Flipper is launching perpetual trading on Solana as an aggregation layer across multiple DEXs: Drift, Flash, Adrena, Jupiter, and GMTrade.

Users deposit USDC into per-user vault PDAs, and the protocol routes their trades and collateral across all integrated venues through cross-program invocations

Before any of that hits mainnet, the core code needs to be unbreakable

That's why we partnered with Hexens

Hexens is auditing flipper-core, the on-chain program that handles every part of the user lifecycle. The scope is broad and intentional, covering the components that actually move funds:

→ Deposit and withdrawal flows, including vault accounting and per-user PDA logic

→ Order intent creation and execution across market, limit, trigger, and stop-out orders

→ Compound trade opening and closing with multi-DEX allocation

→ Fee collection and distribution across the protocol treasury, insurance fund, and referrals

→ Liquidation and settlement mechanisms

→ Circuit breaker and emergency control systems

→ Trust boundaries and security assumptions between Flipper and the external DEX adapters

Why Hexens

Their work focuses on logic-level vulnerabilities and complex multi-step exploits, the kind of issues that automated scanning tools and shallow audits routinely miss. In a perpetual trading system, where collateral, fees, and positions are constantly moving across multiple protocols, this depth of review is non-negotiable

The full audit report will be published as soon as Hexens completes their review

Stay tuned!

About Hexens: https://x.com/hexens

About Flipper: https://flipper_trade