Today, we are excited to announce the start of the Fusaka audit contest, co-sponsored by Gnosis and Lido, hosted on Sherlock, and running for four weeks from September 15th. The goal is simple: maximize scrutiny of the Fusaka upgrade and surface vulnerabilities before they can impact the network.
To raise the stakes, valid findings reported in the first week have a 2x multiplier applied to their points rewarded, and those in the second week have a 1.5x multiplier. To help security researchers, we’ve prepared a Fusaka auditor guide.
We’re grateful to Gnosis for contributing 100,000 USD and Lido for contributing 25,000 USD to the contest. Beyond funding, co-sponsorship is strategically important for the ecosystem as Ethereum upgrades affect everyone, and distributing support across multiple organizations reinforces that protocol security is not the sole responsibility of a single entity.
What is an audit contest?
An audit contest is a time-bound competition designed to harden the protocol. Security researchers are incentivized to actively search for vulnerabilities in the Fusaka codebase under defined rules. Only impactful, rule-compliant findings are rewarded.
After the contest, all findings are reviewed, validated, and compiled into an official report. This ensures that discovered vulnerabilities are tracked, mitigated, and lessons learned are shared. Top researchers are recognized for their contributions.
Bug Bounty Program
Outside of Fusaka, our ongoing Bug Bounty Program offers rewards of up to 250,000 USD for vulnerabilities affecting the broader Ethereum protocol.
About Sherlock
Sherlock is committed to the continued security of the Ethereum network, having previously conducted the audit of the Pectra Bytecode upgrade at the end of 2024.
Founded in 2021, Sherlock is a full smart contract security platform that protects protocols across their entire lifecycle through collaborative audits with leading researchers, large-scale contests to maximize coverage, post-launch bug bounty programs, and financial coverage to reinforce accountability. Building on its early reputation for audit contests, Sherlock today operates as a comprehensive security suite trusted by leading projects to safeguard critical on-chain systems.
