Cross-Chain Bridge: Definition, Smart Contract Example & Audit Notes

Cross-Chain Bridge

A cross-chain bridge transfers value or messages between blockchains using locks, burns, mints, validators, relayers, proofs, or messaging protocols.

A cross-chain bridge lets assets or messages move between chains, but it adds new trust assumptions.

Cross-Chain Bridge Explained in Detail

A cross-chain bridge connects two or more chains. It may lock tokens on one chain and mint wrapped tokens on another, or it may send arbitrary messages between contracts.

The bridge must decide which messages are authentic and whether each message has already been used.

Smart contract example

chain A lock -> message/proof -> chain B mint

Every arrow in this flow is a trust boundary.

Cross-Chain Bridge in Auditing

Bridges often custody large amounts of value and depend on cross-chain assumptions that are hard to verify locally. A small validation bug can allow unauthorized minting or withdrawals.

Auditors review bridge code for message authenticity, replay protection, finality, signer thresholds, and accounting.

Red flags in code

Messages do not bind source chain, destination chain, contract, and nonce.
Validator threshold is too low or signer checks are weak.
Mint and burn accounting can diverge.
Failed relay states are not handled.
Chain IDs or domains are confused.

How to test or review it

Replay a valid message and expect failure.
Mutate source chain, destination chain, amount, recipient, and nonce.
Test signer threshold and proof verification.
Check pause and emergency recovery paths.
Review decimal conversion and wrapped-token accounting.

Sources

https://ethereum.org/en/bridges/