Difference between revisions of "TrueFi (TRU)"
m (1 revision imported) |
|||
Line 11: | Line 11: | ||
*Scored [https://docs.defisafety.com/master/truefi-v4-process-quality-review 84%] on [[DeFi Safety]] (2-11-2021): | *Scored [https://docs.defisafety.com/master/truefi-v4-process-quality-review 84%] on [[DeFi Safety]] (2-11-2021): | ||
''"Activity is over 10 internal transactions a day on contract [https://etherscan.io/address/0x0000000000013949f288172bd7e36837bddc7211/advanced#code Registry.sol]'' | ''"Activity is over 10 internal [[transactions]] a day on contract [https://etherscan.io/address/0x0000000000013949f288172bd7e36837bddc7211/advanced#code Registry.sol]'' | ||
As per TrueFi's GitHub repository, their smart contracts have a coverage of 82%. The coveralls test report is [https://coveralls.io/github/trusttoken/smart-contracts?branch=main available]. No evidence of formal verification. There is [https://github.com/trusttoken/smart-contracts/blob/main/deployments-ropsten.json evidence] of a stress testing environment. | As per TrueFi's [[GitHub]] repository, their smart [[contracts]] have a coverage of 82%. The coveralls test report is [https://coveralls.io/github/trusttoken/smart-contracts?branch=main available]. No evidence of formal verification. There is [https://github.com/trusttoken/smart-contracts/blob/main/deployments-ropsten.json evidence] of a stress testing environment. | ||
TrueFi has had multiple audits, [https://github.com/trusttoken/audits/tree/master/TrueFi found here]. Out of those, two of the ImmuneBytes audits were performed before the launch of v4 on August 18th 2021, and the third ImmuneBytes audit was performed post-launch. | TrueFi has had multiple audits, [https://github.com/trusttoken/audits/tree/master/TrueFi found here]. Out of those, two of the ImmuneBytes audits were performed before the launch of v4 on August 18th 2021, and the third ImmuneBytes audit was performed post-launch. | ||
Line 19: | Line 19: | ||
*Previously [https://defisafety.com/2021/02/04/truefi/ scored] a 73% (5-2-2021); | *Previously [https://defisafety.com/2021/02/04/truefi/ scored] a 73% (5-2-2021); | ||
''"Both of these audits are good clear audits which took place after [[contract]] deployment. For this reasons no corrections were discussed. What is disturbing is the count of high number of findings on a deployed contract. Normally the score for audits after deployment is 70%. In this case a score of 50% is given.'' ''[[Slowmist]] conducted an [https://github.com/trusttoken/audits/blob/master/TrueFi/truefi_audit_slowmist_november_21_2020.pdf audit] on November 11th (2 medium, lots Low)'' ''[[Jakub Wojciechowski|jakub wojciechowski]] did an [https://github.com/trusttoken/audits/blob/master/TrueFi/truefi_audit_jakub_wojciechowski_november_22_2020.pdf audit] on November 22nd (4 high and 15 medium)" '' | ''"Both of these audits are good clear audits which took place after [[contract]] deployment. For this reasons no corrections were discussed. What is disturbing is the count of high number of findings on a deployed contract. Normally the score for audits after deployment is 70%. In this [[case]] a score of 50% is given.'' ''[[Slowmist]] conducted an [https://github.com/trusttoken/audits/blob/master/TrueFi/truefi_audit_slowmist_november_21_2020.pdf audit] on November 11th (2 medium, lots Low)'' ''[[Jakub Wojciechowski|jakub wojciechowski]] did an [https://github.com/trusttoken/audits/blob/master/TrueFi/truefi_audit_jakub_wojciechowski_november_22_2020.pdf audit] on November 22nd (4 high and 15 medium)" '' | ||
With the [https://t.me/c/1453353094/2383 comment]: ''"Code and team is perfect, then just kinda average for the rest. They have an audit but it was after deployment and not the cleanest."'' | With the [https://t.me/c/1453353094/2383 comment]: ''"Code and team is perfect, then just kinda average for the rest. They have an audit but it was after deployment and not the cleanest."'' | ||
Line 29: | Line 29: | ||
* From [[DeFi Safety]] (2-11-2021): | * From [[DeFi Safety]] (2-11-2021): | ||
