Security audit report collection

Published on Nov 11, 2022Updated on Dec 4, 20244 min read5,923

Certik

OKX Wallet front-end, mobile (iOS/Android) and SDK components audit report

The front-end, mobile (iOS/Android) and SDK components of OKX Wallet have passed the security audit by CertiK:

  • A portion of Mobile App Source Code which contains both the iOS and Android components responsible for wallet creation/import, password management and data backup to cloud platforms.

  • A Front End Module which contains the ReactJS UI components for the wallet functionalities, as well as the JS controllers used for interacting with the keyring.

  • Multiple Modules of Wallet SDK, including Bitcoin SDK, okwallet-core and SRC.

Overall Certik has found 5 security issues. Three of them are low risk and informational findings, and two of them are at undetermined risk levels. All of those issues had already been solved. Learn more on the audit report here.

OKX Wallet Threshold-lib audit report

The Threshold-lib of OKX Wallet has passed the security audit by Certik. Find out the scope of the auditing here.

OKX Wallet Main Contracts audit report

The main contracts of OKX wallet have passed the security audit by Certik. The scope of the auditing:

  • DexRouter: a router built for different kinds of DEXs for users to trade assets.

  • OkxNFTMarketAggregator: an NFT aggregator for different markets for the users to trade NFTs.

  • Entrance: an entrance to execute instructions that are allowed to be invoked by registered adapters.

  • UniswapV2AdapterMain: an adapter to the UniswapV2 pools that allows the users to stake the LP to MasterChef.

Overall, the audit result is at low risk and all the issues have been fixed.

For more information on this, please check out the audit report here.

OKX Wallet Marketplace Solana NFT transactions audit report

OKX Marketplace of Solana has passed a safety audit by CertiK. Overall, the audit result is at low risk and all the issues have been fixed.

For more information on this, check out the audit report here.

Slowmist

OKX Wallet MPC (Android) audit report

OKX MPC Wallet in Android has passed a safety audit by SlowMist. Overall, the audit result is at low risk. During the audit work SlowMist found 9 suggestions and 1 low risk. All the findings have been confirmed and fixed.

For more information on this, check out the audit report here.

OKX Wallet MPC (iOS) audit report

OKX MPC Wallet in Android has passed a safety audit by SlowMist. Overall, the audit result is at low risk. During the audit work SlowMist found 9 suggestions and 1 low risk. All the findings have been confirmed and fixed.

For more information on this, check out the audit report here.

OKX Wallet Ord audit report

Ord of OKX Wallet has passed a safety audit by SlowMist. Overall, the audit result has passed. During the audit work SlowMist found 7 low risk, 3 suggestion vulnerabilities. The scope of the auditing:

  • For Target code and revision, visit here.

For more information on this, check out the audit report here.

OKX Account Abstraction audit report

AA account (Account Abstraction) of OKX wallet has passed safety audit by SlowMist. Overall, the audit result is at low risk and all the issues have been fixed.

For more information on this, check out the audit report here.

OKX Wallet private key module audit report

The private key module of our Web3 wallet has passed a third-party safety audit :

  • Private keys and seed phrases are only stored on user's devices.

  • Private keys and seed phrases are not uploaded to any external server.

For more information on this, check out the official announcement from Slowmist.

Audit report from Slowmist on private key module as below:

CT-securitykey-slowmist-web-1

OKX Web3 wallet always provides the safest and most professional multichain wallet services – easy management of over 100 networks and your one-stop Web3 portal to access cross-chain DEX, multi-chain NFT marketplace, and Defi farming.

OKX wallet will continue to provide you with better products and services.