Security Audits
ComposableCoW has completed multiple independent security audits from reputable firms to validate protocol safety.Audit History
Ackee Blockchain (2023)
Reviewed core contracts including:- ComposableCoW
- Conditional order verification
- Merkle proof validation
- ERC-1271 signature mechanisms
Gnosis Internal Audits
Conducted in two phases:- May/July 2023 - Full contract review with order type implementations and Safe integration
- August 2024 - Diff review ensuring subsequent changes maintained security standards
Contract Coverage
Eight contracts received audit clearance:- ExtensibleFallbackHandler
- ComposableCoW
- TWAP
- GoodAfterTime
- PerpetualStableSwap
- TradeAboveThreshold
- StopLoss
- CurrentBlockTimestampFactory
Deployed Addresses
| Contract | Address |
|---|---|
| ComposableCoW | 0xfdaFc9d1902f4e0b84f65F49f244b32b31013b74 |
| ExtensibleFallbackHandler | 0x2f55e8b20D0B9FEFA187AA7d00B6Cbe563605bF5 |
Vulnerability Reporting
Security issues should be reported to the CoW Protocol Bug Bounty Program or security@cow.fi rather than disclosed publicly. The protocol maintains ongoing security through:- Extensive testing
- Formal verification
- Open-source review
- Community participation