Security ยท Static Analysis

AERE contract security analysis

The core value-bearing contracts on Chain 2800 were analyzed with Slither 0.11.5, the open-source static analyzer from Trail of Bits, against the Solidity 0.8.23 compiler. This report is published in full, findings and caveats included.

Read this first, honestly. This is an automated static-analysis pass, not a manual line-by-line audit and not an economic or formal-verification review by a named third-party firm. A named human audit (for example Code4rena, Cantina, Sherlock, or a Trail of Bits engagement) remains on the roadmap. Until then, the live adversarial mechanism is the AERE bug bounty, and this report is one honest layer of assurance rather than a substitute for a full third-party engagement.

1. What was run

  • Tool: Slither 0.11.5 (Trail of Bits), 101 detectors per contract.
  • Compiler: solc 0.8.23 (matching hardhat.config.js), OpenZeppelin 4.9.6.
  • Scope: 14 core contracts covering the token, staking, fee and burn economics, the compliance and zk-screening layer, the lending market and oracle, the insurance fund, and the post-quantum verifier.
  • Result: 14 / 14 contracts compiled and analyzed successfully. Zero compile failures.
ContractAreaAnalyzed
AereTokenNative token (2.8B fixed)yes
AereSinkImmutable 3-bucket fee routeryes
AereFeeBurnVaultSealed 37.5% base-fee burnyes
AereCoinbaseSplitter / V2Coinbase splityes
sAEREERC-4626 staking receiptyes
AereLockedStakingFixed-term stakingyes
AereZKScreen (v3)zk-KYC screeningyes
AereCompliancePoolCompliant privacy poolyes
AereSanctionsRegistryOFAC registryyes
AereLendingMarket / OracleIsolated lendingyes
AereInsuranceFundBad-debt coveryes
AerePQCVerifierPost-quantum WOTS+ verifieryes

2. High-severity findings

Zero genuine high-severity vulnerabilities.

Slither raised 4 "high" flags. Each resolves to a known false positive inside the audited OpenZeppelin 4.9.6 library, or to an explicitly by-design action that cannot harm users:

FlagWhereVerdict
incorrect-expOpenZeppelin Math.mulDiv (via sAERE)False positive. Intentional bit trick in the OZ library, not AERE code.
reentrancy-ethsAERE._depositFalse positive. Standard ERC-4626 pattern, no ETH in contract; balance re-cached after transfer.
reentrancy-ethsAERE._withdrawFalse positive. Same pattern, state re-cached post-transfer.
unchecked-transferAereCompliancePool.dismissAssociationRootChallengeBy design. Best-effort burn of an already-collected griefer bond to a burn address; failure cannot harm users or the protocol (documented in source).

3. Medium-severity findings

62 raw medium flags reduce to a handful of distinct patterns. None is assessed as practically exploitable by an external attacker against user funds:

4. Low and informational

Low (57): block.timestamp comparisons (33), benign reentrancy (17), reentrancy-in-events (6), missing zero-check (1).
Informational (117): naming convention (43, immutable UPPER_CASE style), dead code (24), low-level calls (17), solc-version advisory (15), pragma (11), and minor items. Pinning the three floating-pragma files to an exact 0.8.23 is a trivial hardening note.

5. Disclose-only, deployed and immutable

Many of these contracts are already deployed and immutable on Chain 2800 (sAERE, AereCompliancePool, AereZKScreen v3, AerePQCVerifier, the lending market and oracle, AereCoinbaseSplitter, AereFeeBurnVault, AereLockedStaking). Findings on those contracts are disclosed here transparently rather than silently patched, because they cannot be patched. All are low-risk or false positives.

6. Overall assessment

AERE Network's core value-bearing contracts were analyzed with Slither 0.11.5 (Trail of Bits) against the Solidity 0.8.23 compiler. All 14 audited contracts, covering the token, staking, fee and burn economics, the compliance and zk-screening layer, the lending market and oracle, the insurance fund, and the post-quantum verifier, compiled and analyzed cleanly. Static analysis surfaced no genuine high-severity vulnerabilities: every high flag resolved to either a known false positive inside the audited OpenZeppelin 4.9.6 library or an explicitly by-design best-effort token burn that cannot harm users. The medium-severity findings are dominated by conservative fixed-point rounding, strict-equality sentinel checks, and unchecked approve() return values on calls to the protocol's own trusted immutable contracts, none assessed as externally exploitable against user funds. Remaining items are informational hardening notes. Findings on already-deployed immutable contracts are disclosed transparently. This is an automated static-analysis pass, not a manual line-by-line audit or economic and formal-verification review, and should be read as one honest layer of assurance rather than a substitute for a full third-party engagement.

Report generated with Slither 0.11.5. Raw per-contract JSON and markdown outputs are retained by the Foundation. Re-run the analysis yourself: the contract sources are in the public repository, and Slither is open source. Report an issue or claim a bounty at the bug bounty.