We are happy to announce that Everstake’s 0.1+ ETH Staking Solution, which enables users to stake as little as 0.1 ETH, has undergone an independent audit by Trail of Bits, completing a fixed review for 5 out of 7 issues identified.
According to Trail of Bits, “Everstake engaged Trail of Bits to review the security of its Ethereum staking protocol. The protocol consists of several smart contracts that hold user deposits and alert Everstake infrastructure when validators should come online and go offline.” The audit was conducted between November 25 and December 6, 2024, with a follow-up fix review in January 2025.
The report evaluated multiple aspects of the protocol, including authentication, access controls, documentation, and transaction safety. The assessment highlighted that “the project uses Solidity 0.8, which includes overflow checks” and that “the code features prominent use of events” to enhance auditing capabilities.
Trail of Bits identified several areas for improvement, stating that “the project uses archived and outdated tools” and “documentation is out of sync with the code.” The report also noted that “storage variables [were] updated by multiple contracts in the inheritance tree,” which could lead to maintainability issues.
Following the initial review, Everstake addressed the majority of the findings. “Of the seven issues described in this report, Everstake has resolved five issues, has partially resolved one issue, and has not resolved the remaining one issue.” The team migrated to Hardhat for development, updated dependencies, improved documentation, and refactored duplicated code.
The full report, complete with all findings and recommendations, is available at Trail of Bits’ GitHub.
About Trail of Bits
Trail of Bits has been a renowned provider of technical security assessment and advisory services since 2012. Its clientele includes HashiCorp, Google, Microsoft, Western Digital, and Zoom. In the blockchain space, the company’s portfolio includes Algorand, Bitcoin SV, Chainlink, Compound, Ethereum 2.0, MakerDAO, Matic, Uniswap, Web3, and Zcash.
About Everstake’s 0.1+ ETH Staking Solution
Everstake’s 0.1+ ETH Staking Solution is a non-custodial, non-liquid staking pool enabling anyone to delegate as little as 0.1 ETH. To ensure its security and safety, Everstake regularly orders independent audits from the world’s leading security experts, such as Trail of Bits.
The solution is used in some of the most secure hardware wallets, such as Trezor, which offers a suite of different wallets, all of which work with over a thousand tokens.
Stake with Everstake | Follow us on X | Connect with us on Discord
***
Everstake is a software platform that provides infrastructure tools and resources for users but does not offer investment advice or investment opportunities, manage funds, facilitate collective investment schemes, provide financial services, or take custody of, or otherwise hold or manage, customer assets. Everstake does not conduct any independent diligence on or substantive review of any blockchain asset, digital currency, cryptocurrency, or associated funds. Everstake’s provision of technology services allowing a user to stake digital assets is not an endorsement or a recommendation of any digital assets by it. Users are fully and solely responsible for evaluating whether to stake digital assets.
