm | Audit link | Date |
---|---|---|
Immunefi
A $500,000 max bounty program is live since September 9th 2024. All bug reports must come with a working PoC impacting asset listed in the "Assets in Scope" section of the program which only addresses smart contracts.
For any findings you can also directly contact security@kiln.fi.
February 2024
March 2024
It is important to acknowledge the inherent risk that the Kiln smart contracts may contain vulnerabilities or bugs.
Our smart contracts have undergone comprehensive audits conducted by industry leaders such as Spearbit and Quantstamp. Access reports and read more about our security practices here and here.
Ethereum and other supported EVM chains, are rapidly evolving technologies developed by decentralized collectives, operating independently of any central authority such as Kiln. It is important to note that, due to their nascent stage, they may contain potential errors or vulnerabilities. Consequently, these vulnerabilities could pose fund loss issue to the whole users of their networks.
Each supported DeFi protocol of the Kiln DeFi product are developed and maintained independently to Kiln. They may contain potential errors or vulnerabilities which could impact user funds. It is important to highlight the risk of each protocol to the end users so they can take proper informed decisions.
DeFi protocols rewards rate, especially for lending supplying and liquidity provisioning, is highly dependent of the protocol liquidity and usage (for example the fewer the borrowing demand the less the supply rewards rate), and may present a lot of variance over time. This is independent from Kiln or the protocol itself and is purely do to market conditions and usage. Users of Kiln DeFi might see their rewards increase in high volatility market phases and diminish when the volatility get lowers without any possible guarantee.
Smart Contract | Link |
---|---|
Smart Contract | Link |
---|---|
Smart Contract | Link |
---|---|
Vault Implementation
VaultUpgradeableBeacon
ConnectorRegistry
VaultFactory
AaveV3Connector
CompoundV3Connector
CompoundV3MarketRegistry
SDAIConnector
Proxy (Bitcoin.com Spark DAI vault)
Vault Implementation
VaultUpgradeableBeacon
ConnectorRegistry
VaultFactory
AaveV3Connector
Proxy (Cool Wallet AaveV3 USDT)
Vault Implementation
VaultUpgradeableBeacon
ConnectorRegistry
VaultFactory
AaveV3Connector
CompoundV3Connector
CompoundV3MarketRegistry
Proxy (Bitnovo Compound v3 USDC)
Vault Implementation
VaultUpgradeableBeacon
ConnectorRegistry
VaultFactory
AaveV3Connector
Proxy (Cool Wallet AaveV3 USDT)
Vault Implementation
VaultUpgradeableBeacon
ConnectorRegistry
VaultFactory
AaveV3Connector
Proxy (Dakota AAVE v3 USDC)