Cosmos Hub Security Audit - LSM deployed by Atom Accelerator DAO (AADAO) for Zellic
Team: Zellic
Amount Approved: $51,000
Status: In Progress

Cosmos Hub Security Audit – LSM

This grant is to engage Zellic in conducting a comprehensive security audit of the Cosmos Hub Liquid Staking Module.

The Liquidity Staking Module (LSM) is a Cosmos SDK fork that extends the staking, distribution and slashing module. It allows users to tokenize delegations and redeem the tokens for their underlying staked assets.

It was recently revealed that DPRK workers might have developed a portion of the LSM originally. While the LSM codebase has undergone significant changes since, especially when it was integrated into the Cosmos Hub, the Atom Accelerator DAO and Informal Systems have engaged Zellic (and Ottersec) to audit the code.

Zellic’s audit of the Cosmos Hub Liquid Staking Module will enhance security, reducing the risk of exploits and safeguarding staked ATOM. Ultimately, Zellic’s audit will strengthen the long-term stability and confidence of the Cosmos Hub, protecting both assets and its reputation.

Over the past few months, Zellic has been engaged by Cosmos Hub governance to perform audits for the Cosmos Hub – including the Inactive Validator Set and Permissionless ICS. Due to the time-sensitive nature of this audit, the AADAO is spearheading the funding for this work instead of going through onchain governance.

About Zellic
Visit their Twitter profile Visit their website Visit their Github

Zellic is a vulnerability research firm with deep expertise in blockchain security. We specialize in EVM Move Aptos and Sui and Solana as well as ZK and Cosmos. We identify complex vulnerabilities and prevent catastrophic security events.

Team: Zellic
Current Status: In Progress
Funding Program: Regular Grants
Funding Category: ATOM Zone build-out

Amount Requested: Amount in their initial application, or for RFPs, their first quote or that of the nearest competitor $51,000
Amount Approved: $51,000 (100%)
Amount Paid: $25,500 (50%)

Date Applied: Oct 16, 2024
Date Approved: Generally includes time spent doing interviews, rescoping or amending the application, and due diligence Oct 21, 2024 (5 days)
Expected Completion Date: A date that we expect this grant's deliverables to be completed by. This of course accounts for external dependencies (e.g. governance votes), but is not a strict condition on some grants. Dec 31, 2024

Payments Made: View the DAO DAO prop on our Grants Wallet or Mintscan of the transaction $25,500 (Nov'24)

Latest Approved Funding

Zellic: Security Audits for the Cosmos Hub
In Progress

Zellic: Security Audits for the Cosmos Hub

Team: Zellic
Approved: Dec 03, 2024
Amount: $440,000
Range Security: Monitoring and Threat Detection for Hydro
In Progress

Range Security: Monitoring and Threat Detection for Hydro

Team: Range Security
Approved: Nov 27, 2024
Amount: $95,000
Zephyrus: Vote aggregator for Hydro
In Progress

Zephyrus: Vote aggregator for Hydro

Team: Moonkitt
Approved: Nov 27, 2024
Amount: $85,000
ATOM Interchain Insights: Comprehensive TVL & Flow Analytics for ATOM
In Progress

ATOM Interchain Insights: Comprehensive TVL & Flow Analytics for ATOM

Team: Map of Zones
Approved: Nov 27, 2024
Amount: $91,200