We regularly publish short recaps on a decentralized audit in which we participated. This time, we cover the audit of GFX Labs. brainbot is a web3 service provider, offering consulting and development services as well as smart contract audits. To gain more experience in auditing, our security researchers regularly participate in decentralized audits. In this series, we will publish recaps of audits in which we participated in order to provide some insight into the functioning, the smart contract architecture and our findings for the respective protocols. How it works GFX Labs’ Uniswap V3 product presents a decentralized limit order service that capitalizes on Uniswap V3’s concentrated liquidity mechanism. This unique feature of Uniswap V3 can be leveraged to function as a limit order trading platform against the liquidity pool, providing that concentrated liquidity is committed to a future, densely populated tick. Once this tick is reached, the pool instantly swaps one asset for another, allowing users to claim directly from the pool. However, there’s a caveat: if users do not claim their position in time, it will revert back to a single asset. To counter this issue, GFX Labs utilizes the Chainlink Keepers feature. These Keepers monitor the ticks, and when any trade tick is satisfied in the V3 pool, they execute transactions ensuring all trades are fulfilled at the correct times. Consequently, users can confidently claim their tokens from the GFX Labs contract.

We regularly publish short recaps on a decentralized audit in which we participated. This time, we cover the audit of Teller. brainbot is a web3 service provider, offering consulting and development services as well as smart contract audits. To gain more experience in auditing, our security researchers regularly participate in decentralized audits. In this series, we will publish recaps of audits in which we participated in order to provide some insight into the functioning, the smart contract architecture and our findings for the respective protocols. Teller V2 The goal of this content is to provide an insight of TellerV2 as audited on Sherlock as well as some interesting findings on the protocol. TellerV2 is an open order-book lending / borrowing protocol. Market owners deploy new markets specifying parameters for the borrowers and lenders of the new market. Different markets should be used for different type of credits (e.g. consumer credits, crypto investment loans, etc …). Loans can be collateralized or not. Only ERC20 tokens can be used as loan principal. However, ERC20, ERC721, and ERC1155 tokens can be used as collateral. When a borrower does not repay their loan in time, they can be liquidated by either the borrower who will forfeit its loan and receive the collateral or by a liquidator who will repay the loan in the name of the borrower to receive the collateral in place of the lender.

We regularly publish short recaps on a decentralized audit in which we participated. This time, we cover the audit of Taurus Protocol. brainbot is a web3 service provider, offering consulting and development services as well as smart contract audits. To gain more experience in auditing, our security researchers regularly participate in decentralized audits. In this series, we will publish recaps of audits in which we participated in order to provide some insight into the functioning, the smart contract architecture and our findings for the respective protocols. Taurus Protocol The Taurus protocol offers liquidity on interest-bearing tokens. Depositors can mint Taurus' stablecoin ($TAU) by collateralizing their tokens. Taurus is an over-collateralized stablecoin protocol that allows users to borrow $TAU against the value of the collateral deposited. The collateral consists of interest-bearing tokens from perpetual swap platforms built on Arbitrum. Who is the team behind it? Unknown at this stage – Taurus Protocol is currently working in "stealth mode".

We regularly publish short recaps on a decentralized audit in which we participated. This time, we cover the audit of Olympus DAO's "Single Sided Liquidity Vaults". brainbot is a web3 service provider, offering consulting and development services as well as smart contract audits. To gain more experience in auditing, our security researchers regularly participate in decentralized audits. In this series, we will publish recaps of audits in which we participated in order to provide some insight into the functioning, the smart contract architecture and our findings for the respective protocols. Olympus DAO The goal of this content is to give insight on the project and structure of the code as audited during the Sherlock contest of OlympusDAO, as well as a couple of interesting findings. OlympusDAO intends to create a non-pegged stable coin called OHM. In this audit, we were interested by what they called the SingleSidedLiquidityVault. The idea behind it is to create a vault bound to an AMM liquidity pool (e.g. Balancer), and let users deposit pair tokens (e.g. wstETH) into the vault. The vault will then mine OHM tokens matching the USD value of pair tokens deposited by the user and provide liquidity to the pool in a 50/50 OHM/pair token value split.

We regularly publish short recaps on a decentralized audit in which we participated. This time, we cover the audit of Blueberry Protocol, a DeFi yield farming protocol. brainbot is a web3 service provider, offering consulting and development services as well as smart contract audits. To gain more experience in auditing, our security researchers regularly participate in decentralized audits. In this series, we will publish recaps of audits in which we participated in order to provide some insight into the functioning, the smart contract architecture and our findings for the respective protocols. Blueberry Protocol Blueberry is a defi yield farming protocol. It allows users to deposit collateral into Banks and withdraw debt tokens from it to farm yield (e.g. on Ichi). The goal of this content is to give insight on the structure of the code as audited during the Sherlock contest, as well as a couple of interesting findings. Contracts structure BlueBerryBank.sol The main contract of the protocol is BlueBerryBank.sol, it allows the owner of the protocol to define which tokens can be lent / borrowed via addBank().