Account Safety
Validation of account ownership, mutability, signer requirements, PDA derivation, seeds, bumps, and constraint coverage.
CPI and Token Flows
Review of cross-program invocations, token authority handling, transfer paths, escrow logic, and privilege propagation.
Instruction Logic
Manual analysis of state transitions, arithmetic, edge cases, initialization paths, and protocol-specific invariants.
What We Review
The audit combines manual research with AI-assisted checks around Solana-specific failure modes and the concrete assumptions your program makes about accounts, authorities, state, and value movement.
- Anchor and native Rust program review
- PDA collision and authority model analysis
- Unchecked account and missing constraint detection
- Reinitialization and close-account safety review
- CPI privilege and token account validation
- Detailed report with remediation guidance
- And more, based on your Solana program architecture and threat model
Secure Your Solana Program
Share your repository, commit hash, documentation, and expected launch timeline so we can scope the review precisely.
Start Audit Request