[RFP] Audit of Keyper Staking and Delegated Staking Mechanism

Shutter DAO DAO Proposals
1

Simple Summary

Shutter DAO 0x36 has voted to move forward with Blockful.io as the technical contributor to develop Keyper staking and delegated staking (link). Blockful has already started with the technical contribution, which can be followed in this thread. To ensure the secure functioning of the staking and delegation mechanism, Shutter DAO 0x36 is issuing an RFP for auditing the implementation with an allocated budget of 10,000 USDC based on the following vote.

Goals

  1. Ensure Security and Reliability: Verify the technical soundness of the staking mechanism to ensure the security and reliability of the Shutter Network.
  2. Enhance Trust and Confidence: Provide the Shutter DAO community with assurance that the staking mechanism has been thoroughly audited by an independent, reputable auditor.
  3. Facilitate Smooth Implementation: Identify and resolve any potential issues in the smart contracts before deployment to prevent future complications.

Background on Contribution

The Shutter DAO 0x36 has initiated the development of a staking mechanism to secure the network and to incentivize Keypers and SHU token holders. To ensure the robustness and security of the technical implementation, an independent audit is essential. This RFP aims to select an experienced auditor to audit the technical contribution for the delegated staking mechanism to ensure the secure implementation by Blockful.io.

Implementation / Next Steps

  1. Open Call for Contributors: Qualified auditors are invited to submit their proposals for auditing the staking mechanism. Potential contributors should include in their proposal approach/scope, experience, budget suggestion and disbursement plan. The proposed deadline is the end of June 2024.
  2. Selection Process: The proposals will be reviewed by the Shutter DAO 0x36 community, and the most suitable auditor will be selected based on expertise, reputation, and proposed approach.
  3. Auditing: The selected auditor will conduct a thorough audit of the staking and delegation mechanism, including smart contracts, front-end integration, and overall security measures.
  4. Reporting: The auditor will provide a detailed report outlining their findings, recommendations, and any identified issues. This report will be shared with the Shutter DAO community and Blockful.io.
  5. Budget Allocation: Up to 10,000 USDC will be allocated for this auditing process, to be disbursed upon satisfactory completion of the audit.

Notes to contributors for submitting proposals

  • Only one contributor will be selected to fulfill this request.
  • The selection will be done by the Shutter DAO 0x36 members via a Snapshot vote.
  • Please use the rpf-proposal tag in your submission for identifying it as such.
  • The initial proposal did not set a deadline for submissions. Currently, before a deadline and start of a vote is proposed, you should submit your proposals ASAP. The proposed deadline is the end of June 2024.

Further References

Original Post to Launch an RFP

Blockful.io Technical Contribution Thread

Snapshot Vote to Approve RFP Launch

https://snapshot.org/#/shutterdao0x36.eth/proposal/0x3e9bc3988c7209c5d0a0e860713baf2235e08b14438e21414a7a4ee8a5bc4347

2 Likes
2

Proposals submitted by contributors, listed in chronological order:

3

The DAO has voted for the independent auditor cducrest with 34.73%, followed by Three Sigma with 26.82%. It was a close call between both contributors.

We also saw a significant number of voters who voted “abstain” with 38.44%.

Results can be found here: Snapshot Vote

Given the close call between the two contributors and the significant number of abstain votes, it is evident that both cducrest and Three Sigma have considerable support within the community and both have a great reputation. To enhance the security and effectiveness of the staking mechanism, the DAO might even consider engaging both auditors. This approach would provide a more comprehensive audit and reinforce trust in the staking mechanism. The required total budget of 20k USDGLO/USDC is still a reasonable investment. It would be good to get feedback on this approach.