Decentralized Foundation (DEFO) is a DeFi-As-A-Service protocol on the AVAX network that aims to leverage the world of DeFi to generate funds while also helping the most in need through the charity donations.
The Defo Contracts have functions like burn, mint, initialize, fallback, receive, isPair, RedeemMint, MintGem, BoostGem, RedeemMint, transferLog, Compound, unstakeTokens, etc.
The Defo Contracts inherit the Ownable, ERC20, ERC20Burnable, AccessControlUpgradeable, OwnableUpgradeable, Initializable, IERC20, SafeERC20, IERC721Enumerable, SafeMath, Address, Context, Strings, console standard smart contracts from the OpenZeppelin library.
These OpenZeppelin contracts are considered community-audited and time-tested, and hence are not part of the audit scope.
Executive Audit Summery
According to the standard audit assessment, Customer`s solidity smart contracts are “ Secured”. Also, these contracts do contain owner control, which does not make them fully decentralized.
We used various tools like Slither, Solhint and Remix IDE. At the same time this finding is based on critical analysis of the manual audit.
We found 0 critical, 0 high, 2 medium and 2 low and some very low level issues.