The Notional protocol and assets held in Notional are exposed to technological risks. More specifically, Notional is subject to smart contract risks, or the risk of potential vulnerabilities within the Notional codebase itself.

Audits

To mitigate this risk, Notional invests in thorough testing and auditing of its smart contracts. Here is the list of the multiple security audits Notional underwent:

• Notional V1, Open Zeppelin | Dec 2020

• Notional V2 Governance, Open Zeppelin | Nov 2021

• Notional V2, ABDK | Sept 2021

• Notional V2, Certora | Nov 2021

• Notional V2, ABDK Fixes | Nov 2021

• Notional V2, Code Arena | Oct 2021

• Staked NOTE | Mar 2022

• Notional V2.1, Consensys Diligence | Mar 2022

• Wrapped fCash, Code Arena | Jul 2022

• Leveraged Vaults, Consensys Diligence | Jul 2022

• Leveraged Vaults + Balancer Vault Strategy, Sherlock | Oct 2022

• Balancer Vault Strategy Fixes, Sherlock | Jan 2023

• Convex Leveraged Vault, Sherlock | Mar 2023

• Notional V3, Sherlock | May 2023

Bug Bounty

Notional has an active bug bounty program through Immunefi. Security researchers can contact Notional's security team at security@notional.finance. Notional V3 contracts are open source for Security Auditors to review the code base.