YearRing Fund Protocol V2.1 Beta has not yet completed a third-party external audit. An external audit is in preparation.
| Item | Status |
|---|---|
| External audit | Pending — in preparation |
| Mainnet validation | In progress (invited allowlist) |
| Internal review | Ongoing |
| Public bug bounty | Not yet active |
If you discover a potential vulnerability, please contact:
Please do not publicly disclose vulnerabilities before the team has had a reasonable opportunity to investigate and respond.
Current security review focus (V2.1 Beta contracts):
YearRingCoreVaultV21CoreStrategyManagerV21AccessStrategyManagerV21AaveUSDCStrategyV21LockManagerV21PointsLedgerV01RebateManagerV21TreasuryV21PortfolioLensV21EligibilityModuleV21
The protocol is in a controlled beta validation phase. Users and reviewers should assume:
- Smart contract risk exists — external audit is still pending
- Strategy integration risk exists (Aave V3 USDC supply on Base)
- Admin role concentration risk exists during beta (Timelock + multisig planned but not deployed)
- Liquidity risk may exist during large or simultaneous redemption events
| Website | https://yearringfund.com |
| App | https://app.yearringfund.com |
| Docs | https://docs.yearringfund.com |
| Security | security@yearringfund.com |