Kodiak Finance
  • OVERVIEW
    • 🐻‍❄️Introducing Kodiak
    • 🐻Kodiak x Berachain
    • ✉️Contact Us
    • 🍯Kodiak Contracts
  • 🅱️Kodiak-Boyco
  • PROTOCOL
    • 🔃DEX
      • Swaps
      • Liquidity Provision
      • Trading Fees
    • 🏝️Islands
      • Island Liquidity Provision
      • Sweetened Islands
      • Island Mechanics
        • Auto-BGT
        • Real-time Security
        • Rebalancing
        • Strategies
    • 🐼Panda Factory
    • 💱Baults
      • Bault analytics
  • 🪙Tokenomics
    • Kodiak Pre-TGE Rewards
  • 🧠User Guide
    • Launch a Token Launch on Panda Factory
    • Trading on Panda Factory
    • Swap
    • Create a V2 Position
    • Create a V3 Position
    • Add/Stake Islands Liquidity
    • Baults (Auto-Compound)
    • Migrating to a Reward Vault
    • Deploying new Permissonless Islands
    • Deploying and Configuring a Kodiak Farm
    • Add your token
  • Add Your Project to the Ecosystem
  • 👨‍💻Developers
    • 🐼Panda
      • Technical Integration Guide
      • Subgraph
        • Entity Reference
        • Query Guide
        • Advanced Usage Guide
      • Smart Contract Reference
        • Panda Factory
        • Panda Pool
        • Panda Token
      • Api
    • Farms
      • Technical Integration Guide
      • Smart Contract Reference
    • 🌴Kodiak Islands
      • Technical Integration Guide
        • Understanding Token Deposit Ratio
      • Subgraph
        • Entity Reference
        • Query Guide
        • Advanced Usage Guide
      • Smart Contract Reference
        • Kodiak Island Factory
        • Kodiak Island
        • Kodiak Island Router
      • Api
    • 💱Compounding Baults
    • 💰Pricing with Subgraph
    • 💱Quotes
    • Backend
  • 🛡️SECURITY
    • 🔍Audits
    • Page
  • ℹ️Informational
    • 📜Terms of Use
    • 🔏Privacy Policy
    • TradingView Advanced License
Powered by GitBook
On this page
  1. SECURITY

Audits

PreviousBackendNextPage

Last updated 3 days ago

Kodiak has done 3 rounds of audits on the core protocols, as well as rounds of audits focused on different new products (Panda Factory, Bault, Meta-Aggregator, Fungible, etc). In all audits - all issues raised have been addressed and no critical issues were found.

Core Protocol

December 2024, 0xMacro: focused audit on Kodiak Islands and Farms

April 2024, 0xMacro: Dex Core and Periphery, Islands, Farms, Tokens

February 2024, Kalos: Dex Core and Periphery, Islands, Farms, Tokens

Panda Factory

October 2024, 0xMacro: Panda Factory

Bault

May 2025, AstraSec: Bault (auto-compounding vaults)

Meta-Aggregator, Fungible

May 2025, AstraSec: Meta-Aggregator, Fungible (NFT tokenization)

For technical reference, here is a brief technical overview of the various parts of the protocol:

  • Dex V2: Exact fork of Uniswap V2

  • Dex V3: Fork of Uniswap V3 with one small difference:

    • Modified feeProtocol to uint32 in slot0 (only relevant for integrators, not normal users)

  • Kodiak Island: "Modified from" Arrakis V1 vaults (ArrakisFinance/vault-v1-core). Key differences:

    • Vaults are non-upgradeable after deployment (vs upgradeable in original implementation)

    • Simplified rebalances to enable "permissionless" fixed vault creation with no ownership

    • For managed vaults, rebalancing can route through liquidity throughout Berachain

  • Kodiak Farm: "Modified from" Frax Communal Farm (FraxFinance/frax-solidity). Key differences:

    • Farms can be deployed permissionlessly via FarmFactory

  • Panda Factory: Fully built in-house, very loosely "inspired by" pump.fun on Solana

  • Bault: Fully built in-house, ERC-4626 compliant vaults that compound BGT with bounty mechanism

  • Meta-Aggregator: Fully built in-house, Dex router that can call aggregator APIs

  • Fungible: Fully built in-house, NFT tokenization product

🛡️
🔍
289KB
kodiak_A3_by_0xmacro.pdf
pdf
491KB
kodiak_A1_by_0xmacro.pdf
pdf
3MB
[KALOS] KODIAK Audit Report (ENG).pdf
pdf
636KB
kodiak_A2_by_0xmacro.pdf
pdf
773KB
AstraSec-AuditReport-Kodiak-Bault.pdf
pdf
1MB
AstraSec-AuditReport-Kodiak-DEX.pdf
pdf