Security · Verify Everything

POTS Security
Don't Trust. Verify.

Security is the highest priority of POTS Core. Crypto has a long and brutal history of exploits — billions lost to hacks, rug pulls, and protocol failures. Every POTS contract is publicly verifiable on-chain. Size, visibility, and time are the true tests of a smart contract's security.

Verify Contracts Read FAQRead FAQ
CertiK Audited by
Bitlabs Audited by
$1,000,000 Bug bounty pool
Key Takeaways
  • Audited by CertiK (4,000+ projects, $360B+ secured) and Bitlabs
  • $1,000,000 USD bug bounty via CertiK Skynet — active and open
  • All contract addresses publicly verifiable on BSCScan
  • Responsible disclosure: [email protected] — full bounty for valid reports
Security Principles

Security Principles

Every design decision in POTS is guided by four core principles.

01

Business Integrity

Protocol logic is designed to be complete and consistent. No edge case should compromise user funds. Every code path has defined, expected behavior.

02

Code Standardization

Industry-standard coding practices. Rigorous peer review before any deployment. No bespoke patterns that haven't been battle-tested at scale.

03

Logical Simplicity

Complex systems fail in complex ways. Contract logic is kept as simple as possible to minimize attack surface. Complexity is the enemy of security.

04

Decentralization

No single point of failure. Distributed architecture ensures no single actor can compromise the protocol. Treasury: 25-of-50 multi-sig. Settlement: Polygon CTF Exchange.

Trust by Design

Transparency, Security & Immutability

POTS is designed around one principle: in traditional systems, users rely on promises. In POTS, users verify through on-chain data, contract logic, and transparent ecosystem mechanisms.

On-Chain Visibility

Every transaction, every fund movement, every contract interaction is permanently recorded on the blockchain. Nothing is hidden — everything is auditable.

Transparent Liquidity Structure

Protocol-owned LP is publicly verifiable. Blackhole addresses are on-chain. Every reserve layer — V_LP, T_RBS, T_ST — has a public contract address.

Smart Contract-Based Execution

No manual intervention in protocol operations. RBS, YRF, MCL, and AEM all execute automatically via smart contract logic — not human discretion.

Community-Driven Growth

Strategic decisions require 25-of-50 multi-sig consensus via Snapshot DAO. No single entity — including the founding team — can unilaterally act on protocol funds.

Liquidity-Based System Stability

The $1 IBS floor is enforced by real LP collateral — not algorithmic promises. Protocol-owned liquidity is permanent: immutable, verifiable, and not subject to LP removal.

Long-Term Sustainability

After 500 days: contract ownership renounced, LP migrates to DEX, all taxes removed. The protocol is designed to become fully autonomous — no admin keys, no backdoors.

Don't trust — BUT VERIFY. Security comes from transparency and immutability.
Audit Reports

Audit Reports

All audit reports are publicly available. Security is not a claim — it is a verifiable record.

CertiK
4,000+ projects · $360B+ secured

One of the world's most recognized blockchain security firms. CertiK Skynet provides continuous real-time monitoring of POTS contracts post-audit.

POTSMoney Security Monitor ↗ IBS Smart Contracts Audit ↗
Bitlabs
DeFi specialist · Formal verification

Specialist blockchain security firm focused on DeFi protocol auditing and formal verification. Provides mathematical proof of contract correctness.

IBS-POTS Contract Audit Report ↗

More audits are on the way. Additional security partners will be engaged as the protocol evolves. All future audit reports will be published here.

On-Chain Evidence

Proof of Trust

Not claims — on-chain facts. Every figure below is verifiable by anyone on BNB Smart Chain.

$10M+
LP Permanently Burned

Protocol-owned liquidity sent to the zero address. Cannot be retrieved or modified by any party — ever.

91.18%
IBS in Blackhole

91.18% of IBS circulating supply resides in verified blackhole addresses. Verifiable on BSCScan at any time.

12.85%
POTS in Blackhole

12.85% of total POTS supply permanently removed from circulation. Verifiable on BSCScan.

Zero
Backdoors / Modifications

No minting capability, no contract modifications, no admin backdoors. Ownership renounced to zero address.

Source: BSCScan · As of 2026

Bug Bounty

Bug Bounty & Responsible Disclosure

POTS values the work of white hat hackers and independent security researchers.

CertiK Skynet Bug Bounty
$1,000,000 USD Reward Pool
View on CertiK Skynet ↗

Powered by CertiK Skynet's real-time security monitoring. Covers all critical vulnerabilities in POTS smart contracts and infrastructure.

