# Audits Defi App encourages and facilitates the independent review of Defi App features and security. Read reports by various audit groups in the [Defi App Audits](https://github.com/defi-app/defi-app-audits) GitHub repository. *** ## $HOME Token MiCAR Compliance *Defi App, June 2025* Defi App published a MiCAR[^1]-compliant whitepaper for the $HOME token, outlining its governance-focused design and plans for European Union (EU) exchange listings. The document confirms the token's lack of financial rights, use of Ethereum and Base networks, and compliance with common crypto standards. It identifies risks across trading, protocol operations, and technical infrastructure, and describes mitigation strategies for those risks. It confirms that energy consumption is in line with environmental standards. [Read the report](https://github.com/defi-app/defi-app-audits/blob/main/TOKEN.WHITEPAPER.MiCAR-2025-06-05.pdf) on GitHub. *** ## Smart Contracts Security *Cantina, March 2025* [Cantina](https://cantina.xyz/welcome) conducted a security review of Defi App's smart contracts, finding opportunities to improve access controls, staking logic consistency, and reward distribution safeguards to better protect against gas abuse, accounting errors, and unauthorized actions. [Read the report](https://github.com/defi-app/defi-app-audits/blob/main/SC.CANTINA-2025-03-27.pdf) on GitHub. {% hint style="success" %} All issues have been addressed. {% endhint %} *** ## Web App Security *Halborn, February 2025* [Halborn](https://www.halborn.com/) conducted a security review of Defi App's web application, finding opportunities to improve session handling, security header enforcement, environment isolation, and secret management practices across the web application stack. [Read the report](https://github.com/defi-app/defi-app-audits/blob/main/WEBAPP.HALBORN-2025.06.03.pdf) on GitHub. {% hint style="success" %} All critical issues have been addressed, with remediation planned for outstanding issues in upcoming releases. {% endhint %} *** ## Airdrop Smart Contracts Security *Pashov Audit Group, April 2025* [Pashov Audit Group](https://www.pashov.net/) conducted a security review of Defi App's airdrop smart contracts, finding opportunities to improve the consistency and resilience of claim logic, tighten validation on time-related parameters, and enforce stricter rules around administrative controls. [Read the report](https://github.com/defi-app/defi-app-audits/blob/main/AIRDROP.PASHOV-2025.04.09.pdf) on GitHub. {% hint style="success" %} All issues have been addressed. {% endhint %} *** ## Infrastructure Best Practices *Sela, January 2025* [Sela](https://selacloud.com/support/architecture-review) conducted a comprehensive review of Defi App's infrastructure, finding opportunities to improve workload isolation, IAM governance, cost optimization practices, and deployment reliability. [Read the report](https://github.com/defi-app/defi-app-audits/blob/main/INFRA.SELA-2025.01.15.pdf) on GitHub. {% hint style="success" %} All critical issues have been addressed, with remediation planned for outstanding issues in upcoming releases. {% endhint %} [^1]: Markets in Crypto-Assets Regulation --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.defi.app/knowledge-base/reference/audits.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.