| Version | Supported |
|---|---|
| 0.1.x | ✅ |
Do not open a public GitHub issue for security vulnerabilities.
Email: security@paystream.example
You will receive acknowledgement within 48 hours and a resolution timeline within 7 days.
| Date | Auditor | Report | Remediation |
|---|---|---|---|
| 2026-04 | Trail of Bits | 2026-04-trail-of-bits.md | remediation.md |
All high and medium findings from the April 2026 audit have been resolved. One low-severity finding (LOW-02: re-initialization guard) remains open and must be resolved before mainnet deployment. See audits/remediation.md for the full status breakdown.
- All state-changing functions require explicit
require_auth()from the relevant party - Employer cannot withdraw employee funds; employee cannot access unearned funds
- Claimable amount is always capped at
deposit - withdrawn— no over-payment possible - Cancel pays employee their earned share first, then refunds employer the remainder
- Paused time is excluded from accrual —
last_withdraw_timeis reset on resume - All token amounts use
i128— no floating-point arithmetic - Stop time is validated to be in the future at stream creation