# Audits ### **Continuously Audited** Origin has a continuous auditing agreement with [OpenZeppelin](https://openzeppelin.com/) to review 100% of the OETH and OUSD smart contract changes. OpenZeppelin has audited Coinbase, Ethereum, Aave, Compound, and other leading projects. They are one of the most trusted auditing firms in the industry and we are thrilled to count them as part of our extended team. OETH utilized 95% of the same code as OUSD and has been simplified with the removal of LST collateral and farming strategies. Changes were audited by [OpenZeppelin](https://www.openzeppelin.com/) and [Narya](https://narya.ai/) prior to launch. The ARM, OUSD, and Origin’s other yield-bearing tokens have also been thoroughly audited by multiple top security firms listed below. All of Origin’s products are audited extensively before opening up to external deposits. As of 2026, Origin Protocol works with OpenZeppelin, yAudit, NetherMind, and Sigma Prime to review smart contract deployments. * [Sigma Prime, Origin OUSD Upgrade Security Assessment Report v2 - February 2026](https://github.com/OriginProtocol/security/blob/master/audits/Sigma%20Prime%20-%20Origin%20OUSD%20Upgrade%20Security%20Assessment%20Report%20v2%20-%20February%202026.pdf) * [yAudit, Origin ARM - December 2025](https://github.com/OriginProtocol/security/blob/master/audits/yAudit%20-%20Origin%20ARM%20-%20December%202025.pdf) * [Nethermind, Origin Compounding Staking Strategy - October 2025](https://github.com/OriginProtocol/security/blob/master/audits/Nethermind%20-%20Origin%20Compounding%20Straking%20Strategy%20%20Audit%20-%20October%202025.pdf) * [OpenZeppelin, Origin Compounding Staking Strategy - September 2025](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Compounding%20Staking%20Strategy%20Audit%20-%20September%202025.pdf) * [SigmaPrime, Origin Compounding Staking Strategy - September 2025](https://github.com/OriginProtocol/security/blob/master/audits/Sigma%20Prime%20-%20Origin%20Compounding%20Staking%20Strategy%20Audit%20-%20September%202025.pdf) * [OpenZeppelin, Origin Plume Rooster AMO - July 2025](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Plume%20Rooster%20AMO%20-%20July%202025.pdf) * [OpenZeppelin, Origin ARM - June 2025](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20ARM%20-%20June%202025.pdf) * [OpenZeppelin, Wrapped and Vault updates - April 2025](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20WOETH%20and%20Vault%20Update%20-%20April%202025.pdf) * [OpenZeppelin, Sonic SwapX AMO Strategy Audit - April 2025](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Sonic%20SwapX%20AMO%20Strategy%20Audit%20-%20April%202025.pdf) * [OpenZeppelin, OS - February 2025](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Sonic%20Staking%20-%20February%202025.pdf) * [Certora, Formal verification - December 2024](https://github.com/OriginProtocol/security/blob/1e0adf97ee4c148f1a0e19a3556849987776c703/audits/Certora%20-%20Formal%20verification%20-%20December%202024.pdf) * [OpenZeppelin, OUSD Yield Delegation - December 2024](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20OUSD%20-%20December%202024.pdf) * [OpenZeppelin, Origin Arm Audit - November 2024](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Arm%20Audit%20-%20November%202024.pdf) * [OpenZeppelin, Super OETH Aerodrome AMO Strategy Audit - September 2024](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Aerodrome%20AMO%20Strategy%20Audit%20-%20September%202024.pdf) * [OpenZeppelin, OETH Withdrawal Queue, August 2024](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20OETH%20Withdrawal%20Queue%20Audit%20-%20August%202024.pdf) * [OpenZeppelin, OETH Native Staking, June 2024](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20SSV%20Native%20Staking%20-%20June%202024.pdf) * [OpenZeppelin, OGN/OGV Merge, May 2024](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Dollar%20OGV%20and%20OGN%20Merge%20-%20May%202024.pdf) * [Perimeter, OETH Vault Fuzzing, March 2024](https://github.com/OriginProtocol/security/blob/master/audits/Perimeter%20-%20OETHVault%20-%20March%202024%20-%20Fuzzing%20Report.pdf) * [OpenZeppelin, Origin Balancer MetaPool Strategy, Sept 2023](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Balancer%20MetaPool%20Strategy%20-%20Sept%202023.pdf) * [Narya, Origin OETH Report, May 2023, Initial Report](https://github.com/OriginProtocol/security/blob/master/audits/Narya%20-%20Origin%20OETH%20Report%20-%20May%202023%20-%20Initial%20Report.pdf) * [OpenZeppelin, Origin Dollar OETH Integration, May 2023](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Dollar%20OETH%20Integration%20-%20May%202023.pdf) * [OpenZeppelin, OUSD Dripper & Uniswap Strategy Audit, April 2023](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Dollar%20Dripper%20%26%20Uniswap%20strategy%20-%20April%202023.pdf) * [CyberScope, OGN Staking Audit, December 