Scope: In-Scope Impacts

  • Theft or freezing of user principal (any amount)
  • Theft or freezing of unclaimed yield (any amount)
  • Theft of governance funds
  • Disruption of governance activity
  • Unauthorized access to sensitive pages or data
  • User data leaks or deletion
1
Submit your report

Email with clear, concise steps to reproduce the vulnerability in written or video format.

2
Acknowledgment

The POTS security team will acknowledge your submission promptly and work with you in good faith to resolve the issue.

3
Receive full bounty

Valid critical vulnerabilities receive the full bounty reward. Do not disclose publicly before resolution — responsible disclosure protects users and ensures you receive the full reward.

Do not disclose vulnerabilities publicly before they have been resolved. Premature disclosure endangers users and forfeits bounty eligibility.
Self-Custody Security

On-Chain Verification Tools

Every on-chain action is verifiable. These are the standard tools for checking POTS contracts, treasury, governance, and your own wallet permissions.

Golden Security Rule No Audit = No Safety Always verify contract status before interacting with any DeFi protocol
BSCScan
Blockchain Explorer

Verify contract addresses, transaction history, token holders, and ownership status. Primary tool for on-chain verification on BNB Smart Chain.

bscscan.com ↗
DEXTools
Real-Time Price Data

Monitor live price, trading volume, liquidity depth, and market pair analytics for IBS and POTS tokens.

dextools.io ↗
DEX Screener
Liquidity Analytics

Track liquidity pool data, price charts, and token pair metrics across decentralized exchanges in real time.

dexscreener.com ↗
Safe Wallet
Multi-Sig Treasury

Verify the POTS treasury multi-sig: 50 signers, minimum 25 required to approve any transaction. No unilateral fund movement is possible.

View Treasury ↗
Snapshot
DAO Governance

All POTS governance proposals and votes are on Snapshot. Every strategic decision requires community participation — no off-chain closed-door decisions.

snapshot.org ↗
Revoke.cash
Wallet Permission Audit

Review and revoke token approvals granted to smart contracts. Audit wallet permissions regularly — revoke anything you no longer actively use.

revoke.cash ↗

How to Verify: BSCScan Ownership Renouncement

Confirm that POTS contract ownership has been permanently renounced — meaning no one can modify the contract code.

1
Open BSCScan and search for the contract address (e.g. IBS: 0x255e746aBb8D9Acac00d6d023e5E63E3b8DFA7cd)
2
Go to Contract → Read Contract, find and call the owner() function
3
Result should be 0x000000000000000000000000000000000000dEaD — the Zero Address. This means ownership is permanently renounced.
Zero Address = no owner. Contract logic is immutable — no modifications, no backdoors, no admin keys.

How to Audit Your Wallet Permissions (Revoke.cash)

Regular permission audits protect against unlimited-approval exploits — a common vector in DeFi.

1
Connect — Go to revoke.cash and connect your wallet
2
Audit Permissions — Review all token approvals you have granted to smart contracts
3
Revoke — Remove approvals for any contract you no longer actively use

Frequently Asked Questions

01 Has POTS been audited?
Yes. POTS smart contracts are audited by CertiK (4,000+ projects audited, $360B+ in on-chain assets secured) and Bitlabs (specialist DeFi protocol auditing and formal verification). All reports are publicly available via the links on this page.
02 What is the POTS bug bounty?
$1,000,000 USD bug bounty powered by CertiK Skynet's real-time security monitoring. Covers critical vulnerabilities in all POTS smart contracts and infrastructure. To report: [email protected]. Include clear steps to reproduce. Do not disclose publicly before resolution.
03 What does the bug bounty cover?
Both programs cover: theft or freezing of user principal, theft of unclaimed yield, theft of governance funds, disruption of governance activity, unauthorized access to sensitive pages, and user data leaks or deletion.
04 How can I verify POTS contracts?
All canonical contract addresses are listed at /resources/contracts/ with direct BSCScan links. IBS: 0x255e746aBb8D9Acac00d6d023e5E63E3b8DFA7cd. POTS: 0x5FBA1248256c5d6bA1B66566CD45Fa34bcEe747f. Always verify through official channels before interacting.
05 How does POTS approach security in its design?
Four core principles: Business Integrity (no edge case compromises user funds), Code Standardization (industry-standard practices, rigorous peer review), Logical Simplicity (minimal attack surface), and Decentralization (no single point of failure — 25-of-50 multi-sig for treasury).

Verified.
Now take the next step.

CertiK audited. Bitlabs audited. $1M bug bounty active. 25-of-50 multi-sig treasury. You've done the work — the ecosystem is waiting.

Join ProtocolJoin Protocol View ContractsView Contracts
Join Pots