Stellar Community Fund - Handbook
WebsiteDiscordDashboardMedium
  • Welcome to the SCF Handbook!
  • SCF AWARDS
    • Official Rules for Submissions
      • Resubmission
    • SCF Kickstart
    • SCF Build
      • Submission Review Criteria
      • Project Wishlist
      • Budget Guidelines
      • Pre-Screen Process
      • Category Delegate Panels
      • Legacy Projects
  • SUPPORTING PROGRAMS
    • Audit Bank
      • Official Rules
      • Audit Readiness Checklist
      • FAQ
    • Stellar Liquidity Award
      • Official Rules
  • Governance
    • Verified Members
      • How to Become Verified
    • Neural Quorum Governance
    • Community Guidelines
  • Additional Support
    • FAQ
    • History of SCF
    • Navigating Discord
      • 🤖Channels & Roles
      • 📜Discord Rules & Guidelines
Powered by GitBook
On this page
  1. SUPPORTING PROGRAMS
  2. Audit Bank

FAQ

PreviousAudit Readiness ChecklistNextStellar Liquidity Award

Last updated 23 days ago

Check out the FAQ to answer all your questions! If you can't find your answer, ask it in the #scf-general channel on the , and someone will help you shortly.

Who is eligible for an audit through the Soroban Security Audit Bank?

Projects funded through the Stellar Community Fund involving financial protocols, high-dependency data services, or high-traction dApps. See details .

How much does SDF cover for the Initial Audit?

Prior to an eligible project's initial audit, the project must pay 5% of its first audit cost as an upfront co-payment to SDF. Subsequently, SDF will pay the entire first audit cost to the selected audit firm. The project's co-payment amount may be refunded by SDF to the project provided the project remediates all critical, high, and medium vulnerabilities within 20 business days of receiving the audit report. See details .

When should I audit my project?

Projects should request an audit if they are , and are close to launching on Stellar mainnet, demonstrate technical maturity, including stable code, comprehensive documentation, and readiness for review—typically after completing the .

How quickly can my project get audited?

projects are typically matched with an audit firm within approximately two weeks after passing the readiness review. Audit firms are able to schedule most audits within 3-6 weeks after matching. The audit length depends on the scope of the code to be audited, and can take anywhere from 2 to 8 weeks.

Can I request more than one audit?

Complimentary follow-up audits are available at significant traction milestones, such as $10M and $100M Total Value Locked. If you haven’t met these milestones yet but need an additional audit, a co-payment will be required (20% of total audit cost for 2nd audit, 50% of total audit cost for 3rd audit). See details .

Is there any self-serve tooling available?
Where can I find preparation resources and guidelines?

Yes, the Stellar ecosystem has advanced security tooling which help identify and address vulnerabilities before and after audits. See a full list of available tooling .

The , including , are available to support your audit readiness.

here
Audit Readiness Checklist
STRIDE threat model framework
Stellar Developers Discord
SCF Build testnet tranche
here
here
eligible
Eligible
here