Summary
The most critical subjects covered in our audit are the trust boundaries of each role, how COMP moves between the different contracts of the system and whether it can be stolen. Only minor issues have been found. Security regarding all the aforementioned subjects is high.
The general subjects covered are gas efficiency of the implementation, the documentation and the specification. Security regarding all the aforementioned subjects is high.
In summary, we find that the codebase provides a high level of security.
It is important to note that security audits are time-boxed and cannot uncover all vulnerabilities. They complement but don't replace other vital measures to secure a project.
About Franchiser V2
Compound implements the second version of Franchiser which allows the coordinator to reassign the COMP granted to franchiser pool without the need for a governance proposal. Moreover, it introduces a guardian who can freeze a franchiser pool and recall its assets in an emergency.