Summary

Arbitrary Execution conducted a security assessment of the Aztec Connect smart contracts. The Aztec protocol uses PLONK technology for privacy and fast transactions on Ethereum. Aztec Connect allows users to interact with external DeFi protocols through bridges within Aztec's layer 2.

The assessment resulted in findings ranging in severity from low to note (informational). One low severity finding highlighted the absence of safety checks for the protocol's escape hatch parameters. Two other low severity findings were found related to a time delay in the escape hatch mechanism. Additional low severity findings involved malfunctioning assets and bridges, as well as safety checks in the TokenTransfers contract. Note severity findings provided observations regarding code hygiene, documentation, and best practices.

The Aztec team has fixed or acknowledged all major issues identified in the engagement.