Security & Audits
Security is foundational to NEXUS. All smart contracts will undergo rigorous third-party audits before mainnet deployment. Reports will be published here, in full, when complete.
Audit reports coming pre-launch
NEXUS is not yet live on mainnet. Before any smart contract is deployed and before public sale opens, the protocol will be audited by reputable independent firms covering core contracts, agent runtime, and token economics.
When audits are complete, the full reports will be published on this page — unredacted, with auditor signatures, finding severity, and remediation status for every issue raised. Audit firm announcements will be made on our official channels first.
We will not list audit firms or claim completed audits until reports are signed and ready to publish. Anyone making such claims on our behalf before then should be treated as a scam.
Planned audit scope
Bug bounty
A formal bug bounty program will launch with the public sale, run through an established third-party platform. Reward tiers, scope, and disclosure policy will be published here at that time.
Pre-launch responsible disclosure: security@nexus.tbd (real address pending — verify on official channels before sending)
Security commitments
Multi-signature treasury
Protocol treasury will be governed by a multi-sig with public signer set. No single key controls funds.
Upgrade timelocks
Smart contract upgrades will require a publicly visible timelock so the community has time to review changes.
Public audits
Audit reports published in full, including findings the team chose to accept rather than fix, with rationale.
Emergency pause
Circuit breaker mechanism on critical functions, controlled by the multi-sig, for incident response only.