Our Focus
The EEA EthTrust Security Levels Working Group defines baseline requirements for Ethereum smart contract security audits. These serve as a certification framework for projects and audit firms to signal audit depth and quality.
The specification defines three certification levels: [S] for automated checks, [M] for manual audits, and [Q] for full logic and documentation review. Version 3 was published in March 2025.
We are also developing extensions to the STIX standard for DeFi-specific incident reporting. That work is public via the Web3 STIX Telegram Channel and the Defi for STIX GitHub repository.
Resources
EEA EthTrust Security Levels Specification Version 3 (March 2025)
Version 3 Checklist of Requirements
Previous Versions
Version 2 – Published 13 December 2023
Version 1 – Published 22 August 2022
How to Contribute
To contribute or learn more: please email [email protected].
STIX for DeFi
Contribute to STIX reporting standards by joining the Telegram channel and contributing to the GitHub repository.