OpenOcean takes a security-first approach to protect users from security vulnerabilities and other incidents. Apart from our internal security auditing, we frequently work with external partners to pass the most updated and leading industry standards. We passed security auditing on all OpenOcean public contracts from Certik on March 9, 2021, and SlowMist on February 18, 2021, without any issues.

Auditing

CertiK leads blockchain security by pioneering the use of cutting-edge formal verification technology on smart contracts and blockchains. Unlike traditional security audits, formal verification mathematically proves program correctness and hacker resistance.

CertiK’s March 9, 2021, audit report can be accessed here:

OpenOceanExchange CertiK Security Assessment

SlowMist Technology is a company focused on blockchain ecosystem security. The company is already a top international blockchain security company, serving many global well-known projects through security solutions that integrate threat discovery and defense while tailoring to local conditions.

SlowMist Technology March 9, 2021 audit report on OpenOcean can be accessed here:

Binance Smart Chain report: Smart Contract Security Audit Report - OpenOcean(BSC) Ethereum report: Smart Contract Security Audit Report - OpenOcean(ETH) TRON report: Smart Contract Security Audit Report - OpenOcean(TRON)

Audit reports can also be simply found on SlowMist's website by searching "OpenOcean".

Bug/issue submission

You can report OpenOcean bugs and issues by sending an email to security@openocean.finance.

Please include:

1. Bug/issue title: Provide a title in the subject field that concisely summarizes the bug/issue

2. Description: Include more detailed information about the issue, including but not limited to steps to reproduce the bug, any relevant details needed to help identify and resolve the problem, etc.

3. Attachments: If helpful, please include supporting attachments that might help to identify or resolve the issue (e.g. screenshot, link to video)

4. Your name and email

5. Wallet address (please specify the network and address)