Veridise Audit Complete: Strengthening the Core of Inception’s Infrastructure
Over the past few months, we’ve been expanding our vault architecture to support modular, ERC-4626-based restaking across EigenLayer, Symbiotic, and beyond. As part of that process, we worked with Veridise, one of the most respected formal verification and security firms in the space, to audit our vaults and adapter infrastructure.
Their review covered our most critical contracts, the ones responsible for handling deposits, routing delegation strategies, and unlocking claims across restaking networks. And we’re happy to share that the audit is now complete.
What Was Audited
The audit focused on the architecture that powers Inception’s ERC-4626 restaking vaults, including:
- Our vault logic: Which mints tokens for user deposits and manages both flash and asynchronous withdrawals
- Delegation adapters: Which route deposited assets to external restaking networks like EigenLayer, Symbiotic, and Mellow.
- Claim and reward mechanisms: Which bring back staked assets and make them available for withdrawal
- Core interfaces and fee/referral handling
This architecture is what allows users to stake once and get access to multiple layers of rewards and further DeFi utility.
Key Findings
Veridise spent six weeks on this engagement and reported 27 total issues, broken down as:
- 0 Critical / 0 High
- 5 Medium: including vault adapter mismatches and logic edge cases
- 8 Low: mainly ERC standard inconsistencies and input checks
- 14 Info/Warnings: Covering gas optimization, role centralization, and documentation gaps.
We’ve already fixed 22 of the 27 issues, including all medium and low-severity findings. The rest were acknowledged and determined to either be intended behavior or related to components outside the audit’s scope.
You can see the full breakdown in the report below:
→ Veridise Audit Report: Inception Vaults
Why It Matters
These vaults are the foundation of everything being built at Inception. They hold user funds, define how assets get delegated across networks, and determine how capital flows back to stakers. If any part of that flow fails, even under edge conditions, the consequences are direct.
We’ve designed these systems to support composability, strategy upgrades, and staking abstraction. But all of that only works if the base layer is sound. This audit was a step toward ensuring exactly that.
Going Forward
Security is not something we treat as a milestone, it’s part of our ongoing process. We’ll continue to work with top audit firms as we expand our strategy sets, add MetaLRTs, and introduce new delegation flows.
Our next steps include a second audit round for additional adapters and new vault configurations, followed by open-sourcing more parts of the repo and pushing forward on transparency.
You can read the full Veridise audit report here:
→ Veridise Audit Report: Inception Vaults
or any other report we made in the past here:
As always, we welcome review, feedback, and collaboration. If you want to dive into the code, audit alongside us, or explore delegation strategies, jump into our docs or reach out through our Discord Server.
Let’s keep building safer infrastructure for network security.
