Skip to main content

Infrastructure Security

Bungee Contract Security

We borrow from our extensive experience in the space, learn from previous hacks & consider every smallest detail to ensure there is no room for exploit.

Some important points to note:

  • Our contracts never actually hold funds, they are only responsible for routing user funds. So the surface area of exploits is extremely small
  • Our contracts have been audited. Moreover, additional audits have been scheduled with top audit firms
  • Bungee contracts are open source & verified on Etherscan. See contract addresses.
  • No proxies or upgradable contracts. Every bridge is a module which points to the bridge contract. We can never edit this module, or the address this module points to. Owner contract can only ‘rescueFunds’ or ‘pause’ the contracts
  • No Infinite Approvals on Bungee & Widget: Learning from instances where hackers drained user funds because of infinite approvals, we ensure we don’t take infinite approvals on our app/widget