The Quantstamp Security Network V2 allows users to run decentralized scans on smart contracts for potential vulnerabilities and store a decentralized report of the results directly on the Ethereum blockchain.
This latest update features an enhanced user interface and features a decentralized design that allows individuals to run a node without needing to be whitelisted by Quantstamp. Anyone interested in running a node just needs to follow these instructions.
Our Code is Now Open Source
In order to provide transparency to our users and to further decentralize the network, the Quantstamp Security Network is now open-source. This will benefit users in two ways:
- Users will be able to independently verify that the network works as intended, and
- Any engineer has the option to contribute to the security and quality of the network by suggesting improvements to our codebase.
You can view the Github repo for our smart contracts here, and for our node software here.
Request a Scan!
Here is how you can request a scan:
- Visit protocol.quantstamp.com
- Connect MetaMask
- Preauthorize at least 1000 QSP
- Submit the smart contract you want to scan
- Wait for a Quantstamp node to scan your contract
- View the results
Watch the Youtube video on how to request a scan here.
Run a node!
Now, users can run a node to earn QSP while increasing the decentralization of the network.
We focused on creating a great user experience for our node operators. We have noticed that using blockchain technology can be challenging even for experienced developers because of the lack of clear documentation. In order to address this, we put great effort in our documentation and included complementary Youtube video walkthroughs. Even non-technical individuals can run a node.
Why our protocol
Over 250 million USD worth of cryptocurrency has either been lost or stolen due to bugs in smart contracts. Also, although smart contracts are growing exponentially, there are not enough qualified security engineers to manually review all of this code. We created the Quantstamp Security Network in order to scale smart contract security using automation.
Our off-chain network of nodes use third-party analyzers, such as Mythril and Securify, to check smart contracts for common vulnerabilities that can have devastating consequences, such as the re-entrancy bug that led to the infamous DAO hack in 2016. Developers can use the Quantstamp Security Network to quickly and easily leverage these tools to check for known vulnerabilities.
We suggest that developers include the Quantstamp Security Network as part of their development workflow.