Documentation

Docs

How the OPCODE audit network works — for users, auditors, and submitters.

Intro

OPCODE is a peer-to-peer audit network. Reverse engineers disassemble the software everyone depends on and post verified reports — so users learn what their apps actually do, and auditors get paid in $USDC for findings that survive peer review.

This documentation covers how the network works, how to audit, how to submit a binary, and how the $NOP token aligns everyone's incentives.

How OPCODE Works

  1. Submit. Anyone drops a binary (or requests one via a bounty).
  2. Queue. The submission enters the public queue.
  3. Audit. A pseudonymous auditor reverse engineers it and posts a report with disassembly, findings, and severity.
  4. Peer review. Other auditors vote the report up or down. A report must clear a quorum to be marked verified.
  5. Payout. Verified reports release a bounty/fee payout in $USDC. Reports that fail review pay nothing.

No automated scanners. No vendor self-reports. Real people, real findings, real money.

For Auditors

Auditors stay pseudonymous. To start:

  • Connect a wallet (your pseudonym is derived from it).
  • Claim a queued submission or an open bounty.
  • Post a report: summary, disassembly evidence, findings with severity, and any CVE references.
  • Survive peer review. Findings that hold up release the payout; stakers earn a larger share of jobs they run.

Evidence beats assertion. A report that shows the xref, the offset, and the call is worth more than one that says "it's bad."

For Submitters

Submitting is anonymous — the binary you upload never reveals who you are.

  • Drop a file on /submit with vendor, version, and the behavior you suspect.
  • Or fund/boost a bounty on a popular binary so an auditor picks it up faster.
  • Watch the feed: when a verified report lands, you'll know exactly what the software does.

$NOP Tokenomics

Audit fees and $NOP trading flow into the treasury, in $USDC.

  • Half funds bounties on the most-requested binaries.
  • Half is split between everyone who stakes $NOP and a buyback-and-burn that shrinks supply as the network grows.

Stakers also vote on which reports get featured. The token captures the value of the audit network — nothing more, nothing less.

FAQ

Is OPCODE live? This is a product build in progress. The audit data shown is illustrative mock data.

Do you store my binary? Submissions are anonymous; the upload never reveals who you are.

Who decides a report is real? Peer review by other auditors, not the vendor and not OPCODE staff.

Is $NOP tradable? Not from this build. Nothing here is financial advice or an offer.