Taran.Space has delivered 5 DEX-focused projects across AMM and stableswap logic, multi-asset swap invariants, Cosmos x/dex modules, cross-chain atomic-swap design, oracle-sensitive DeFi infrastructure, and CosmWasm/Solidity swap-related contracts. The work covers Hydration, MANTRA, Osmosis Transmuter, ZIGChain, and RoofRide, with attention to invariant safety, conversion correctness, oracle integrity, privileged controls, validation paths, and cross-chain swap assumptions.
Empowa / NSE Housing connects Cardano smart contracts with a real-world housing-finance application linked to the Nairobi Securities Exchange. Scope included eUTXO transaction design, order-book behavior, and business-critical contract logic used to coordinate financial activity before release.
The work moved from issue discovery through fix validation and final rechecking, with attention to real-world asset flows, regulated-market context, and the reliability expectations of financial infrastructure.
Hydration is a Polkadot DeFi protocol built around shared liquidity infrastructure. In the Oak Security engagement, we reviewed Hydration’s peg-drift stableswap and oracle components, focusing on AMM invariant safety, oracle integrity, and privileged-control risks.
The review covered Substrate-based DeFi logic where pricing, liquidity movement, and administrative controls interact. Scope included stableswap behavior, oracle-dependent assumptions, edge cases around peg drift, and failure modes that could affect liquidity accounting or market correctness.
ZIGChain is a Cosmos-based Layer 1 focused on wealth management, DeFi infrastructure, and on-chain financial applications. The audits were published by Oak Security, with our work covering multiple ZIGChain releases across custom chain modules, the x/dex module, reward-contract logic, and updates across Cosmos SDK, CosmWasm, and EVM-compatible integration surfaces.
The work spanned application-level DeFi behavior and chain infrastructure, including swap and DEX logic, reward accounting, module validation paths, smart-contract execution assumptions, and the operational safety of financial flows built into the network.
Osmosis Transmuter is a CosmWasm/Rust component for converting between multiple assets within the Osmosis ecosystem. In Oak Security’s public reviews, we examined two versions of the Transmuter contracts, focusing on multi-asset swap behavior, conversion correctness, validation paths, and edge cases that could break accounting or allow invalid asset movement.
The work covered the invariants behind specialized liquidity and conversion flows, including how token balances, swap behavior, and contract validation interact inside a production Cosmos DeFi environment.
MANTRA is an EVM-compatible Layer 1 built around real-world assets and on-chain financial infrastructure. Our Oak Security work covered multiple MANTRA tracks, including DEX functionality, airdrop logic, and later claimdrop-update components across the MANTRA ecosystem.
The reviews focused on DeFi execution paths, token distribution flows, smart-contract correctness, and integration surfaces across Cosmos, EVM, Solidity, Rust, and Go components. The project adds a broad real-world-asset DeFi case with both chain-level and application-level security scope.
RoofRide is a cross-chain DEX built around atomic swaps, designed to let users exchange assets between Layer 1 blockchains without relying on a centralized exchange or custodial intermediary. Taran Space designed and prototyped the system, including Solidity smart contracts, a web application prototype integrated with the Helios light client, and a custom off-chain P2P transport protocol for distributing and executing swap orders.
The work covered cross-chain exchange architecture, swap execution flows, Solidity contract behavior, light-client-assisted verification, and the networking layer needed to coordinate orders outside a centralized backend.
Tell us what you’re building and what kind of security support you need. Telegram is usually the fastest way to reach us. For formal inquiries, you can also use email.
