Areta (#447)

Turupawn · web-flow · commit a88b3f0327c8 · 2025-06-26T10:38:39.000-06:00
* added audit your code + aside for areta market

* fix header

* Update sidebar.ts
diff --git a/public/locales/en/translation.json b/public/locales/en/translation.json
@@ -98,6 +98,7 @@
       "contractDeploymentTutorial": "Contract Deployment Tutorial",
       "crossChainInteraction": "Scroll Messenger Cross-chain Interaction",
       "runningNode": "Running a Scroll Node",
+      "auditingYourCode": "Auditing your code",
       "bridgingERC20TokenThroughCustomGateway": "Bridge an ERC20 through the Custom Gateway",
       "bridgingERC721NftThroughCustomGateway": "Bridging ERC721 NFT through Custom Gateway",
       "bridgingERC1155ThroughCustomGateway": "Bridging ERC1155 through Custom Gateway",
diff --git a/public/locales/es/translation.json b/public/locales/es/translation.json
@@ -95,6 +95,8 @@
       "future": "Futuro",
       "guides": "Guías",
       "contractDeploymentTutorial": "Tutorial de Despliegue de Contratos",
+      "runningNode": "Corre Nodo de Scroll",
+      "auditingYourCode": "Audita tu código",
       "crossChainInteraction": "Interacción Cross-chain del Scroll Messenger",
       "bridgingERC20TokenThroughCustomGateway": "Bridging de un ERC20 a través de una Gateway Personalizada",
       "bridgingERC721NftThroughCustomGateway": "Bridging de un ERC721 NFT a través de una Gateway Personalizada",
diff --git a/src/config/sidebar.ts b/src/config/sidebar.ts
@@ -162,6 +162,10 @@ export const getSidebar = () => {
             title: t("sidebar.developers.runningNode"),
             url: formatUrl("developers/guides/running-a-scroll-node"),
           },
+          {
+            title: t("sidebar.developers.auditingYourCode"),
+            url: formatUrl("developers/guides/auditing-your-code"),
+          },
           {
             title: t("sidebar.developers.transactionJourney"),
             url: formatUrl("developers/guides/checking-transaction-journey"),
diff --git a/src/content/docs/en/developers/guides/auditing-your-code.mdx b/src/content/docs/en/developers/guides/auditing-your-code.mdx
@@ -0,0 +1,51 @@
+---
+section: developers
+date: Last Modified
+title: "Auditing your code"
+lang: "en"
+permalink: "developers/guides/auditing-your-code"
+whatsnext: { "Running a Scroll Node": "/developers/guides/running-a-scroll-node" }
+excerpt: "Get your code audited in the Scroll Audit Marketplace built on Areta Market."
+---
+
+import Aside from "../../../../../components/Aside.astro"
+
+The [Scroll Audit Marketplace](https://areta.market/scroll) is a dedicated platform built on [Areta Market](https://areta.market/) that gives Scroll builders a faster, cheaper, and more transparent path to securing audits from top-tier providers.  
+
+The Scroll Audit Marketplace is open to all Scroll builders, offering access to ~10 pre-vetted, whitelisted audit firms approved for your project by Areta and the Scroll Foundation. 
+
+<Aside type="tip" title="Why use the Scroll Audit Marketplace?">
+Projects using the Areta Market platform unlock the following benefits: 
+
+1. 20-30% of proven cost savings 
+2. 6-8 quotes from top-tier auditors per request 
+3. Process reduced from weeks to days
+</Aside>
+
+### Requesting an Audit via Scroll Audit Marketplace
+
+1. **Sign up to join the Scroll Audit Marketplace on Areta Market** using this [link](https://scroll.areta.market). 
+2. **Submit your audit scope**: Use a guided form or upload your specific requirements.
+3. **Get 6-8 quotes**: From trusted firms like Hacken, Spearbit, Nethermind, and Zellic.
+4. **Choose your auditor**: Based on price, timeline, or personal preference.
+5. **Start your audit**: With clear, standardized terms.
+
+### Whitelisted Audit Firms
+
+The Scroll Audit Marketplace is launching with the following audit providers. This list will continue to grow, and updates will be maintained here:
+
+- [Certora](https://www.certora.com/)
+- [Hacken](https://hacken.io/)
+- [Hexens](https://hexens.io/)
+- [Immunefi](https://immunefi.com/)
+- [Nethermind](https://www.nethermind.io/)
+- [Sherlock](https://www.sherlock.xyz/)
+- [Runtime Verification](https://runtimeverification.com/)
+- [Spearbit](https://spearbit.com/)
+- [Zellic](https://www.zellic.io/)
+
+### How to Get Started
+
+The [Scroll Audit Marketplace](https://areta.market/scroll) is open to anyone building on Scroll. 
+
+To get started, sign up for Areta Market using [this link](https://scroll.areta.market/register/client), follow the guided flow to set up your account, submit your first audit request, and connect with the right firm to help launch your project with confidence.
diff --git a/src/content/docs/en/technology/security/audits-and-bug-bounty.mdx b/src/content/docs/en/technology/security/audits-and-bug-bounty.mdx
@@ -16,11 +16,14 @@ Scroll treats security as a top priority.
 
 Aside from rigorous testing, an internal security team, and comprehensive code reviews, we have also engaged with multiple security audit firms to conduct audits on our codebase. We have also launched a bug bounty program to encourage the community to participate in the security of our protocol.
 
-<Aside type="danger" title="">
-  Audits don't guarantee the absence of security vulnerabilities. Using blockchains comes with risk, and Scroll is no
-  exception. We encourage users to use the protocol with caution and at their own risk.
+
+<Aside>
+This page is dedicated to Scroll audits. If you’re a builder seeking a professional review of your Scroll-based project, the [Scroll Audit Marketplace](https://areta.market/scroll) on Areta Market is designed specifically to support Scroll builders get access to top-tier, cost-effective, and streamlined audits.
+
+Read more about the Scroll Audit Marketplace [here](/developers/guides/auditing-your-code), or [sign up directly](https://scroll.areta.market/register/client).
 </Aside>
 
+
 ## Independent Audits
 
 Scroll has worked with several industry-leading security audit firms to review our codebase, with critical code receiving reviews from multiple teams, including [Trail of Bits](https://www.trailofbits.com/), [OpenZeppelin](https://www.openzeppelin.com/), [Zellic](https://www.zellic.io/), and [KALOS](https://www.kalos.xyz/).
@@ -29,6 +32,11 @@ Scroll has worked with several industry-leading security audit firms to review o
 - OpenZeppelin and Zellic have performed independent audits on our bridge & rollup contracts
 - Trail of Bits has analyzed our node implementation
 
+<Aside type="danger" title="">
+  Audits don't guarantee the absence of security vulnerabilities. Using blockchains comes with risk, and Scroll is no
+  exception. We encourage users to use the protocol with caution and at their own risk.
+</Aside>
+
 ### zkEVM circuits
 
 - Trail of Bits
