QuickPerps

This audit covered QuickSwap’s new perpetual futures exchange called QuickPerps. The protocol is a fork of GMX and both adds and removes some functionality, such as the integration of a new pricing oracle that makes use of the Pyth Network. Our security assessment was a full review of the QuickPerps protocol and its smart contracts. We have thoroughly reviewed each contract individually, as well as the system as a whole. During our audit, we have identified 1 critical severity vulnerability in the OrderBook. It would allow an attacker to drain all WETH, effectively stealing it from the orders of other users. We have also identified 2 high severity vulnerabilities, various minor vulnerabilities and code optimisations. Finally, all of our reported issues were fixed by the development team and consequently validated by us. We can confidently say that the overall security and code quality have increased after completion of our audit.