{ "schema": "astra-public-audit-status-v0.1", "generatedAt": "2026-05-13T20:16:14.165Z", "project": "AstraTreasury Protocol", "version": "0.1.1", "network": "Base Sepolia", "publicSite": { "root": "https://astratreasury.ai", "www": "https://www.astratreasury.ai" }, "auditReadiness": { "status": "READY_FOR_EXTERNAL_AUDIT", "mainnetBlocked": true, "mainnetBlockReason": "Mainnet remains blocked pending external audit, legal review, multisig finalization, production RPC setup, and go/no-go approval.", "realTreasuryFunds": false, "publicTokenSale": false, "investmentProduct": false }, "findings": { "total": 1, "open": 0, "criticalOrHighOpen": 0, "byStatus": { "FIX_VERIFIED": 1 }, "bySeverity": { "MEDIUM": 1 }, "items": [ { "id": "ASTRA-001", "source": "Internal", "severity": "MEDIUM", "title": "Cancelled signals executable in v0.1.0", "status": "FIX_VERIFIED", "owner": "AstraTreasury", "retestStatus": "Local stateful audit passing", "notes": "Found internally and fixed in v0.1.1 before external audit." } ] }, "auditStart": { "manifestExists": true, "manifest": { "schema": "astra-audit-start-manifest-v0.1", "generatedAt": "2026-05-12T13:09:43.438Z", "project": "AstraTreasury Protocol", "version": "0.1.1", "auditStatus": "pending-auditor-selection-or-kickoff", "network": "Base Sepolia", "mainnetLaunched": false, "realTreasuryFunds": false, "publicTokenSale": false, "git": { "branch": "main", "commit": "8d75a3fafb350ebe155ae38c6407cff2f5666b7d", "shortCommit": "8d75a3f", "workingTreeClean": false, "status": "M deployments/base-sepolia.public.json\n M docs/audit-remediation/REMEDIATION_LOG.md\n M docs/audit-start/AUDIT_START_MANIFEST.md\n M docs/audit-start/audit-start-manifest.json\n M docs/governance-gate/GOVERNANCE_GATE_STATUS.md\n M docs/governance-gate/governance-gate-status.json\n M docs/mainnet-live/SAFE_TRANSACTION_PAYLOADS_V1.md\n M hardhat.config.ts\n M package.json\n M public-docs/audit-status.json\n M public-docs/audit.html\n M public-docs/evidence-index.json\n M public-docs/evidence.html\n M public-docs/governance-status.json\n M public-docs/governance.html\n M public-docs/live-status.json\n M public-docs/live.html\n M public-docs/mainnet-event-monitor-status.json\n M public-docs/mainnet-events.html\n M public-docs/mainnet-execution-status.json\n M public-docs/mainnet-monitor-status.json\n M public-docs/monitor.html\n M public-docs/package-inventory.json\n M public-docs/packages.html\n M public-docs/restricted-operations-status.json\n M public-docs/transparency-status.json\n M public-docs/transparency.html\n M services/public-refresh/refresh-loop.mjs\n M services/public-site/server.mjs\n?? astra-treasury-protocol@0.1.0\n?? configs/mainnet-alert-escalation.config.json\n?? docs/mainnet-live/MAINNET_ALERT_ESCALATION_RUNBOOK.md\n?? docs/mainnet-live/MAINNET_ALERT_STATUS.md\n?? docs/mainnet-live/PAUSE_EVENT_RESPONSE.md\n?? docs/mainnet-live/RESTRICTED_FLAG_RESPONSE.md\n?? docs/mainnet-live/ROLE_CHANGE_RESPONSE.md\n?? docs/mainnet-live/VAULT_OUTFLOW_RESPONSE.md\n?? node\n?? public-docs/alerts.html\n?? public-docs/mainnet-alerts-status.json\n?? scripts/release/package-mainnet-alert-escalation.sh\n?? services/mainnet-alerts/" }, "packages": { "release/astra-treasury-protocol-v0.1.1-audit-candidate.tar.gz": { "exists": true }, "release/astra-treasury-protocol-v0.1.1-external-review.tar.gz": { "exists": true }, "release/astra-treasury-protocol-v0.1.1-audit-intake.tar.gz": { "exists": true }, "release/astra-treasury-protocol-v0.1.1-audit-outreach.tar.gz": { "exists": true }, "release/astra-treasury-protocol-v0.1.1-auditor-selection.tar.gz": { "exists": true }, "release/astra-treasury-protocol-v0.1.1-audit-kickoff.tar.gz": { "exists": true }, "release/astra-treasury-protocol-v0.1.1-mainnet-planning.tar.gz": { "exists": true }, "release/astra-treasury-protocol-v0.1.1-mainnet-runbook.tar.gz": { "exists": true }, "release/astra-treasury-protocol-v0.1.1-safe-planning.tar.gz": { "exists": true }, "release/astra-treasury-protocol-v0.1.1-incident-response.tar.gz": { "exists": true } }, "requiredGates": [ "npm run release:prepare", "npm run audit:full", "npm run audit:kickoff:gate", "npm run domain:check" ] } }, "packages": [ { "file": "release/astra-treasury-protocol-v0.1.1-audit-candidate.tar.gz", "exists": true, "sizeBytes": 90262, "modifiedAt": "2026-05-10T12:59:52.826Z" }, { "file": "release/astra-treasury-protocol-v0.1.1-external-review.tar.gz", "exists": true, "sizeBytes": 92279, "modifiedAt": "2026-05-10T13:07:39.308Z" }, { "file": "release/astra-treasury-protocol-v0.1.1-audit-intake.tar.gz", "exists": true, "sizeBytes": 8967, "modifiedAt": "2026-05-10T17:41:36.553Z" }, { "file": "release/astra-treasury-protocol-v0.1.1-audit-outreach.tar.gz", "exists": true, "sizeBytes": 8054, "modifiedAt": "2026-05-10T21:15:26.547Z" }, { "file": "release/astra-treasury-protocol-v0.1.1-auditor-selection.tar.gz", "exists": true, "sizeBytes": 9451, "modifiedAt": "2026-05-10T21:23:14.199Z" }, { "file": "release/astra-treasury-protocol-v0.1.1-auditor-selection-execution.tar.gz", "exists": true, "sizeBytes": 9548, "modifiedAt": "2026-05-10T21:41:18.452Z" }, { "file": "release/astra-treasury-protocol-v0.1.1-audit-kickoff.tar.gz", "exists": true, "sizeBytes": 10462, "modifiedAt": "2026-05-10T21:32:39.295Z" }, { "file": "release/astra-treasury-protocol-v0.1.1-remediation-tracker.tar.gz", "exists": true, "sizeBytes": 8138, "modifiedAt": "2026-05-10T21:48:01.733Z" }, { "file": "release/astra-treasury-protocol-v0.1.1-mainnet-planning.tar.gz", "exists": true, "sizeBytes": 8446, "modifiedAt": "2026-05-10T13:21:04.214Z" }, { "file": "release/astra-treasury-protocol-v0.1.1-mainnet-runbook.tar.gz", "exists": true, "sizeBytes": 8586, "modifiedAt": "2026-05-10T14:29:35.639Z" }, { "file": "release/astra-treasury-protocol-v0.1.1-safe-planning.tar.gz", "exists": true, "sizeBytes": 8079, "modifiedAt": "2026-05-10T14:05:45.832Z" }, { "file": "release/astra-treasury-protocol-v0.1.1-incident-response.tar.gz", "exists": true, "sizeBytes": 14002, "modifiedAt": "2026-05-10T13:31:26.087Z" } ], "publicDocs": [ "/docs/README.md", "/docs/contracts.md", "/docs/safety-workflow.md", "/docs/verification.md", "/audit", "/api/public/audit" ] }