Softstack completed multi-round security audit of the Lambdaplex Core Contracts on Hedera, covering all three pillars of the protocol.
softstack, the leading European Web3 cybersecurity firm, has completed an independent security assessment of the Lambdaplex Core Contracts, the on-chain backbone of Lambdaplex’s non-custodial trading protocol on Hedera. The expanded engagement covered three contract suites: the Vault, the Orders, and the Settlement layer. Across the full review, 22 issues were identified, with all findings addressed in close collaboration with the Lambdaplex engineering team.
The audit combined manual expert review with automated security testing, focusing on the areas most material to a Hedera-native trading venue: signed-order authorization, share accounting and inventory rebalancing in the vault, oracle proof verification with Supra, IOC/FOK execution semantics in the Order Hook, and atomic settlement through the Hedera Token Service via cryptoTransfer. Every contract in scope was reviewed against the Lambdaplex security claims, including reentrancy protection, access control, replay protection, and oracle integrity.
Also Read: CIO Influence Interview with Hugo Dozois-Caouette, CTO and Co-founder at MaintainX
Quotes
“Security is foundational to what we are building. The softstack engagement helped us harden the Core Contracts before we go to mainnet, and gave us the assurance we needed to go to market.”
— Matthew DeLorenzo, CEO, Lambdaplex
“A meaningful audit does more than surface findings, it sharpens architecture and reduces real-world risk. Lambdaplex moved quickly, implemented every fix that was actionable. That is exactly how a serious team handles security.”
— Yannik Heinze, CEO, softstack GmbH
Catch more CIO Insights: What Does “Job-Ready” Really Mean in IT and Cybersecurity?
[To share your insights with us, please write to psen@itechseries.com ]
