Back to Docs
Documentation
WhiteHat Scans
Pro
WhiteHat Scans let a Pro customer commission a security scan of their own protocol's source. We invoice you, you pay in USDC, we run the scan, and you download a full findings report as a PDF.
What it is
WhiteHat Scans are on-demand security scans of your own protocol's source code. You request a scan, we send an invoice, you pay in USDC, and we deliver a full PDF report of every finding, with impact and remediation guidance per finding. A Pro subscription is required; no prior Verdict rating is needed.
Requesting a scan
- Open /dashboard/whitehat-scans and click Request scan.
- Enter your protocol's name and a link to its GitHub repository.
- Tick the ownership declaration. You must own or manage the code and authorise the scan.
Paying and downloading
- Once we review the request, the entry shows an invoice. Click Pay now and pay the quoted USDC amount on your chosen chain.
- After payment the scan runs. When it finishes, the entry shows Download report, which downloads your PDF.
- You can re-download at any time from the dashboard, even if your Pro subscription later lapses.
What is in the report
The PDF contains a cover page, an executive summary with a severity roll-up, and the full list of findings from every detector in the scan, each with a severity, description, impact, and remediation guidance.