IOP | CircuitDAO

Where might Security Researchers confuse out-of-scope code to be in-scope?

N/A. There shouldn’t be any confusion.

Is this an upgrade of an existing system? If so, which? And what are the main differences?

No. As a CDP protocol, we have taken some inspiration from MakerDAO, both the initial single-collateral DAI system as well as some innovations of the multi-collateral version such as Dutch liquidation auctions. However, the implementation is completely different due to Chia’s coinset (UTXO) model and Chialisp as smart contract language.

Where do you suspect there may be bugs and/or what attack vectors are you most concerned about?

See the list of in-scope bugs below. The higher the severity, the more concerned we are about the respective exploit.

What ERC20 / ERC721 / ERC777 / ERC1155 token standards are supported?

The protocol makes use of Chia Asset Token (CAT) standard (https://chialisp.com/cats/), singletons (https://chialisp.com/singletons/) and various custom coin types. An overview can be found here: https://docs.circuitdao.com/technical-manual/overview#list-of-protocol-coins

What emergency actions may you want to use as a reason to downgrade an otherwise valid bug report?

Mitigation measures that can be taken by governance. As an (out-of-scope) example, if Announcers collude to manipulate the Oracle price, governance can swap out the Oracle by updating the ORACLE_LAUNCHER_ID Statute within STATUTES_PRICE_DELAY.

What addresses would you consider any bug report requiring their involvement to be out of scope, as long as they operate within the privileges attributed to them?

None

What addresses would you consider any bug report requiring their involvement be out of scope, even if they exceed the privileges attributed to them?

None

Which chains and/or networks will the code in scope be deployed to?

The project will eventually be deployed on Chia (mainnet and testnet11).

What external dependencies are there?

See the pyproject.toml files in ‘puzzles’ and ‘circuit’ Github repos. In terms of security context, the Chialisp code from ‘puzzles’ repos will get deployed on Chia mainnet. We will run a Chia fullnode service to connect the dapp backend to the blockchain.

Are there any unusual points about your protocol that may confuse Security Researchers?

The protocol differs from many other DeFi projects is that governance is done completely on-chain by governance token (CRT) holders. Governance proposals are created, vetoed on, and implemented (“enacted”) on-chain. There is no governance multi-sig (controlled by a foundation or otherwise).

The protocol is largely immutable, with governance being limited to changing the value of certain parameters (“Statutes”) or outputting custom conditions. The one exception to this is the Oracle singleton, which governance can replace entirely (by changing the value of the Oracle launcher ID at Statutes index 0)

What are the most valuable educational resources already available? (Ie. Documentation, Explainer videos or articles, etc)

Documentation for Circuit protocol can be found at: https://docs.circuitdao.com/ Note that the documentation is not up-to-date with the latest commit and contains inaccurate descriptions in several places. However, the docs should work well as an introduction to and general overview of the protocol.

SRs may also be interested in the audit report by Zellic:

Chialisp-related documentation can be found at: https://chialisp.com/

The protocol makes use of modern chialisp features: https://chialisp.com/modern-chialisp/