Skip to content

RECTOR-LABS/solana-security-audit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
writeups
writeups
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
SCOREBOARD.md
SCOREBOARD.md
 
 
STRATEGY.md
STRATEGY.md
 
 
TRACKER.md
TRACKER.md
 
 
bounty-analysis.md
bounty-analysis.md
 
 

Repository files navigation

Solana Security Audit

1st Place Winner — Superteam Security Bounty ($1,500 USDG)

Won 1st place out of 116 submissions in the "Audit & Fix Open-Source Solana Repositories for Vulnerabilities" bounty on Superteam Earn (March 2026). Systematic audit of 14 open-source Solana repositories, identifying 13 real vulnerabilities across 7 repos. Submitted finding: Anchor Framework CPI Return Data Spoofing (CVSSv3 7.5).

Target Repositories

Tier 1 — Original Targets (audited iterations 1-7)

# Repository Stars Focus Area
1 marginfi-v2 284 Lending — oracle validation, Token-2022
2 anchor 4,949 Framework-level, CPI validation
3 mpl-token-metadata 243 NFT state machine
4 jito-solana 681 Validator fork, targeted MEV scan

Tier 2 — Expanded Targets (high-value DeFi/infra)

# Repository Stars Focus Area
5 wormhole 1,875 Cross-chain bridge — Solana contracts
6 agave 1,669 Solana validator client
7 pinocchio 849 Zero-copy Solana program framework
8 whirlpools 509 Concentrated liquidity AMM
9 protocol-v2 376 Perpetuals DEX
10 raydium-clmm 368 Concentrated liquidity AMM

Tier 3 — Additional Targets

# Repository Stars Focus Area
11 phoenix-v1 246 On-chain order book
12 pyth-crosschain 226 Oracle — crosschain programs
13 squads-v4 171 Multisig protocol
14 klend 158 Lending protocol

Eliminated: solana-program-library (archived), openbook-v2 (stale ~2 years)

Audit Methodology

7-iteration vulnerability scan across all repos:

  1. Account Validation & Ownership — UncheckedAccount, missing owner checks
  2. Signer & Authority — Missing is_signer, unprotected admin functions
  3. PDA Derivation & Seeds — Non-canonical bumps, seed mismatches
  4. Arithmetic & Math Safety — Unchecked ops, precision loss, rounding errors
  5. Logic Flows & State Machine — Reentrancy, check-effect-interaction violations
  6. CPI & Cross-Program — Arbitrary CPI, unvalidated program IDs
  7. Edge Cases & Integration — Oracle staleness, dust, account revival

Scoring

TOTAL = SEVERITY(1-5) x POPULARITY(1-5) x EXPLOITABILITY(1-5) x PROOF_QUALITY(1-3) x FIX_SIMPLICITY(1-3)

Max score: 1,125. See SCOREBOARD.md for ranked findings.

Structure

solana-security-audit/
  repos/               # Cloned forks (14 repos)
  writeup/             # Vulnerability write-ups
  SCOREBOARD.md        # Ranked findings
  STRATEGY.md          # Audit strategy & priority
  bounty-analysis.md   # Bounty requirements & notes

License

MIT

About

Systematic security audit of open-source Solana repositories

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Sponsor this project

 
Learn more about GitHub Sponsors

Packages

 
 
 

Contributors