Security Rating Level: 2
Evaluation Date: Mar 31st, 2021

1. History & Team (Weight 20%; Score 52)

1.1 Project age (8%; 50)
Launched on mainnet from 2020 Nov, alive for 5 months.
1.2 Past exploits (8%; 50)
Was attacked once
1.3 Team anonymity (2%; 100)
Team are public
1.4 Team experience in programming (2%; 20)
Unknown

2. Exposure (Weight 25%; Score 31.2)

2.1 Historical TVL (17.5%; 26)
Average market share in the past 2Q: 0.1%, less than 0.1%
Data collected from 88mph | Stats, Charts and Guide | DeFi Pulse
2.2 Industry segment (5%; 40)
88mph is a yield aggregator
2.3 Infrastructure (2.5%; 50)
Unknown

3. Audit (Weight 35%; Score 85)

Audit report available on: https://certificate.quantstamp.com/full/88-mph and publications/peckshield-audit-report-88mph Zero Coupon Bonds-v1.0.pdf at master · peckshield/publications · GitHub and https://gateway.pinata.cloud/ipfs/QmQq23FvF4dJNTjEyDGm1hDHBnLrpU1FmJJsch8kCSGt3U
3.1 Transparency and scope (14%; 100)
Full scope audit done, and report is public
3.2 Audit firm trust score (10.5%; 70)
Audited by Certik, Quantstamp and Peckshield, Tier 2 audit firm
3.3 Audit findings (10.5%; 80)
No critical issues were found in audit
3.4 Other credits (up to additive 5.25%; 0)
N/A

4. Code quality (Weight 15%; Score 50)

Repository on github: GitHub - 88mphapp/88mph-contracts
4.1 Documentation
Top level documentation exists. Minimal comments in explaining how the code connects to the oriented functions
4.2 Test
Test done and code coverage is 42%

5. Developer community (Weight 5%; Score 57)

5.1 Bug bounty program (3.5%; 60)
Exists. Reward up to $42,069
5.2 Issues raised on Github (1.5%; 50)
2 issues raised on github repository

The N-SCOSS for Compound is 58.3, level 2