2022](https://github.com/OriginProtocol/security/blob/master/audits/community/CyberScope%20-%20OGN%20Staking%20-%20Dec%202022.pdf) * [OpenZeppelin, OUSD Convex Strategies Audit, October 2022](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Dollar%20Convex%20-%20October%202022.pdf) * [Solidified, wOUSD, ERC721a, Governance, Harvester & Dripper Audit, May 2022](https://github.com/OriginProtocol/security/blob/master/audits/Solidified%20-%20OGV%2C%20wOUSD%2C%20and%20ERC721a%20-%20May%202022.pdf) * [OpenZeppelin, OUSD Audit, August 2021](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Dollar%20-%20October%202021.pdf) * [Solidified, OGN Staking Audit, December 2020](https://github.com/OriginProtocol/security/blob/master/audits/Solidified%20-%20OGN%20Staking%20-%20Dec%202020.pdf) * [Solidified, OUSD Audit, December 2020](https://github.com/OriginProtocol/security/blob/master/audits/Solidified%20-%20Origin%20Dollar%20-%20Dec%202020.pdf) * [Trail of Bits, OUSD Audit, December 2020](https://github.com/OriginProtocol/security/blob/master/audits/Trail%20of%20Bits%20-%20Origin%20Dollar%20-%20Dec%202020.pdf) The governance token (OGN) and all associated governance contracts have been audited as well. * [Trail of Bits, OGN Audit, November 2018](https://github.com/OriginProtocol/security/blob/master/audits/Trail%20of%20Bits%20-%20Origin%20Marketplace%20and%20OGN%20Token%20-%20Nov%202018.pdf) * [Solidified, OGV Audit, May 2022](https://github.com/OriginProtocol/security/blob/master/audits/Solidified%20-%20OGV%2C%20wOUSD%2C%20and%20ERC721a%20-%20May%202022.pdf) * [OpenZeppelin, OUSD Governance Audit, June 2022](https://github.com/OriginProtocol/security/blob/master/audits/OpenZeppelin%20-%20Origin%20Dollar%20Governance%20-%20June%202022.pdf) We're also grateful for the in-depth risk assessments of OETH from [LlamaRisk](https://llamarisk.substack.com/): > [Asset Risk Assessment: Origin Ether (OETH)](https://llamarisk.substack.com/p/asset-risk-assessment-origin-ether) > > [Collateral Risk Assessment - Wrapped Origin ETH (wOETH)](https://hackmd.io/@PrismaRisk/wOETH#Collateral-Risk-Assessment---Wrapped-Origin-ETH-wOETH) > > [Addendum to Collateral Risk Assessment - Wrapped Origin ETH (wOETH)](https://www.llamarisk.com/research/collateral-risk-woeth-addendum1) In addition, the underlying strategies and dependencies that OUSD utilizes have been thoroughly audited by various firms. {% hint style="info" %} OUSD only integrates strategies that have been carefully audited and battle-tested with significant capital over an extended period of time. {% endhint %} **Compound Strategy** Compound has been audited by [Trail of Bits](https://www.trailofbits.com) and [OpenZeppelin](https://openzeppelin.com/) and formally verified by [Certora](https://www.certora.com/). Visit the Compound documentation for their [full list of audits](https://compound.finance/docs/security#audits) including the original code for the modified timelock used by our governance system. **Aave Strategy** Aave has been audited by [Trail of Bits](https://www.trailofbits.com), [OpenZeppelin](https://openzeppelin.com/), [ConsenSys Diligence](https://consensys.net/diligence/), [Certik](https://certik.io/), [MixBytes](https://mixbytes.io/), and [PeckShield](https://peckshield.com/). It has also been formally verified by [Certora](https://www.certora.com/). Visit the Aave documentation for [their full list of audits](https://docs.aave.com/developers/security-and-audits). **Curve Strategy** Curve has been audited by [Trail of Bits](https://www.trailofbits.com) and [Quantstamp](https://quantstamp.com/). Visit the Curve documentation for [their full list of audits](https://docs.curve.finance/security/security/#security-audits). **Convex Strategy** Convex has been audited by [MixBytes](https://mixbytes.io/) and [PeckShield](https://peckshield.com/). Visit the Convex documentation for [their full list of audits](https://docs.convexfinance.com/convexfinance/faq/audits). **Morpho Strategy** Morpho has been audited by [Trail of Bits](https://www.trailofbits.com/), [Solidified](https://solidified.io/), [ChainSecurity](https://chainsecurity.com/), [Omniscia](https://omniscia.io/), [Pessimistic Security](https://pessimistic.io/), and [Spearbit](https://spearbit.com/). Visit the Morpho documentation [for their full list of audits](https://docs.morpho.xyz/security/audits). **Chainlink Oracles** Chainlink has been audited by [Quantstamp](https://github.com/smartcontractkit/chainlink/tree/bafa91c), [SigmaPrime](https://github.com/smartcontractkit/chainlink/tree/cee356), [Callisto](https://gist.github.com/yuriy77k/c3a70d212a7f9ecda715252e45073158), and [Nick Johnson](https://github.com/smartcontractkit/chainlink/tree/5327f9). ### **Full list of audits** The full list of audits can be found on our [GitHub repo](https://github.com/OriginProtocol/security/tree/master/audits), including [spontaneous community audits](https://github.com/OriginProtocol/security/tree/master/audits/community).