![]() Use SafeERC20’s safeTransfer/safeTransferFrom functions In the claim function of the Vesting contract, if _token is such a token, the user may lose his vested tokens. In the purchase functions of MiniSales and TokenShop contracts, if _paymentToken is such a token, the user can purchase _saleToken and NFT without spending any tokens. Some tokens (like zrx) do not revert the transaction when the transfer/transferfrom fails and return false, which requires us to check the return value after calling the transfer/transferfrom function. Medium Risk Findings (4) Token transfers do not verify that the tokens were successfully transferred High-level considerations for vulnerabilities span the following key areas when conducting assessments:įurther information regarding the severity criteria referenced throughout the submission review process, please refer to the documentation provided on the C4 website. Vulnerabilities are divided into three primary risk categories: high, medium, and low/non-critical. SafeAccessControlEnumerableUpgradeable.solĬ4 assesses the severity of disclosed vulnerabilities according to a methodology based on OWASP standards.ScopeĬode reviewed consisted of the following files: The codebase in question had already undergone one prior Code4rena contest. 3 informational findings have been acknowledged. Of these, 3 vulnerabilities and 13 gas optimizations have been fixed. There were also 3 informational findings and 13 gas optimizations reported. ![]() The prePO Solo Audit yielded 4 MEDIUM vulnerabilities. WardensĪudit and mitigation review completed by cccz.įinal report assembled by itsmetechjay. The audit took place between August 23-31, 2022.įollowing the Solo Audit, warden cccz reviewed the mitigations for all identified issues the mitigation review report is appended below the audit contest report. In fact, today it is most likely much more widespread than ever before.Code4rena (C4) is an open organization consisting of security researchers, auditors, developers, and individuals with domain expertise in smart contracts.Ī C4 Solo Audit is an event where a top Code4rena contributor, commonly referred to as a warden or a team, reviews, audits and analyzes smart contract logic in exchange for a bounty provided by sponsoring projects.ĭuring the Solo Audit outlined in this document, C4 conducted an analysis of the prePO code. I think we are the peak of the corruption level and today’s reality mirrors the one from 1968. What happened back then is happening right now all over the world not just in America. A historical masterpiece and the folks involved in the production are amazing. ![]() Here’s Guido Baechler on The Trial of the Chicago 7: “This is an amazing project through and through. ![]() Our discussion of whether it successfully merges genres leads to another question: What exactly makes a horror movie a horror movie? You can listen on Apple or Spotify or here:Ĭomment of the Day: Thank you all for really wonderful, thoughtful comments this week. As you’ll hear from the new Low Key podcast, we had divided feelings. What Is Horror?: If you liked Funny Games but wish it had a little more Poltergeist, you might also like the new British horror film Hosts, which combines home invasion, possession, aliens and/or demons, with a bit about fracking. Borat Subsequent Moviefilm is out next Friday.Ītlanta Horror Festival: Grant Vance has this dispatch from a “safely social-distanced, atmospheric gravel lot” at the 14th annual Atlanta Horror Film Festival, where his favorite opening night short was “Kung Pao Corpse,” a film that poses the important question: “What if a food delivery driver talked about prejudice with a zombie?” Can we use it somehow?’ And I’d have to say to him, ‘It is really good, but it has nothing to do with the scene,’” Sorkin says.īorat: Also, here’s a Borat update from Deadline that also involves Facebook and Twitter finally banning Holocaust deniers. Yippie: Our interview with Aaron Sorkin, whose Trial of the Chicago 7 is out today on Netflix, reveals that Sacha Baron Cohen was so fascinated with his character, Abbie Hoffman, that he kept researching the Youth International Party leader well into the shoot. “At night I’d get an email from him at the hotel with just a piece of a speech of Abbie’s, saying, ‘Oh, this is so good. ![]()
0 Comments
Leave a Reply. |