GET /audits
Endpoint to retrieve Hacken audits information.
Requestā
Endpoint
GET https://hacken.io/api/audits
Parametersā
No parameters are required.
Rate Limitingā
The Audits API does not have rate limits.
Authenticationā
No authentication is required to use the Audits API.
Responseā
Response body schemaā
[
// Array of audits
{
"audit_name": "string", // Name of the audit
"client_name": "string", // Name of the client
"audit_date": "string", // Date of the audit
"scope_parameters": {
"repository": "string", // Repository of the audit
"commit": "string", // Commit hash of the audit
"assets_audited": ["string"] // List of assets audited
},
"audit_type": "string", // Type of the audit
"labels": ["string"], // Labels of the audit
"platforms": ["string"], // Platforms of the audit
"languages": ["string"], // Languages of the audit
"report_link": "string", // Link to the audit report
"total_findings": "number", // Total number of findings
"project_links": [ // Array of links related to the project
{
"name": "string", // e.g., "website", "twitter", "github"
"link": "string" // URL to the resource
}
// ...other links
],
"audit_description": "string", // A brief description
"issues": [ // List of findings or issues
{
"status": "string", // e.g. "FIXED", "UNFIXED", "ACCEPTED", "MITIGATED"
"severity": "string", // e.g. "CRITICAL", "HIGH", "MEDIUM", "LOW", "OBSERVATION"
"name": "string" // A title or short identifier for the issue
}
// ...additional issues
],
"audited_contracts": [ // Contracts audited verified with Sourcify, including deployed info & GitHub links
{
"chain": "string", // e.g., "ethereum", "bsc"
"chainId": "number", // e.g., 1, 56, etc.
"address": "string", // Deployed contract address
"repository": "string", // Repo URL if applicable
"commit": "string", // Commit reference if applicable
"filePath": "string", // Path to the contract file
"contractName": "string" // Name of the contract
}
// ...additional contracts
]
}
]
Response body exampleā
[
{
"audit_name": "[SCA] CratD2C / Token / Jan2024",
"client_name": "CratD2C",
"audit_date": "2024-02-19T22:59:59.000Z",
"scope_parameters": {
"repository": "https://github.com/samaros/CratD2C",
"commit": "9dfbd5b",
"assets_audited": [
"contracts/CratCrowdSale.sol",
"contracts/CratToken.sol",
"contracts/interfaces/ICratCrowdsale.sol"
]
},
"audit_type": "SCA",
"labels": [
"Fungible Token",
"ERC-20"
],
"platforms": [
"BNB Chain",
"Other"
],
"languages": [
"Solidity"
],
"report_link": "https://audits-dev.hacken.io/a/4qMS-8",
"total_findings": 7,
"project_links": [
{
"name": "website",
"link": "https://cratd2csmartchain.io/"
}
],
"audit_description": "CratD2C represents a pioneering platform in the blockchain space, combining the robustness of Delegated Proof of Stake (DPoS) with Layer-1 architecture to achieve a new standard in security, speed, and scalability. At its core, CratD2C transforms e-commerce by facilitating direct connections between businesses and consumers. This is achieved through a secure, transparent, cost-effective smart contract system built on its DPoS blockchain framework.",
"issues": [
{
"status": "FIXED",
"severity": "OBSERVATION",
"name": "Missing Zero Address Validation"
},
{
"status": "FIXED",
"severity": "MEDIUM",
"name": "Missing Cap Limit Check"
},
{
"status": "FIXED",
"severity": "MEDIUM",
"name": "Refund Interest Rate Can be Frontrunned "
},
{
"status": "FIXED",
"severity": "CRITICAL",
"name": "Wrong Initial Supply Amount"
},
{
"status": "FIXED",
"severity": "CRITICAL",
"name": "Erroneous Decimal Handling in Token Purchase Function"
},
{
"status": "FIXED",
"severity": "MEDIUM",
"name": "The Owner Can Frontrun the User's Transaction"
},
{
"status": "ACCEPTED",
"severity": "OBSERVATION",
"name": "Redundant Function"
}
],
"audited_contracts": [
{
"chain": "ethereum",
"chainId": 1,
"address": "0xdAC17F958D2ee523a2206206994597C13D831ec7",
"repository": "https://github.com/samaros/CratD2C",
"commit": "b405b593eac47ccf370d72cbe450209b4b822aa8",
"filePath": "contracts/CratCrowdSale.sol",
"contractName": "CratCrowdSale.sol"
}
]
}
]