Bertram The Pomeranian

We express our gratitude to the Bertram The Pomeranian team for the collaborative engagement that enabled the execution of this Smart Contract Security Assessment.

Bert is a flexible staking program that enables users to lock tokens or NFTs into different pool options that offer configurable settings such as lock periods, yield rates and max caps, in exchange for yield rewards, allowing users to select their staking strategy based on their preferences and goals.

The system users should acknowledge all the risks summed up in the risks section of the report

Documentation quality

• Functional requirements are provided in the PDF documentation, which outlines the intended process flow and high-level functionality of the system.

• The project includes essential technical documentation, including a README.md file that provides setup instructions, build and run steps, and usage of the API.

• The codebase contains partial inline comments, helping explain the purpose of variables and functions across most files.

Code quality

• The code demonstrates strong Rust proficiency and effective use of the Anchor framework, aligning well with Solana ecosystem best practices.

• The codebase is well-structured with a clear separation between administrative and user-facing instructions. Modules are logically grouped (admin, context, state), promoting maintainability and readability.

• It includes robust error handling, using descriptive StakingError variants and consistent require! assertions to validate preconditions before any state changes occur.

• The project includes comprehensive test coverage, test files that simulate full staking and claiming flows using solana-bankrun and anchor-bankrun environments, which provide a lightweight local test validator and Anchor-compatible interface for simulating transactions, time advancement, and cross-program invocations.

Test coverage

Code coverage of the project is N/A.

The Score is N/A since there is no reliable tool to calculate Solana test coverage.

• The project includes meaningful integration testing for key functionalities.

• The TypeScript tests cover most user flows and core logic.

• Rust-based tests are not present in the codebase.

BERT Staking smart contract is a Solana-based staking protocol that allows users to stake either tokens or NFTs to earn yield rewards over a configurable lock period.

The program is implemented using the Anchor framework and is composed of multiple smart contract modules, structured across the admin, context, and state folders, with lib.rs serving as the main entry point.

Staking Program

The bert_staking_sc folder contains the core logic and implements the following functionality:

• initialize: Deploys a new Config account to represent a staking configuration. It sets up core parameters such as maximum stake cap, NFT token-equivalent value, and per-user NFT limits.

• initialize_auth_vault: Creates an associated token account (ATA) owned by the Config PDA to store yield tokens. These tokens are distributed to users during the claim phase.

• initialize_pool: Initializes staking pools under a given config. Each pool has its own lock period (in days), yield rate, and staking caps for NFTs, tokens, and total value.

• initiate_user: Initializes user-specific staking metadata. This step is optional, as it is automatically performed during the first staking action.

• stake_token / stake_nft: Allows users to stake tokens or NFTs into a selected pool. Each stake creates a new position with a lock duration as defined by the pool’s settings.

• claim_position_token / claim_position_nft: Enables users to claim both their original stake and the accrued yield after the lock period has passed. Yield is paid from the authority_vault.

• admin_withdraw_tokens: Admin can withdraw tokens from the authority_vault, which is designed to store the yield tokens required for the claim instructions, to a designated destination.

• admin_set_pool_config / admin_pause_pool / admin_activate_pool: Admin functions to update or toggle pool parameters and state.

Initialization Process

To start the staking system, a config must be initialized. This config acts as the root authority over all staking logic, and defines global parameters such as the NFT value in tokens, caps, and limits.

The authority of the Config is responsible for:

• Initializing the authority_vault, an associated token account that stores yield tokens intended for the claim distribution.

• Creating and configuring staking pools using initialize_pool, where each pool is defined with:

• • lock_period_days — how long funds are locked (in days).

  • yield_rate — the yield in basis points.

  • max_nfts_cap — maximum NFTs a user can stake.

  • max_tokens_cap — maximum tokens a user can stake.

  • max_value_cap — maximum total value across NFTs and tokens in the pool.

Yield tokens must be deposited into the authority vault to ensure claims will succeed once users complete the lock period.

Staking and Claim Functionality

Users may call initialize_user to explicitly set up their staking metadata, although this is also triggered automatically upon first stake.

The project allows staking of both tokens and NFTs into predefined pools, each configured with specific yield rates, lock durations, and staking limits. Every staking action creates a distinct position tied to the user's account, tracking the staked asset, pool reference, and lock duration time. Once the lock period elapses, users can claim their rewards using dedicated claim instructions depending on whether they staked tokens or NFTs. Claims return both the original staked asset and the calculated yield. The protocol enforces per-user and per-pool limits to ensure fair participation and prevent over-staking.

Privileged roles

The authority account (set per config) has the authority to:

• Initialize and configure staking pools with custom parameters (lock period, yield rate, caps), and set the token mint and NFT collection allowed for staking in each config.

• Set and fund the authority_vault used for yield distribution.

• Pause and reactivate pools via admin instructions.

• Modify pool configurations at any time.

• Withdraw yield tokens from the authority_vault.

• Set the destination address for withdrawals of the yield tokens.

The scope of the project includes the following smart contracts from the provided repository:

Assets in Scope