> For the complete documentation index, see [llms.txt](https://docs.cream.finance/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.cream.finance/audit-report.md).

# Audit Report

### Trail of Bits (January 28, 2021)

Throughout this assessment, we \[Trail of Bits] sought to answer various questions about the security of CREAM. We focused on flaws that would allow an attacker to:

* Manipulate asset prices returned by the price oracles.
* Subvert the imposed caps on borrowing or supplying.
* Bypass access controls to modify contract state.

Trail of Bits [Publications GitHub](https://github.com/trailofbits/publications/blob/master/reviews/CREAMSummary.pdf)

{% file src="/files/-MYO2nqvY7BJBJ1KKIhX" %}
Audit Report - Trail of Bits
{% endfile %}