''"Governance access control information was found in their [[Github|GitHub]] [https://github.com/trusttoken/smart-contracts/tree/main/docs/governance repo], as well as in their [[Medium]] [https://blog.trusttoken.com/truefi-v2-improved-staking-liquid-exit-on-chain-governance-45f144b8ec01. blog].'' | ''"[[Governance]] access control information was found in their [[Github|GitHub]] [https://github.com/trusttoken/smart-contracts/tree/main/docs/governance repo], as well as in their [[Medium]] [https://blog.trusttoken.com/truefi-v2-improved-staking-liquid-exit-on-chain-governance-45f144b8ec01. blog].'' | ||
''a) All [[Smart Contract (SC)|contracts]] are clearly labelled as upgradeable (or not) -- 0% -- No contracts' upgrade status is explicitly mentioned.'' | ''a) All [[Smart Contract (SC)|contracts]] are clearly labelled as upgradeable (or not) -- 0% -- No contracts' upgrade [[status]] is explicitly mentioned.'' | ||
''b) The type of ownership is clearly indicated (OnlyOwner / [[TX MULTISIG|MultiSig]] / Defined Roles) -- 30% -- OnlyOwners and defined voting roles are clearly defined in the code and [https://github.com/trusttoken/smart-contracts/blob/main/docs/governance/common/ClaimableContract.md documentation].'' | ''b) The type of ownership is clearly indicated (OnlyOwner / [[TX MULTISIG|MultiSig]] / Defined Roles) -- 30% -- OnlyOwners and defined voting roles are clearly defined in the code and [https://github.com/trusttoken/smart-contracts/blob/main/docs/governance/common/ClaimableContract.md documentation].'' | ||
''c) The capabilities for change in the contracts are described -- 0% -- No capability for change is described for any of the smart contracts.'' | ''c) The capabilities for change in the contracts are described -- 0% -- No capability for change is described for any of the [[smart contracts]].'' | ||
''There is no documentation to be found on pause control. However, it can be found in their GitHub [https://github.com/trusttoken/smart-contracts/blob/main/docs/governance/Pauser.md repository] without proper documentation."'' | ''There is no documentation to be found on pause control. However, it can be found in their GitHub [https://github.com/trusttoken/smart-contracts/blob/main/docs/governance/Pauser.md repository] without proper documentation."'' | ||
Line 51: | Line 51: | ||
*[[Whitepaper]] can be found [https://blog.trusttoken.com/introducing-truefi-the-defi-protocol-for-uncollateralized-lending-9bfd6594a48 here]. | *[[Whitepaper]] can be found [https://blog.trusttoken.com/introducing-truefi-the-defi-protocol-for-uncollateralized-lending-9bfd6594a48 here]. | ||
*Code can be viewed [https://github.com/trusttoken/smart-contracts here]. TrustToken's [[Smart Contract (SC)|smart contracts]] have 15 branches and 1427 commits ([https://docs.defisafety.com/master/truefi-v4-process-quality-review 5-11-2021]). | *Code can be viewed [https://github.com/trusttoken/smart-contracts here]. [[TrustToken]]'s [[Smart Contract (SC)|smart contracts]] have 15 branches and 1427 commits ([https://docs.defisafety.com/master/truefi-v4-process-quality-review 5-11-2021]). | ||
*Built on: [[Ethereum]] | *Built on: [[Ethereum]] | ||
Line 84: | Line 84: | ||
===Funding=== | ===Funding=== | ||
===Partners=== | ===Partners=== | ||
* Partnered with [[Perpetual Protocol (PERP)|Perp Protocol]] ''"to launch a first-of-a-kind lending portfolio of $5M to facilitate deeper [[liquidity]] on [[Perpetual Protocol]] v2!"'' (9-2-2022). | |||
==(:== | ==(:== | ||
Knowledge empowers us all and will help us get closer to the [[decentralised]] world we all want to live in! | Knowledge empowers us all and will help us get closer to the [[decentralised]] world we all want to live in! | ||
Line 89: | Line 92: | ||
Making these free wiki pages is fun but takes a lot of effort and time. | Making these free wiki pages is fun but takes a lot of effort and time. | ||
If you have enjoyed reading, tips are appreciated :) This will help us to keep expanding this archive of information. | If you have enjoyed reading, tips are appreciated :) This will help us to [[keep]] expanding this archive of information. | ||
[[ETH]] tip [[address]]: 0x83460bE5F218b1520B69D702cE60A1DE37dD8E31 | [[ETH]] tip [[address]]: 0x83460bE5F218b1520B69D702cE60A1DE37dD8E31 | ||
[[Category:Coins/Tokens]] | [[Category:Coins/Tokens]] |
Revision as of 05:07, 11 March 2022
Basics
- Started in / Announced on:
- Based in:
- Mainnet release:
History
Audits & Exploits
- Bug bounty program can be found here (5-11-2021).
