Huma
  • ABOUT HUMA
    • What is Huma?
    • Why Huma?
    • Key Resources
  • ANNOUNCEMENTS
  • PRODUCTS
    • Huma (2.0)
      • Overview
      • Feathers
      • Modes: Classic vs Maxi
      • Lockup
      • Referral
      • Redemption
      • Integrations
      • User Manuals
        • Deposit
        • Withdrawal
        • Extending Lockup
        • Switching Modes
        • Portfolio
        • Feathers
        • $PST
        • Data Room
      • FAQs
    • Huma Institutional
      • Introduction
        • Overview
        • Pool Types
        • Calendar
        • Admin Roles
      • Tranches
        • P&L Policies
        • Deposit
        • Redemption
      • First Loss Covers
      • User Manuals
        • Lenders
        • Borrowers
          • Payment
          • Loan Management
          • FAQs
        • Pool Admins
          • Pool Owner And Pool Operators
          • Evaluation Agent
  • ECOSYSTEM RESOURCES
    • Technical Docs
      • Huma (2.0)
      • Huma Institutional
    • Smart Contracts
    • Security & Audits
    • Legal
Powered by GitBook
On this page
  • Minimized Admin Rights
  • Top-Tier Audits
  • Infrastructure & Operational Security
  1. ECOSYSTEM RESOURCES

Security & Audits

PreviousSmart ContractsNextLegal

Last updated 1 month ago

At Huma, robust security is embedded at every layer—from smart contracts and backend systems to user interfaces and internal operations—ensuring LPs can participate with confidence.

Minimized Admin Rights

All administrative functions are secured with multisigs, so no single party can act alone. Our smart contracts are specifically engineered to allow admin control over the protocol treasury while preventing access to user funds. This design offers optimal protection for LP funds: even if a multisig were ever compromised, attackers would be unable to access user assets.

Top-Tier Audits

Before any major update goes live on mainnet, it undergoes a comprehensive audit. Our contracts are rigorously reviewed by leading security firms across multiple ecosystems:

  • Solana programs audited by Halborn

    ↳ []

    ↳ []

  • EVM smart contracts audited by Spearbit

    ↳ [] ↳ []

  • Stellar contracts audited by Certora

    ↳ [].

We also maintain an active bug bounty program in collaboration with Spearbit/Cantina to encourage ongoing white-hat reviews.

Infrastructure & Operational Security

Security doesn't stop at smart contracts. We've implemented strong protection across our infrastructure and team operations:

  • End-to-end penetration testing of backend systems

  • Device-level monitoring and endpoint protection (EDR + DM) for all team members

At Huma, we are committed to continuously enhancing our security posture as the protocol evolves, ensuring a secure environment for all participants.

Huma 2.0 Audit Report
Huma Permissioned Audit Report
Audit Report 1
Audit Report 2
Audit Report