Argo has completed a security audit on its Move contracts; all issues were resolved.
Argo will undergo further audits as more features are built out.
The smart contract is to be internally by all core engineers, as well as with a paid professional auditor. Internal audits be conducted with both a discretionary (using judgement to validate security) and systematic (following a checklist of items to validate) approach.
The code will remain closed source until further notice. The source code will not be published without formal audits from a reputable auditing firm.
Program deploys are done through a multi-sig. Eventually, program upgrades will require a passing governance vote in order to occur.