Aave has been implemented with security as priority. The system has been designed to be safe and secure, and we have spent all the necessary resources in order to ensure that the protocol matches the highest security standards.
Currently, the protocol code has been audited by Trail of Bits and a second audit by OpenZeppelin prior the release of the protocol during September and November of 2019 respectively. During May 2020 prior the release of the Uniswap Market Consensys Diligence audited Aave's Constant Product Market Price Provider (CPMPP) Component.
The Constant Product Market Price Provider audit by Consensys Diligence on May 2020 can be found here
The protocol audit by Open Zeppelin on November 2019 can be found here
The protocol audit by Trail of Bits on September 2019 can be found here.
We encourage the hunting of bugs and potential exploits in our protocol. Refer to our bug bounty program page for full details.