Omniscia Steer Protocol Audit

Base Liquidity Vaults Security Audit

Audit Report Revisions

Commit HashDateAudit Report Hash
c84b132559November 10th 2025c708ddd1ad
286c095a9fNovember 27th 2025707f89a9d1

Audit Overview

We were tasked with performing an audit of the Steer Protocol codebase and in particular their Coinbase Verified Vault implementation.

Over the course of the audit, we identified an issue around tick calculations in the LiquidityManagerHelper as well as a potential misapplication of the Coinbase Verified authorization list in the LiquidityManagerVault.

We advise the Steer Protocol team to closely evaluate all minor-and-above findings identified in the report and promptly remediate them as well as consider all optimizational exhibits identified in the report.

Post-Audit Conclusion

The Steer Protocol team iterated through all findings within the report and provided us with a revised commit hash to evaluate all exhibits on.

We evaluated all alleviations performed by Steer Protocol and have confirmed that all exhibits have either been adequately alleviated or safely acknowledged.

We consider all outputs of the audit report properly consumed by the Steer Protocol team with no outstanding remediative actions remaining.

Audit Synopsis

SeverityIdentifiedAlleviatedPartially AlleviatedAcknowledged
0000
2101
0000
2200
0000

During the audit, we filtered and validated a total of 0 findings utilizing static analysis tools as well as identified a total of 4 findings during the manual review of the codebase. We strongly recommend that any minor severity or higher findings are dealt with promptly prior to the project's launch as they can introduce potential misbehaviours of the system as well as exploits.

Total Alleviations

The list below covers each segment of the audit in depth and links to the respective chapter of the report: