Hello Gnosis DAO members and Gnosis team - excited to introduce Olympix and how we may be able to contribute to the security lifecycle at Gnosis and, by proxy, trust in and adoption of Gnosis projects.
Why Proactive, Pre-Audit Security is a Must
While an audit is a critical step in a sophisticated security process, audits are not foolproof (90% of exploited smart contracts were audited at least once). At Olympix, we believe in empowering internal teams with the tools they need to make their smart contracts as secure as possible before the audit.
- This reduces reliance on audit as the sole source of security
- This reduces audit findings, signalling to users and partners that you write secure code
- This maximizes paid audit time, allowing auditors to focus on novel, sophisticated vulnerabilities that only humans can find
- This reduces the need for multiple audits or the highest cost audits, as teams are able to conduct the first audit in-house
Intro to Olympix
Olympix is a suite of proactive smart contract security tools for developers which includes static analysis, automated unit testing, and mutation testing. Our tools enable your developers (who know the code best) to find and resolve vulnerabilities in-house, prior to the first audit. Teams that use our tools:
- are better prepared for audits (low hanging fruit vulnerabilities already resolved, cleaner code, better line & branch coverage with unit tests, etc)
- see drastically reduced audit findings which gives them greater confidence in that audit and signals to auditors, partners, and users that they are writing more secure code to begin with
- have an additional layer of insurance built into the security process and less reliance on audits
In Q3 of 2024, $60M in exploits would have been prevented had those teams used our tools prior to the audit. Our tools would have prevented the LI.FI exploit, the Penpie exploit, the UwU Lend exploit, and many more.
Why Olympix?
Our tools are built on sophisticated, proprietary architecture, including custom IR (intermediate representation). Why this matters:
-
Eliminates the need for recompilation, resulting in analysis speeds up to 100x faster than solc-dependent tools.
-
Enables analysis of incomplete or non-compilable code, supporting early-stage development and partial updates.
-
Supports multi-version Solidity projects.
-
Handles complex Solidity-specific types and conversions with high accuracy.
Our tools were also built for developers. They are incredibly easy to use and can be installed and run with a single click. The tools not only identify vulnerable lines of code, but explain why the line of code is vulnerable, how the vulnerability plays out in real-world exploits, and how to fix the issue.
Our first tool, the free version of our static analyzer, is used by over 30% of Solidity developers. Our paid tools currently protect over $10B in TVL from startups to global enterprises.
How Olympix Saves on Security Costs
Because we’re a tool rather than a one-off service, we help increase security on a continuous basis without requiring additional spend - essentially allowing you to scale security without scaling security costs.
Teams that use Olympix also see reduced audit spend on pay-per-vulnerability models, or where multiple audits were previously required to reach high confidence.
Next Steps
Please reach out through this forum or via email, twitter, or telegram, and we can provide client case studies, data on our performance vs other tools on market, detailed documentation on our infrastructure, and demos of our tooling.
Contact
website: olympix.ai
email: channi@olympix.ai, sarah@olympix.ai
twitter: Olympix_ai
telegram: channigreenwall, sarahjanehicks