Audit firm tier

Frax Finance's assessment for RD-F-005 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Tier-1 firms engaged: Trail of Bits (7 engagements, highest-tier Level 4 effort) and Certora (BAMM FV+audit). Tier-2: ChainSecurity, Zellic, Code4rena, CertiK. 'Frax Security Cartel' — independence not verifiable; no public member list found across multiple searches; reports hosted in protocol's own GitHub repo rather than an independent firm index. However, the presence of ToB (Tier-1) and Certora (Tier-1) for core contracts is sufficient for green on this factor. The Frax Security Cartel independence concern is flagged in issues.

Sources #

GitHub
Certora Security ReportsCertora SecurityReports — Frax BAMM FV confirmedretrieved 2026-05-17
GitHub
Trail of Bits PublicationsTrail of Bits publications repo — all Frax engagements at Level 4 effortretrieved 2026-05-17

Methodology #

Classify each auditing firm into: Tier-1 (Trail of Bits / OpenZeppelin / ConsenSys Diligence / Certora / Sigma Prime / Spearbit / Zellic) / Tier-2 (established, named firm with public track record) / boutique / unknown.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol frax factor RD-F-005 score green collected_at 2026-05-16 20:44:31