[Polygon] QuickSwap - Security Rating 3 (to be listed)

Security Rating Level: 3
Evaluation Date: September 30th, 2021

1. History & Team (Weight 20%; Score 97)

1.1 Project age (8%; 100)
Launched on Polygon in 2020 September, alive for 13 months.
1.2 Past exploits (8%; 100)
Was attacked once
1.3 Team anonymity (2%; 100)
Team are public
1.4 Team experience in programming (2%; 70)
CEO started software proramming from 2015

2. Exposure (Weight 25%; Score 92.5)

2.1 Historical TVL (17.5%; 98.5)
Average market share in the past 4Q: 16.5%, 39.1%, 96.1%, 94.5%
Data collected from DeBank | DeFi Wallet for Ethereum Users
2.2 Industry segment (5%; 90)
QuickSwap is an exchange
2.3 Infrastructure (2.5%; 80)
No oracle needed for price feed

3. Audit (Weight 35%; Score 50)

No audit was performed. Team described the protocol of an absolute folk of Uniswap so refers to Uniswap’s audit as relevant. The score is given as an overall score.for this pillar, as the N-SCOSS rating rules are not appropriate to apply in this situation.

4. Code quality (Weight 15%; Score 30)

Repository on github: GitHub - QuickSwap/quickswap-core
4.1 Documentation
The team’s description of code is that “QuickSwap core contracts are the fork of Uniswap”. No docs of their own have been developed.
4.2 Test
Test suite exists but code coverage not visible

5. Developer community (Weight 5%; Score 22.5)

5.1 Bug bounty program (3.5%; 0)
Not exists
5.2 Issues raised on Github (1.5%; 75)
6 issues raised on github repository

The N-SCOSS for Compound is 65.65, level 3