Category: application security platform / smart-contract security marketplace / audit-competition infrastructure / bug-bounty and incident-response control plane
Summary: Cantina is a broad security-workflow platform rooted in the Spearbit network. The useful surface is the operating stack — researcher matching, scoped competitions, triage, reporting, and ongoing workflow inside Cantina Code — not just another audit marketplace with AI copy.
What it does:
Connects organizations with a large network of security researchers for audits, competitions, bug bounties, pentesting, and related security services
Runs time-bound audit competitions with explicit scoping, proof-of-concept rules, judging, escalation, prize allocation, and final reporting workflows
Provides Cantina Code, a dedicated collaboration environment where companies and researchers review code, submit findings, communicate in real time, and manage reports
Positions AI-powered analysis and runtime monitoring as part of a broader end-to-end security platform rather than as a standalone scanner
Maintains a large public portfolio of protocol security reviews and public reports across major crypto and adjacent software organizations
Key claims:
The homepage and docs say Cantina is powered by the Spearbit network and 9,000+ researchers, has secured $100B+ in TVL, and is trusted by organizations including Coinbase, Uniswap, Aave, and SAP
The docs describe Cantina as serving both organizations and researchers, with flexible audit formats ranging from solo auditors to modular teams to competitive review formats
The competitions docs show a fairly opinionated operating model: scope and prize definition, kickoff, competition period, mandatory PoCs for many high/medium findings, judging, escalation, fix period, findings call, and final report delivery
The Cantina Code docs show the company has built a purpose-specific audit collaboration layer rather than relying only on generic ticketing or chat software
The public-reports docs and portfolio page confirm that Cantina treats published security engagements as a first-class public surface, which is useful for understanding both its market positioning and actual operating breadth
Whitepaper: No canonical Cantina whitepaper or litepaper surfaced in this pass. The clearest current source of truth is the official site plus docs corpus, especially the About, Platform Overview, Competitions, Cantina Code, and Public Reports / Portfolio surfaces; see ../whitepapers/cantina-primary-sources-2026-04-28.md.
Comparable to: broad hosted security stacks rather than single contest venues.
Differs from: Immunefi leans harder into managed triage, severity taxonomy, and incident-response-adjacent operations, while Cantina keeps more of the Spearbit network-and-report lineage visible.