- Scored 84% on DeFi Safety (2-11-2021):
"Activity is over 10 internal transactions a day on contract Registry.sol
As per TrueFi's GitHub repository, their smart contracts have a coverage of 82%. The coveralls test report is available. No evidence of formal verification. There is evidence of a stress testing environment.
TrueFi has had multiple audits, found here. Out of those, two of the ImmuneBytes audits were performed before the launch of v4 on August 18th 2021, and the third ImmuneBytes audit was performed post-launch.
- Previously scored a 73% (5-2-2021);
"Both of these audits are good clear audits which took place after contract deployment. For this reasons no corrections were discussed. What is disturbing is the count of high number of findings on a deployed contract. Normally the score for audits after deployment is 70%. In this case a score of 50% is given. Slowmist conducted an audit on November 11th (2 medium, lots Low) jakub wojciechowski did an audit on November 22nd (4 high and 15 medium)"
With the comment: "Code and team is perfect, then just kinda average for the rest. They have an audit but it was after deployment and not the cleanest."
Bugs/Exploits
Governance
Admin Keys
- From DeFi Safety (2-11-2021):
"Governance access control information was found in their GitHub repo, as well as in their Medium blog.
a) All contracts are clearly labelled as upgradeable (or not) -- 0% -- No contracts' upgrade status is explicitly mentioned.
b) The type of ownership is clearly indicated (OnlyOwner / MultiSig / Defined Roles) -- 30% -- OnlyOwners and defined voting roles are clearly defined in the code and documentation.
c) The capabilities for change in the contracts are described -- 0% -- No capability for change is described for any of the smart contracts.
There is no documentation to be found on pause control. However, it can be found in their GitHub repository without proper documentation."
DAO
Treasury
Token
Launch
Token Allocation
Utility
Other Details
Stablecoin
Coin Distribution
Technology
- Whitepaper can be found here.
- Code can be viewed here. TrustToken's smart contracts have 15 branches and 1427 commits (5-11-2021).
- Built on: Ethereum
How it works
Fees
Upgrades
Staking
Liquidity Mining
Scaling
Interoperability
Different Implementations
Other Details
Oracle Method
Privacy Method
Compliance
Their Other Projects
Roadmap
- Can be found [Insert link here].
Usage
Projects that use or built on it
Competition
Pros and Cons
Pros
Cons
Team, Funding, Partners, etc.
Team
- Full team can be found here (5-11-2021).
Funding
Partners
- Partnered with Perp Protocol "to launch a first-of-a-kind lending portfolio of $5M to facilitate deeper liquidity on Perpetual Protocol v2!" (9-2-2022).
(:
Knowledge empowers us all and will help us get closer to the decentralised world we all want to live in!
Making these free wiki pages is fun but takes a lot of effort and time.
If you have enjoyed reading, tips are appreciated :) This will help us to keep expanding this archive of information.