Mainnet deploy is gated on audit completion. This page lists the firms engaged and the resulting reports as they publish.
No audits have been completed yet. fillr is currently in devnet testing. This page will be updated with firm names, audit dates, and links to public reports once mainnet preparation is underway.
Internal security review has been completed against the spec — see Architecture and Risks for the known attack surface and mitigations. The reference for cross-checking against was Coral Defi's sealevel-attacks repo — every documented attack class has a corresponding mitigation in the fillr program.