Extra Finance
  • 3️⃣Welcome to Extra Finance
  • Overview
  • Getting Started
    • MetaMask
    • Safe (Multi-Sig Wallet)
  • Audits & Security
  • Risks
  • Contracts & Transparency
  • Academy
    • Thoroughly understand a farming position
    • Intro to Leveraged Yield Farming - Overall
    • Intro to Leveraged Yield Farming - Long Strategy
    • Pseudo Delta Neutral (PDN) Farming Strategy
    • Extra Finance Deep Dive
  • Bridge EXTRA
  • FAQ
  • 👨‍🌾Leverage Farming
    • Introduction to Leveraged Yield Farming
    • How Extra Finance Works
    • How to use
      • Open a Farming Position
      • Close a Farming Position
    • Strategy
      • Re-investing Strategy
      • Long/Short Farming Strategy
      • Market Neutral Strategy
    • Pool Info
    • Price Feed
    • Impermanent Loss
    • Liquidation
  • 🏦Lending
    • Introduction to Lending
    • How to use
    • Interest Rate Model
    • Pseudo-Fixed-Interest-Rate Model
  • 🌕Tokenomics
    • Introduction to Tokenomics V2
    • ve-Mechanism & Utility V2
    • Allocation & Emission V2
    • Staking V2
    • Tokenomics V1
      • ve-Mechanism & Utility
      • Allocation & Emission
      • Staking
        • How to Stake (to veEXTRA)
  • 📘Resources
    • Param & Fee
    • Roadmap
    • Brand Assets
    • Links
    • Term of Use
    • Terminologies
Powered by GitBook
On this page
  • 1. Audits
  • 2. Bug Bounty
  • 3. Proactive Monitoring
  • 4. Insurance
  • 5. Price Protection
  • 6. Access Control
  • 7. Risk Control

Audits & Security

PreviousSafe (Multi-Sig Wallet)NextRisks

Last updated 15 days ago

1. Audits

  • Audit report from BlockSec ()

  • Audit report from PeckShield ()

  • Audit report from Sherlock ()

2. Bug Bounty

ExtraFi runs a bug bounty program on ImmuneFi that rewards whitehats for reporting valid vulnerabilities in our code. You can find further information on this program .

3. Proactive Monitoring

(The partnership has not yet been renewed in 2025, still in review)

4. Insurance

5. Price Protection

Time-Weighted Average Price (TWAP) model is implemented in Extra Finance's smart contract to safeguard against abnormal price fluctuations and potential malicious price manipulation.

Chainlink price feed is also aggregated on Extra Finance, it is used to avoid abnormal price fluctuation.

6. Access Control

  • No fund withdrawal function is designed for admin in smart contracts.

  • Multi-sig authentication is implemented for contract configurations, such as parameters like protocol fee, liquidation threshold, reserve rate, etc.

  • Upgrades on contract configurations are subject to a governance process, which includes a set of procedures and guidelines. This process involves multiple levels of review and approval from various stakeholders and serves to ensure transparency and consistency in managing changes to contract configurations.

7. Risk Control

To mitigate the risk of lenders facing potential bad debt during market volatility and safeguard leveraged users from possible liquidations due to inadequate liquidity, Extra Finance has instituted a series of measures to list farming pools. These measures necessitate that these pools meet vital liquidity thresholds. Additionally, when configuring leveraged farming pools, careful consideration will be given to the following factors:

  • Price Stability: The TVL of a liquidity pool, combined with the stability of the underlying assets' prices, will play a pivotal role in determining the maximum allowable leverage factor for a specific farming pool.

  • Asset Credibility: Assets that are new to the market or possess lower credibility will be subject to restrictions on

    • The maximum leverage factor

    • The maximum value (or 'credit') that a leveraged pool can borrow from lending pools (This is why there are instances when users cannot open new positions, even if there are still assets available in the lending pools)

  • Liquidity Proportion: To enhance liquidation safety, if the liquidity proportion sourced from ExtraFi exceeds a threshold (typically 30%), we may temporarily disable leverage for opening new positions until the proportion decreases. (Disabling leverage does not mean de-listing; it is a precautionary risk control measure.)

References:

We have partnered with to protect the protocol from cyber exploits, hacks, governance, and financial risks.

Partnered with OpenCover. Users can buy covers for their ExtraFi positions through OpenCover, learn more .

Or, users can buy covers through the InsurAce app, learn more .

The 'owner' role of the EXTRA token contract has been invalidated, meaning that no further new mints are possible. (Verify )

A lower can be subject to liquidation, this implies that emerging asset liquidity pools could experience earlier liquidation compared to more established mainstream pools.

Hexagate
here
here
Here
debt ratio
https://github.com/blocksecteam/audit-reports/blob/main/solidity/blocksec_extrafinance_v1.0-signed.pdf
https://github.com/peckshield/publications/tree/master/audit_reports/PeckShield-Audit-Report-ExtraFi-v1.0.pdf
https://github.com/sherlock-protocol/sherlock-reports/blob/main/audits/2024.12.01%20-%20Final%20-%20Extra%20Finance%20Audit%20Report.pdf
Source
Source
Source
here
Extra Finance on Chainlink Ecosystem | Every Chainlink integration and partnership
Logo
701KB
blocksec_extrafinance_v1.0-signed.pdf
pdf
BlockSec Team has confirmed that the potential issues have been fixed.
348KB
PeckShield-Audit-Report-ExtraFi-v1.0.pdf
pdf
PeckShield Team has confirmed that the potential issues have been fixed.
898KB
Extra Finance Audit Report.pdf
pdf
Sherlock Team has confirmed that the potential issues have been fixed.