Skip to main content

Documentation Index

Fetch the complete documentation index at: https://cowswap-mintlify-docs-audit-1775035615.mintlify.app/llms.txt

Use this file to discover all available pages before exploring further.

Security Audits

ComposableCoW has completed multiple independent security audits from reputable firms to validate protocol safety.

Audit History

Ackee Blockchain (2023)

Reviewed core contracts including:
  • ComposableCoW
  • Programmatic order verification
  • Merkle proof validation
  • ERC-1271 signature mechanisms
Their comprehensive assessment examined all core functionality including single orders, merkle tree-based orders, and integration components.

Gnosis Internal Audits

Conducted in two phases:
  1. May/July 2023 - Full contract review with order type implementations and Safe integration
  2. August 2024 - Diff review ensuring subsequent changes maintained security standards

Contract Coverage

Eight contracts received audit clearance:
  • ExtensibleFallbackHandler
  • ComposableCoW
  • TWAP
  • GoodAfterTime
  • PerpetualStableSwap
  • TradeAboveThreshold
  • StopLoss
  • CurrentBlockTimestampFactory

Deployed Addresses

ContractAddress
ComposableCoW0xfdaFc9d1902f4e0b84f65F49f244b32b31013b74
ExtensibleFallbackHandler0x2f55e8b20D0B9FEFA187AA7d00B6Cbe563605bF5
Contracts are consistently deployed across nine networks including Ethereum, Arbitrum, Base, and others.

Vulnerability Reporting

Security issues should be reported to the CoW Protocol Bug Bounty Program or security@cow.fi rather than disclosed publicly. The protocol maintains ongoing security through:
  • Extensive testing
  • Formal verification
  • Open-source review
  • Community participation
Last modified on April 1, 2026