Back to Overview

Sky DSS Exec Lib

download report
Quotation mark icon

ChainSecurity has been an invaluable partner throughout years of high-stakes product launches. We prize them for their proactivity, consistency & flexibility—we’re looking forward to continuing the partnership!

Deniz Yilmaz
Tech Lead (Sky)
external-link


Summary

Individual spells built using this framework must be reviewed separately; the usage and combinations of DssExecLib functions and the parameter selection when calling these functions are out of scope for this review.

The most critical subjects covered in our audit are functional correctness, NatSpec documentation and operational usability. Several observations are highlighted as notes or informational issues in this report.

The general subjects covered are code quality, documentation, maintainability, and correctness of existing functionality. Note that we reviewed library completeness at a high level only, focusing primarily on verifying that existing functions work correctly. For detailed considerations regarding completeness, see Completeness of Functionality.

In summary, we find that the codebase provides a high level of security.

It is important to note that security audits are time-boxed and cannot uncover all vulnerabilities. They complement but don't replace other vital measures to secure a project.

About Sky DSS Exec Lib

Sky offers DSS Exec Lib, a structured framework for executing governance spells in the Sky Protocol. The library standardizes how spells are defined, deployed and executed while providing a set of functions for managing system parameters, collateral and governance.