Peridot Logo
Peridot

Security at CrossLend

Our comprehensive approach to securing your assets and the CrossLend protocol.

View Security Audits

Our Security Approach

At CrossLend, security is our highest priority. We employ a multi-layered approach to protect user assets and ensure the integrity of our protocol across all supported blockchains. Our security strategy includes:

Rigorous Code Audits

All smart contracts undergo multiple independent security audits by leading firms in the industry before deployment.

Formal Verification

Critical components of our protocol are formally verified using mathematical proofs to ensure they behave exactly as intended under all circumstances.

Economic Security Design

Our protocol incorporates robust economic security mechanisms, including conservative collateral factors and efficient liquidation processes to protect against market volatility.

Bug Bounty Program

We maintain an active bug bounty program with substantial rewards to incentivize responsible disclosure of potential vulnerabilities.

Cross-Chain Security

Our cross-chain architecture includes specialized security measures to protect against bridge-specific vulnerabilities and ensure consistent security across all supported blockchains.

Security Audits

Our smart contracts have been audited by leading security firms in the blockchain industry.

Trail of Bits
Trail of Bits
Completed
Date: March 2025
Scope: Core Protocol, Cross-Chain Messaging
View Report
OpenZeppelin
OpenZeppelin
Completed
Date: February 2025
Scope: Smart Contracts, Governance
View Report
ChainSecurity
ChainSecurity
Completed
Date: January 2025
Scope: Liquidation Mechanism, Oracle Integration
View Report
Certik
Certik
Completed
Date: December 2024
Scope: Full Protocol Review
View Report
View All Audit Reports

Key Security Features

Secure Cross-Chain Messaging
Our cross-chain architecture uses multiple independent validators and message verification to ensure secure asset transfers between blockchains.
Risk Parameters
Conservative collateral factors and liquidation thresholds protect the protocol from market volatility and black swan events.
Transparent Oracles
Our price oracles aggregate data from multiple sources with circuit breakers to prevent manipulation and ensure accurate asset pricing.
Timelock Mechanisms
All protocol upgrades go through a timelock period, allowing users to review changes and exit if necessary before implementation.
Comprehensive Testing
Extensive unit tests, integration tests, and simulation testing ensure protocol reliability under various market conditions.
Bug Bounty Program
Our bug bounty program offers rewards up to $250,000 for critical vulnerabilities, encouraging responsible disclosure.

Bug Bounty Program

Help us improve the security of CrossLend by finding and reporting vulnerabilities.

Reward Tiers

  • Critical:
    Up to $250,000
  • High:
    Up to $100,000
  • Medium:
    Up to $50,000
  • Low:
    Up to $10,000

Scope

  • Smart contract vulnerabilities
  • Cross-chain messaging exploits
  • Oracle manipulation attacks
  • Economic attacks on the protocol
Submit a Vulnerability

Security FAQ

How does CrossLend secure cross-chain transactions?

CrossLend uses a combination of trusted relayers, multi-signature validation, and on-chain verification to secure cross-chain messages. Each cross-chain transaction requires confirmation from multiple independent validators before execution, and includes cryptographic proofs that can be verified on-chain.

What happens if a blockchain CrossLend supports is attacked?

CrossLend implements chain-specific circuit breakers that automatically pause operations on a particular chain if abnormal activity is detected. This isolation mechanism prevents contagion across the protocol while allowing operations to continue normally on unaffected chains.

How does CrossLend protect against oracle manipulation?

Our price oracle system aggregates data from multiple independent sources and implements time-weighted average prices (TWAP) to resist manipulation. Additionally, we employ deviation thresholds that trigger alerts and potentially pause affected markets if prices move beyond expected parameters.

What security measures protect user funds?

CrossLend is non-custodial, meaning users always maintain control of their assets through smart contracts. The protocol's conservative risk parameters, including collateral factors and liquidation thresholds, are designed to protect the solvency of the system even during extreme market conditions.

Contact Our Security Team

Have security concerns or questions? Our security team is available to assist you.

[email protected]