Security

Audits, formal verification, and compliance reports

Sandclock takes security seriously. Every contract deployed to mainnet has been independently audited. Lindy Labs also runs formal verification to catch issues that traditional audits miss — see Aegis.

SOC 2 Report

Lindy Labs is SOC 2 Type 1 compliant, covering the systems and controls that underpin Sandclock. Independent attestation reports are available below.

579KB

033125 Lindy Labs SOC 2 Type 1 Report.pdf

PDF

Open

596KB

033124 Lindy Labs SOC 2 Type 1 Report.pdf

PDF

Open

Smart Contract Audits

All deployed contracts have been reviewed by independent security firms. Reports are organized by component.

ERC4626 Vault

The core vault contracts were audited twice ahead of the v2 launch.

2023-07, by Trail Of Bits

2023-04, by WatchPug

Token

The QUARTZ token contract was audited at launch and again following updates.

2021-06, by Christoph Michel

2021-09, by Solidified

PreviousAllocation

Last updated 1 month ago