Omniscia DAFI Protocol Audit

Crosschain Bridge Security Audit

We were tasked with performing an audit of the DAFI Protocol and in particular their cross-chain token bridge on ETH and BSC.

Over the course of the audit we identified a significant vulnerability in the system that would cause incompatibility with major tokens and we advise the DAFI Protocol team to alleviate it.

Additionally, we have noted several gas optimizations that can be applied to significantly optimize the gas cost of the codebase that we advise the DAFI Protocol team to consider and apply along with remediations to the findings identified within the report.

Files in Scope	Repository	Commit(s)
BscBridgeOptimized.sol (BBO)	dBridge	76da70bcdf, 6c08853501
DAFITOKENETH.sol (DAF)	dBridge	76da70bcdf, 6c08853501
DAFITokenBSC.sol (DAI)	dBridge	76da70bcdf, 6c08853501
EthBridgeOptimized.sol (EBO)	dBridge	76da70bcdf, 6c08853501
basictoken.sol (BAS)	dBridge	76da70bcdf, 6c08853501
erc20.sol (ERC)	dBridge	76da70bcdf, 6c08853501
erc20basic.sol (ER2)	dBridge	76da70bcdf, 6c08853501
ownable.sol (OWN)	dBridge	76da70bcdf, 6c08853501
standardtoken.sol (STA)	dBridge	76da70bcdf, 6c08853501

During the audit, we filtered and validated a total of 4 findings utilizing static analysis tools as well as identified a total of 27 findings during the manual review of the codebase. We strongly recommend that any minor severity or higher findings are dealt with promptly prior to the project's launch as they introduce potential misbehaviours of the system as well as exploits.

The list below covers each segment of the audit in depth and links to the respective chapter of the report:

Crosschain Bridge Security Audit

Compilation