Taran.Space has delivered 8 Polkadot ecosystem projects across Substrate and Polkadot SDK runtimes, parachain infrastructure, XCM configuration, pallet logic, light-client bridges, and developer tooling. The work spans DeFi pallets, identity primitives, cross-chain verification, Polkadot-Ethereum bridge security, and custom tooling for Polkadot and Substrate networks.
Snowbridge is a trustless bridge between Polkadot and Ethereum, using light-client verification instead of a trusted multisig or external validator set. Working as part of Oak Security’s team, we reviewed multiple releases, focusing on the boundaries between consensus assumptions, bridge logic, and Solidity/EVM execution.
Review scope included proof validation, replay resistance, finalized-state assumptions, and contract-side logic for accepting or rejecting cross-chain updates. The work combined cryptographic protocol review with production cross-chain infrastructure security.
Hydration is a Polkadot DeFi protocol built around shared liquidity infrastructure. In the Oak Security engagement, we reviewed Hydration’s peg-drift stableswap and oracle components, focusing on AMM invariant safety, oracle integrity, and privileged-control risks.
The review covered Substrate-based DeFi logic where pricing, liquidity movement, and administrative controls interact. Scope included stableswap behavior, oracle-dependent assumptions, edge cases around peg drift, and failure modes that could affect liquidity accounting or market correctness.
Mythical Games builds blockchain infrastructure for games, digital assets, and player-owned economies. Our Oak Security work covered Mythical’s Polkadot parachain runtime, XCM configuration, and Ethereum-account handling primitives.
The review focused on runtime and transaction-safety risks, including cross-chain configuration assumptions, account-handling behavior, and protocol logic that affects how assets and transactions move through a Substrate-based gaming chain.
KILT is a Polkadot ecosystem protocol for decentralized identity, credentials, and self-sovereign data. For the Oak Security audit, we reviewed KILT’s Substrate bonding-curve pallet, focusing on runtime logic and the correctness of the economic primitive behind the module.
The review covered accounting behavior, edge cases in bonding-curve operations, runtime-level safety, and failure modes that could lead to incorrect balances, exploitable state transitions, or operational lock-up risk.
Centauri connected the Cosmos and Polkadot ecosystems through IBC-style light-client bridging. Our Oak Security work covered Centauri’s verification logic, relayer assumptions, trust boundaries, and the security model behind moving messages and assets between Cosmos chains and DotSama networks.
A later review covered fixes for the Grandpa CosmWasm Light Client, extending the work into proof verification and finality-related bridge logic. The engagement focused on cross-chain correctness, light-client assumptions, and the failure modes that can appear when two different interoperability ecosystems meet.
Bifrost Finance is a Polkadot DeFi protocol focused on liquid staking and liquidity infrastructure. The Oak Security audit included our review of Bifrost’s Substrate lend-market, leverage-staking, and prices pallets.
The work covered leveraged-staking logic, pricing and oracle integration points, economic validation paths, and risks that could lead to fund loss, manipulation, denial of service, or incorrect protocol accounting.
Synternet, formerly Syntropy, builds infrastructure for real-time multichain data, decentralized data marketplaces, and access to indexed blockchain information. Its ecosystem centers on data-layer infrastructure for applications that need live cross-chain signals, monitoring, and execution-ready data.
Taran Space worked with the team on decentralized infrastructure research and prototyping, including designs built with Polkadot SDK, Polygon Edge, and ChainBridge. The engagement focused on protocol architecture, interoperability, and the reliability of systems that coordinate data and execution across decentralized networks.
Polkadot CLI was a custom developer-tooling project for Parity Technologies, built to make interaction with the Polkadot mainnet and custom Substrate networks faster and more practical for engineering workflows. The toolset supported DevOps-style usage, network interaction, testing, and rapid prototyping around Polkadot infrastructure.
The work covered Rust-based command-line tooling for Substrate environments, including support for EVM-compatible workflows on custom networks. It combined protocol familiarity with practical developer experience, turning low-level chain operations into repeatable tools for day-to-day engineering.
Whether you're gearing up for a thorough audit or are still in the planning stages of your project, we encourage you to get in touch. Our expertise extends to architecture and security consulting, catering to a diverse range of needs. Rest assured, all inquiries are attentively processed during business hours. You can expect a response within an hour; however, we appreciate your patience if it occasionally takes a few days.
