The most critical subjects covered in our audit are functional correctness, access control and frontrunning resistance.
SDAO and SubProxy contracts are not going to be deployed yet. The current state of the deployment and initialization scripts shows a high level of security, however.
In the latest version actual deployment scripts for the farming module based on the previous scripts originally used for testing only have been added.
In a production setting, Deployment verification is strongly recommended.
While Foundry does not atomically perform deployment, no frontrunning possibilities have been found.
In summary, we find that the codebase provides a high level of security.
It is important to note that security audits are time-boxed and cannot uncover all vulnerabilities. They complement but don’t replace other vital measures to secure a project.