Stellar Foundation and Veridice discuss the Stellar Security Audit Bank, a program providing free security audits to Soroban developers. The initiative aims to make security proactive rather than reactive, with audits funded through the Stellar Community Fund for qualifying DeFi protocols.
Kost from Veridice and Tomer from Stellar Foundation discuss the Stellar Security Audit Bank, a program designed to provide free third-party security audits to projects building on Soroban. Launched alongside Soroban itself, the program addresses the financial barriers developers face when seeking audits. Developers who receive Stellar Community Fund grants automatically qualify for sponsored audits from whitelisted auditors. The conversation covers Soroban's security-first architecture, including built-in testing frameworks, fuzzing capabilities, and formal verification tools. Key vulnerabilities unique to Stellar include state archival issues and storage tier mismanagement. The program has maintained a strong security record with no major vulnerabilities in the ecosystem since Soroban's launch. Future priorities include scalability improvements, reduced block times, and privacy infrastructure including zero-knowledge proofs for confidential payments.