Trail of Bits has completed a comprehensive security audit of OISY, a leading Internet Computer-based digital asset wallet, confirming no high-severity issues. OISY is the world’s first fully on-chain wallet to consolidate chains, identities, and primitives into a single immutable DeFi terminal, giving users a centralised view and control over their assets in a decentralised environment.
The audit identified one medium issue, four low issues, eight informational items, and one undetermined finding. All medium and low issues have been addressed, with fixes reviewed and verified to ensure the platform maintains a high level of security and compliance with industry best practices.
The assessment highlights OISY’s commitment to proactive risk management and its focus on delivering a reliable and secure experience for users navigating DeFi across multiple chains. Independent security reviews provide reassurance that potential vulnerabilities are identified and mitigated, strengthening confidence in the platform and the broader Internet Computer ecosystem.
OISY’s team expressed gratitude to Trail of Bits for their thorough review, actionable recommendations, and collaborative approach, which contributed to an effective audit process. Robin Kunzler (Product Security) and Stefan Berger (OISY) from DFINITY are listed as discussion leads for further questions, reinforcing the platform’s transparency and accessibility.
Full details of the OISY report and a complete archive of past audits for Internet Computer projects are available at https://dfinity.org/third-party-security-audits/. Previous audits have covered VetKeys cryptography by NCC Group, ckBTC and Service Nervous System assessments, Threshold ECDSA integrations, Canister Sandboxing, and broader Internet Computer consensus evaluations. These reviews demonstrate the ecosystem’s ongoing focus on robust, independent security practices.
The audit confirms that OISY continues to uphold high standards for data handling, configuration, and operational security, while maintaining transparency with its community. By addressing all findings promptly and publishing the results, the team signals a commitment to trust, accountability, and long-term resilience.
The completion of this audit positions OISY as a secure, user-focused tool for DeFi engagement on the Internet Computer, providing both developers and users with confidence in its infrastructure and ongoing security management.
Dear Reader,
Ledger Life is an independent platform dedicated to covering the Internet Computer (ICP) ecosystem and beyond. We focus on real stories, builder updates, project launches, and the quiet innovations that often get missed.
We’re not backed by sponsors. We rely on readers like you.
If you find value in what we publish—whether it’s deep dives into dApps, explainers on decentralised tech, or just keeping track of what’s moving in Web3—please consider making a donation. It helps us cover costs, stay consistent, and remain truly independent.
Your support goes a long way.
🧠 ICP Principal: ins6i-d53ug-zxmgh-qvum3-r3pvl-ufcvu-bdyon-ovzdy-d26k3-lgq2v-3qe
🧾 ICP Address: f8deb966878f8b83204b251d5d799e0345ea72b8e62e8cf9da8d8830e1b3b05f
🪙 BTC Wallet: bc1pp5kuez9r2atdmrp4jmu6fxersny4uhnaxyrxau4dg7365je8sy2q9zff6p
Every contribution helps keep the lights on, the stories flowing, and the crypto clutter out.
Thank you for reading, sharing, and being part of this experiment in decentralised media.
—Team Ledger Life
