Welcome to the DeFi Saver knowledge base.

Is DeFi Saver safe to use?

Essential security and safety information regarding DeFi Saver.
Written by Nikola Jankovic
Updated 3 months ago

All of the actions performed using DeFi Saver are done in a trustless manner using logic stored in DeFi Saver’s smart contracts.

The source code of DeFi Saver smart contracts is publicly available in the DeFi Saver smart contracts Github repository.

Audits

DeFi Saver Automation has been audited in February 2021 by Dedaub and you can find our brief summary post here, as well as their full report here.

Smart contracts powering the new DeFi Saver architecture and the Recipe Creator have been audited by ConsenSys Diligence and Dedaub. You can find more info in one of our blog posts, as well as both of the reports here.

We want to outline the importance of external audits and plan to have all future releases and integrations audited before they are deployed in production.

Insurance

We are currently in talks with Nexus Mutual in regards to adding cover options specifically for using DeFi Saver.

We aim to have the option of acquiring Nexus Mutual cover for (and within) DeFi Saver available as soon as possible.

Additionally, we will also be looking at other insurance options that we can include and offer to our users.

Security issues

As of January 2020, there have been two security incidents at DeFi Saver.

  1. Exchange vulnerability discovered in June 2020, affecting users of our separate Exchange users from early 2020 until that point.
    No funds were lost or stolen. No other parts of the app were affected. More info can be found here.
  2. Compound import (migrate) contract vulnerability discovered in January 2021, affecting users that specifically used the import (migrate) option for their Compound position.
    No funds were lost or stolen. No other parts of the app were affected. More info can be found here.

Final notes

Although security is our topmost priority, we suggest that users always consider the possibility of potential smart contract risk, given how young the decentralized finance ecosystem is and how connected multiple protocols and numerous smart contracts are.

Did this answer your question?