Security
SLOHM's security comes from multiple layers: Bitcoin's consensus, OPNet's execution, and careful contract design.
Trust Assumptions
| Component | Trust Level | Notes |
|---|---|---|
| Bitcoin Network | Trustless | 21M cap, PoW consensus |
| OPNet Execution | Trustless | WASM deterministic execution |
| Smart Contracts | Verify | Open source, audited |
| BTC Multisig | 4-of-7 | Social trust in signers |
| Price Oracles | MotoSwap | On-chain, manipulation-resistant |
Contract Security
SafeMath
All arithmetic uses SafeMath to prevent overflow/underflow:
// Required
const result = SafeMath.add(a, b); // Reverts on overflow
Access Control
Critical functions are protected:
onlyMultisig— Treasury parameters, emergency functionsonlyAuthorized— Minting operationsonlyStaking— sSLOHM rebase
Bounded Loops
No unbounded iterations:
// Required
for (let i = 0; i < MAX_ITERATIONS; i++) { ... }
Attack Vectors & Mitigations
| Attack | Mitigation |
|---|---|
| Price Manipulation | MotoSwap pools with deep liquidity |
| Flash Loans | Bitcoin's 10-min blocks make impractical |
| Governance Attacks | 4-of-7 multisig requires social consensus |
| Reentrancy | Checks-effects-interactions pattern |
Audit Status
Coming Soon
Audit reports will be published before mainnet launch.
Bug Bounty
Coming Soon
Bug bounty details will be announced before mainnet launch.
Best Practices for Users
- Verify contracts - Check addresses before interacting
- Use hardware wallets - Never expose private keys
- Start small - Test with small amounts first
- Understand vesting - Bonds lock for ~5 days