Documentation Index
Fetch the complete documentation index at: https://docs.monolith.market/llms.txt
Use this file to discover all available pages before exploring further.
Overview
Monolith’s core contracts have been independently reviewed by multiple security firms before and after deployment. All findings from completed engagements have been addressed by the development team. The ChainSecurity re-audit final report is pending publication.The ChainSecurity re-audit report is a pre-publication draft. All other audit reports are linked in the table below.
Audit History
| Auditor | Type | Date | Report |
|---|---|---|---|
| Electisec (yAudit) | Private audit | June 2025 | View report |
| ChainSecurity | Private audit | October 2025 | View report |
| Sherlock | Public contest | December 2025 | View report |
| ChainSecurity | Re-audit (v5.1) | March–April 2026 | View report |
| Sherlock AI | AI-assisted review | April 2026 | View report |
| Nemesis | AI-assisted review | April 2026 | View report |
| Zellic v12 | AI-assisted review | April 2026 | View report |
Electisec — June 2025
Electisec (formerly yAudit) conducted a private review of the five core Monolith protocol contracts:Factory.sol, Lender.sol, Vault.sol, InterestModel.sol, and Coin.sol. Two auditors conducted the review over five days, with particular focus on the protocol’s novel dual-debt architecture, the interaction between the interest rate model and redeemable borrower positions, and the correctness of interest accrual and liquidation mechanics. All findings were fully resolved prior to deployment.
ChainSecurity — October 2025
ChainSecurity performed an independent code assessment of the Monolith smart contracts, covering the same core contract suite reviewed by Electisec. The assessment examined precision of arithmetic operations, integration with external ERC-4626 vaults, functional correctness of the redemption and liquidation systems, and the trustworthiness of the operator access control model. All findings were addressed by the development team.Sherlock Public Contest — December 2025
A competitive public audit contest was hosted on Sherlock from December 8–14, 2025, with lead security expert bughuntoor overseeing the engagement. The contest extended the scope to includesrc/Lens.sol alongside the five core contracts, and drew participation from over 100 independent security researchers. All issues identified during the contest were fully resolved prior to deployment.
ChainSecurity Re-audit — March–April 2026
ChainSecurity conducted a re-audit of the Monolith protocol covering material changes made since their initial October 2025 review, including updates introduced across multiple iterative code versions. The engagement incorporated a final audit slot on March 23, 2026. The final report is pending publication.Pre-disclosure findings from this engagement are confidential until ChainSecurity publishes the final report. This page will be updated with the report link upon release.
Sherlock AI — April 2026
An AI-assisted security review of the Monolith protocol contracts was conducted using Sherlock’s automated analysis tooling. The review covered the core contract suite and was run in conjunction with the broader AI audit initiative ahead of deployment.Nemesis — April 2026
An AI-assisted review was conducted using Nemesis, covering the Monolith protocol contracts. The engagement was part of a multi-tool AI audit initiative run in parallel to complement the human-led audit program.Zellic v12 — April 2026
An AI-assisted review was conducted using Zellic’s v12 automated analysis tooling across the Monolith protocol contracts. The review was run as part of the same April 2026 AI audit initiative alongside Sherlock AI and Nemesis.Bug Bounty Program
Learn about our live bug bounty program on Sherlock and how to report vulnerabilities.
Risk Disclosures
Understand the risks associated with using Monolith stablecoins and the protocol.