Certora and the Stellar Development Foundation published a comprehensive guide for preparing Soroban smart contracts for security audits through the Audit Bank program, covering threat modeling, code quality, testing, and security tooling.
The Stellar Development Foundation and Certora released a detailed preparation guide for projects seeking security audits through the Soroban Audit Bank, which funds audits for SCF-awarded smart contract projects. The guide covers five key phases: designing for security from the start using threat modeling and invariant definition, writing clean and verification-friendly Rust code, rigorous testing including fuzzing and testnet integration tests, running pre-audit security tools like Scout and Certora Sunbeam, and submitting strong applications with complete documentation. The guide emphasizes that well-prepared codebases enable faster and more valuable audits, and provides links to Stellar's security resources, threat modeling templates, and recommended tools.
