Security Rating Level: 3
Evaluation Date: September 30th, 2021

1. History & Team (Weight 20%; Score 93)

1.1 Project age (8%; 100)
Launched on Polygon in 2020 October, alive for 12 months.
1.2 Past exploits (8%; 100)
Was never attacked since launch
1.3 Team anonymity (2%; 100)
Team are public
1.4 Team experience in programming (2%; 70)
CTO started software programming since 2016

2. Exposure (Weight 25%; Score 73.5)

2.1 Historical TVL (17.5%; 70)
Average market share in the past 4Q: 4.2%, 2.3%, 3.9%, 4.2%
Data collected from Dfyn-network Protocol: TVL and stats - DefiLlama
2.2 Industry segment (5%; 90)
Dfyn Network is an exchange
2.3 Infrastructure (2.5%; 65)
Oracle is needed for price feed (Chainlink), a decentralised single oracle

3. Audit (Weight 35%; Score 67)

Audit report available on: Dfyn | Smart Contract Audit Report | 2021 | QuillAudits | by QuillHash Team | Medium
3.1 Transparency and scope (14%; 70)
Core contracts were partially audited (for farming) as Dfyn folks Uniswap for its swap unit. Report is public
3.2 Audit firm trust score (10.5%; 50)
Audited by QuillAudits, Tier 3 audit firm
3.3 Audit findings (10.5%; 80)
No critical issues were found in audit
3.4 Other credits (up to additive 5.25%; 0)
N/A

4. Code quality (Weight 15%; Score 35)

Repository on github: GitHub - dfyn/dfyn-exchange
4.1 Documentation
No top level documentation found. Comments in code are minimal.
4.2 Test
Full suite of test done but code coverage not visible.

5. Developer community (Weight 5%; Score 0)

5.1 Bug bounty program (3.5%; 0)
Not exists
5.2 Issues raised on Github (1.5%; 0)
No issues raised on github repository

The N-SCOSS for Compound is 66.475, level 3