Audits & Bug Bounties

Independent Security Audits

Before mainnet deployment, the entire suite of contracts will undergo review by an independent third-party security firm specializing in decentralized finance and cryptoeconomic systems. The full report will be published publicly here upon completion, ensuring that every community member can review both the findings and the remediation steps taken. [Link to Audit Report will be placed here once available]

Permanent Bug Bounty Program

To strengthen defense through collective intelligence, a permanent bug bounty program has been allocated 2% of total token supply (17,777,777 AEC). Rewards are based on severity using standard frameworks such as CVSS:

• Critical: loss of user funds, protocol insolvency → maximum rewards

• High: major disruptions or imbalances → substantial rewards

• Medium: economic exploits, optimization issues → moderate rewards

• Low: informational findings, suggestions → small rewards

The program will cover all deployed contracts on Base mainnet and will be hosted on a recognized vulnerability disclosure platform. Details—including scope, rewards, and disclosure process—will be published at launch.

Open-Source Verification

Every contract, test suite, and supporting documentation is fully open-source and permanently available on GitHub. This ensures that security is not limited to third-party reviews or bounty hunters—any community member can inspect, verify, and even replicate the logic themselves. Trust is replaced with verifiability.

Outcome: Collective Security

By combining independent audits, continuous bounty incentives, and radical transparency through open-source access, the protocol’s security becomes a collective responsibility.

In summary:

• Transparent audits before launch

• Permanent bounty program with meaningful incentives

• Full open-source for community verification

Secure by design. Verified by all.