Audit count

Wormhole's assessment for RD-F-004 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

15+ distinct firms across 29+ engagements covering: Neodyme, Kudelski, Trail of Bits, OtterSec, Zellic, Hacken, CertiK, Runtime Verification, Coinspect, Cyfrin, Cantina, Sec3, Code4rena, Sherlock, Halborn. Halborn confirmed via Wormhole's official security docs page (wormhole.com/docs/protocol/security/) listing it as one of the named audit firms; report file may not be public in the wormhole-audits repo. 15 firms is exceptional depth for a bridge protocol.

Sources #

Curator note
Extracted from 01-code-security.md — RD-F-004 finding; no URL cited in originalretrieved 2026-04-28
URL
https://wormhole.com/docs/protocol/security/retrieved 2026-05-06
URL
https://github.com/wormhole-foundation/wormhole-auditsretrieved 2026-05-06

Methodology #

Count the number of distinct audit firms whose reports cover any portion of the currently-deployed bytecode.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol wormhole factor RD-F-004 score green collected_at 2026-04-28 01:38:43