Security

Open-sourcing Agreement

Themis is an open-source protocol that uses the SPDX-License. All code involved in multi-signature management, contract management, and part of the design of the main funding operations is open-source. The code is audited for security.
You can browse the publicly available code on our GitHub.

Code Security Audit Report

Description
Auditor
Audit type
Date
Themis Protocol V1.04
Smart contract
Dec. 2021

Risk Consideration

Change of contractual address

When the contract address of the protocol disclosure is changed, it is possible that the contents of the protocol have been modified. These modifications may have also been generated through governance. Modified code that does not correspond to an audit report is a risk.

Change of contract Owner(s)

A change in contract owner may mean that the private key in charge of the asset is no longer secure.

Hacking

The contract is set up to call a whitelist, which to a certain extent avoids flash loan attacks, scripts, and other attacks. However, If the flash loan partnerships' contract has been attacked, it will cause a limit loss depending on the authority of the governance.