Security
Built secure. Audited. Non-custodial.
Every design decision prioritizes the safety of user assets.
Non-custodial architecture
All user funds live in audited smart contracts on Arbitrum. The platform cannot access, move, or freeze individual user assets. Only a 2-of-3 admin multisig can pause contracts in an emergency — and even then, pause only halts new deposits and withdrawals; it cannot redirect funds.
Independent audits
Smart contracts are reviewed by ChainSec and Trail of Bits before deployment. Full PDF reports are published publicly. Remediation status for every finding is tracked and disclosed.
2-of-3 admin multisig
All privileged operations require 2 of 3 multisig signatures. Signers are geographically distributed. Every multisig transaction is verifiable on Arbiscan.
Oracle redundancy
Chainlink primary, CoinGecko fallback. If both sources diverge beyond a threshold, operations halt. No single oracle failure can trigger incorrect liquidations.
Partial liquidation
At 85% LTV, only 50% of collateral is liquidated. The remaining 50% stays locked. Warnings fire at 80% LTV via in-app, email, and optional SMS.
Withdrawal protections
Standard withdrawals batch every 24 hours. Instant withdrawals available (fee varies by tier). Withdrawals above $50,000 undergo manual review. 48-hour security hold for new addresses.
Transparency
Incident history
No security incidents to date.
If an incident ever occurs, it will be disclosed here with full details.
Bug Bounty
Found a vulnerability?
Responsible disclosure reports are rewarded. Critical findings up to $50,000.
Security is a feature, not a footnote.
Read our audit reports, verify our contracts, or submit a vulnerability report.