[Ethereum] dHedge - Security Rating 2

Security Rating Level: 2
Evaluation Date: Mar 31st, 2021

1. History & Team (Weight 20%; Score 72)

1.1 Project age (8%; 50)
Launched on mainnet from 2020 Oct, alive for 6 months.
1.2 Past exploits (8%; 100)
Was never attacked
1.3 Team anonymity (2%; 100)
Team are public
1.4 Team experience in programming (2%; 20)
Unknown

2. Exposure (Weight 25%; Score 31.2)

2.1 Historical TVL (17.5%; 26)
Average market share in the past 2Q: 0.1%, less than 0.1%
Data collected from dHEDGE | Stats, Charts and Guide | DeFi Pulse
2.2 Industry segment (5%; 40)
dHedge is a yield aggregator
2.3 Infrastructure (2.5%; 50)
Multiple decentralized oracles for price feed, primarily Chainlink

3. Audit (Weight 35%; Score 78)

Audit report available on: dHedge Platform Smart Contract Audit | iosiro
3.1 Transparency and scope (14%; 100)
Full scope audit done, and report is public
3.2 Audit firm trust score (10.5%; 30)
Audited by iosiro, Tier 3 audit firm
3.3 Audit findings (10.5%; 80)
No critical issues were found in audit
3.4 Other credits (up to additive 5.25%; 5)
Audit done before deployment

4. Code quality (Weight 15%; Score 50)

Repository on github: GitHub - dhedge/dhedge-token-solidity: This is the repo for dHedge DAO token
4.1 Documentation
Top level documentation exists. Minimal comments in explaining how the code connects to the oriented functions.
4.2 Test
Test done and code coverage is 88%

5. Developer community (Weight 5%; Score 56)

5.1 Bug bounty program (3.5%; 80)
Exists. Reward up to $50,000
5.2 Issues raised on Github (1.5%; 0)
0 issues raised on github repository

The N-SCOSS for Compound is 59.8, level 2