AI-assisted detection
AI agents continuously mapped cross-surface call graphs, anomaly-clustered suspicious transitions, and prioritized suspicious edge paths for human review.
DCA Space
DCA Space Trading Flow Audit
End-to-end security review of recurring trade automation across UI orchestration, API validation, and on-chain execution paths.
Total findings
11
Critical / High
0 / 1
Resolved
100%
Duration
16 days
Overview
End-to-end security review of recurring trade automation across UI orchestration, API validation, and on-chain execution paths.
Scope
FrontendBackendSmart Contract
Stack: React / Node.js / Solidity / PostgreSQL
Method
Auditor-owned decisions
Senior auditors validated exploit feasibility, reproduced high-impact paths, and set final severity with remediation guidance and recheck criteria.
- 01 Mapped trust boundaries across client, API, relayer, and contract surfaces.
- 02 Stress-tested authorization and replay controls under abnormal timing.
- 03 Validated remediation with targeted re-tests before final issuance.
Key Risks
- Order parameter drift between UI preview and signed transaction payload.
- Weak server-side replay constraints on delayed recurring triggers.
- Insufficient fallback handling during provider/routing degradation events.
Outcome
All high and medium findings were remediated and independently verified before final clearance issuance.