Project Information
CATEGORY
Bridge
NETWORK
EVM
WEBSITE
https://www.inceptionlrt.com/
DESCRIPTION
From April. 2, 2024 to April. 4, 2024, Inception engaged Veridise to review the security of their Bridge contracts. Specifically, the review covered the bridge contract which handles the minting and burning of tokens during cross-chain transfers. Compared to the previous version, which Veridise has audited before, the new version prevents the possibility of users making more than one deposit per transaction, includes short-term and long-term rate limits on the amount of tokens burned and minted, as well as performing minor refactoring to the previous codebase such as changing function names. Veridise conducted the assessment over 6 person-days, with 2 engineers reviewing code over 3 days. The auditing strategy involved a tool-assisted analysis of the source code performed by Veridise engineers as well as extensive manual auditing.
Audit Report
SCOPE
The scope of this audit was limited to the contracts of the inception-bridge repository provided by the Bridge developers. Specifically, the Veridise auditors reviewed the following contracts:
- contracts/bridge/InceptionBridge.sol
- contracts/bridge/InceptionBridgeStorage.sol
It is important to note that the following files, while they affect the in-scope code, were not reviewed and are assumed to not contain any issues:
- contracts/lib/CallDataRLPReader.sol
- contracts/lib/EthereumVerifier.sol
- contracts/lib/ProofParser.sol
- contracts/lib/Utils.sol