docs.strongholdsec.io

About
Terms of Work
- Audit-readiness check-list
- Lead time & Cost
Audit

Powered by GitBook

On this page

Findings severity levels

PreviousMethodology NextFlow of work

Last updated 1 year ago

The audit contest is directed at identifying possible vulnerabilities in the project's code. The result of the audit is a report with a list of detected vulnerabilities ranked by severity level:

After the stage of bug fixing by the Customer, the findings can be assigned the following statuses:

Severity

Description

Critical

Vulnerabilities leading to the theft of assets, blocking access to funds, or any other loss of funds.

High

Vulnerabilities that cause the contract to fail and that can only be fixed by modifying or completely replacing the contract code.

Medium

Vulnerabilities breaking the intended contract logic but without loss of funds and need for contract replacement.

Low

Minor bugs that can be taken into account in order to improve the overall quality of the code

Status

Description

Fixed

Recommended fixes have been made to the project code and no longer affect its security.

Acknowledged

The Customer took into account the finding. However, the recommendations were not implemented since they did not affect the project's safety.