chore: add audits & extend configs

Author: sakulstra

.gitignore

@@ -1,6 +1,7 @@
 # build and cache
 cache/
 out/
+zkout/
 
 # general
 .env
@@ -36,4 +37,5 @@ resource_errors.json
 
 # invariants
 _corpus/
-crytic-export/
+crytic-export/
+slither_results.json

Makefile

@@ -43,15 +43,13 @@ git-diff :
 
 # Deploy
 deploy-libs-one	:;
-	FOUNDRY_PROFILE=${chain} forge script scripts/misc/LibraryPreCompileOne.sol --rpc-url ${chain} --ledger --mnemonic-indexes ${MNEMONIC_INDEX} --sender ${LEDGER_SENDER} --slow --broadcast
+	FOUNDRY_PROFILE=${chain} forge script scripts/misc/LibraryPreCompileOne.sol --rpc-url ${chain} --ledger --mnemonic-indexes ${MNEMONIC_INDEX} --sender ${LEDGER_SENDER} --slow --broadcast --verify
 deploy-libs-two	:;
-	FOUNDRY_PROFILE=${chain} forge script scripts/misc/LibraryPreCompileTwo.sol --rpc-url ${chain} --ledger --mnemonic-indexes ${MNEMONIC_INDEX} --sender ${LEDGER_SENDER} --slow --broadcast
+	FOUNDRY_PROFILE=${chain} forge script scripts/misc/LibraryPreCompileTwo.sol --rpc-url ${chain} --ledger --mnemonic-indexes ${MNEMONIC_INDEX} --sender ${LEDGER_SENDER} --slow --broadcast --verify
 
 deploy-libs :
 	make deploy-libs-one chain=${chain}
-	npx catapulta-verify -b broadcast/LibraryPreCompileOne.sol/${chainId}/run-latest.json
 	make deploy-libs-two chain=${chain}
-	npx catapulta-verify -b broadcast/LibraryPreCompileTwo.sol/${chainId}/run-latest.json
 
 
 # Invariants

README.md

@@ -95,6 +95,19 @@ In addition, Enigma Dark has adapted the Foundry-based fuzzing [invariant suite]
 
 <br>
 
+**-> Aave v3.4 - June 2025**
+
+#### Removal of custom GHO. Addition of Multicall & Position manager
+
+- [Certora v3.4](./audits/2025-06-11_Certora_Aave-v3.4_Report.pdf), [Certora v3.4 AIP](./audits/2025-06-11_Certora_Aave-v3.4_AIP_Report.pdf)
+- [StErMi v3.4](./audits/2025-06-11_Stermi_Aave-v3.4_Report.pdf), [StErMi v3.4 AIP](./audits/2025-06-11_Stermi_Aave-v3.4_AIP_Report.pdf)
+- [Blackthorn](./audits/2025-06-12_Blackthorn-v3.4_Report.pdf)
+- [Enigma](./audits/2025-05-13_Enigma_Aave-v3.4.pdf)
+
+In addition, Enigma Dark has adapted the Foundry-based fuzzing [invariant suite](./tests/invariants) to the Aave v3.3 codebase.
+
+<br>
+
 ### Bug bounty
 
 This repository will be subjected to [this bug bounty](https://immunefi.com/bounty/aave/) once the Aave Governance upgrades the smart contracts in the applicable production instances.

audits/2025-05-13_Enigma_Aave-v3.4.pdf

@@ -25,6 +25,24 @@ max_test_rejects = 20000
 [profile.linea]
 evm_version = 'london'
 
+[profile.zksync]
+src = 'zksync'
+test = 'zksync'
+libs = ['lib']
+solc = '0.8.27'
+optimizer = true
+optimizer_runs = 200
+fs_permissions = [{ access = "write", path = "./reports" }]
+ffi = true
+evm_version = 'cancun'
+
+[profile.zksync.zksync]
+bytecode_hash = 'none'
+compile = true
+fallback_oz = true
+mode = '3'
+zksolc = '1.5.13'
+
 [rpc_endpoints]
 mainnet = "${RPC_MAINNET}"
 optimism = "${RPC_OPTIMISM}"
@@ -45,6 +63,9 @@ gnosis = "${RPC_GNOSIS}"
 base = "${RPC_BASE}"
 metis = "${RPC_METIS}"
 linea = "${RPC_LINEA}"
+sonic = "${RPC_SONIC}"
+soneium = "${RPC_SONEIUM}"
+zksync = "${RPC_ZKSYNC}"
 
 [etherscan]
 mainnet = { key = "${ETHERSCAN_API_KEY_MAINNET}", chainId = 1 }
@@ -63,4 +84,5 @@ bnb = { key = "${ETHERSCAN_API_KEY_BNB}", chainId = 56, url = 'https://api.bscsc
 base = { key = "${ETHERSCAN_API_KEY_BASE}", chain = 8453 }
 gnosis = { key = "${ETHERSCAN_API_KEY_GNOSIS}", chainId = 100 }
 metis = { key = "", chainId = 1088, url = 'https://api.routescan.io/v2/network/mainnet/evm/1088/etherscan/api' }
+
 # See more config options https://github.com/gakonst/foundry/tree/master/config