Skip to content

Issues: code-423n4/2024-07-reserve-validation

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

49 Open 214 Closed
49 Open 214 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or ⇧ + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
πŸ‘ πŸ‘Ž πŸ˜„ πŸŽ‰ πŸ˜• ❀️ πŸš€ πŸ‘€

Issues list

Inflated rsrTotal Due to Unchecked DAO Fee Calculation in totals() Function 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_28_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#241 opened Aug 19, 2024 by c4-bot-8
RSR Stakers Unintentionally Slashed During Collateral Depegging Despite Sufficient Collateral Backing 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working edited-by-warden πŸ€–_primary AI based primary recommendation sufficient quality report This report is of sufficient quality
#240 opened Aug 19, 2024 by c4-bot-8
Custom Redemption Vulnerability in Reserve Protocol Allows Value Extraction 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working πŸ€–_10_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#237 opened Aug 19, 2024 by c4-bot-5
Potential for Inaccurate Melting Due to Balance Discrepancies 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_27_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#234 opened Aug 19, 2024 by c4-bot-5
Incorrect auction trade execution due to issuancePremium being applied in the RecollateralizationLib.basketRange computation 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working edited-by-warden πŸ€–_32_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#223 opened Aug 19, 2024 by c4-bot-7
The discrepency in issuancePremium accounting, during the issuance of RTokens and the available basket units calculation in the BackingManager, could lead to an incorrect assessment of the collateralization status 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working πŸ€–_32_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#211 opened Aug 19, 2024 by c4-bot-2
The rateLimiter functionality in the Throttle.sol contract can be bypassed 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_primary AI based primary recommendation πŸ€–_52_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#209 opened Aug 19, 2024 by c4-bot-3
RSR Unstake Denial of Service Due to Underflow Error 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_primary AI based primary recommendation sufficient quality report This report is of sufficient quality
#207 opened Aug 19, 2024 by c4-bot-5
rTokenTrader#distributeTokenToBuy could be bypassed during setDistribution by purposefully providing too little gas 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_primary AI based primary recommendation sufficient quality report This report is of sufficient quality
#205 opened Aug 19, 2024 by c4-bot-3
Auctioning revenue for rToken when issuance is disabled could lead to limited participation and worse pricing 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_primary AI based primary recommendation sufficient quality report This report is of sufficient quality
#203 opened Aug 19, 2024 by c4-bot-6
Using endtime for order cancelation deadline of gnosis auction could lead to bait and switch bid tactics 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_primary AI based primary recommendation sufficient quality report This report is of sufficient quality
#200 opened Aug 19, 2024 by c4-bot-1
Fixed#safeMulDiv rounds incorrect when rounding mode is set to ROUND 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_primary AI based primary recommendation sufficient quality report This report is of sufficient quality
#195 opened Aug 19, 2024 by c4-bot-8
rsr can be unregistered from AssetRegistry to prevent seizure of stRSR holdings 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_primary AI based primary recommendation sufficient quality report This report is of sufficient quality
#188 opened Aug 19, 2024 by c4-bot-7
RSR holders could get less staked stRSR than expected 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working edited-by-warden πŸ€–_15_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#186 opened Aug 19, 2024 by c4-bot-2
If the payout criteria are not met, payoutLastPaid should not be updated. 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working edited-by-warden πŸ€–_14_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#180 opened Aug 19, 2024 by c4-bot-7
rsrRewardsAtLastPayout is incorrectly updated to a smaller value in seizeRSR. 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working πŸ€–_57_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#168 opened Aug 19, 2024 by c4-bot-6
The supply throttle checking in issuance should be performed after the _scaleUp. 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working edited-by-warden πŸ€–_52_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#165 opened Aug 19, 2024 by c4-bot-3
in BackingManagerP1::rebalance Wrong assertion will lead to panic reverts 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working πŸ€–_03_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#158 opened Aug 19, 2024 by c4-bot-1
First depositer in rToken can ensure that second always suffers a loss of funds 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working πŸ€–_05_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#154 opened Aug 19, 2024 by c4-bot-3
The net issuance or net redemption may exceeds the per hour limit. 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_52_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#153 opened Aug 19, 2024 by c4-bot-5
Potential Bypass of Era Consistency Check in Proposal Execution 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_primary AI based primary recommendation sufficient quality report This report is of sufficient quality
#142 opened Aug 19, 2024 by c4-bot-8
Potential Manipulation of Draft RSR During Mass Unstaking Events 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working πŸ€–_primary AI based primary recommendation πŸ€–_49_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#141 opened Aug 19, 2024 by c4-bot-6
Critical Bug in prepareTradeToCoverDeficit Function Causing Zero Sell Amount in TradeLib Contract 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working πŸ€–_primary AI based primary recommendation sufficient quality report This report is of sufficient quality
#140 opened Aug 19, 2024 by c4-bot-8
Reentrancy Vulnerability in bidWithCallback(bytes) in the DutchTrade contract 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working edited-by-warden πŸ€–_102_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#136 opened Aug 18, 2024 by c4-bot-6
Lack of Slippage Protection in issueTo() functions of the RToken contract 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working πŸ€–_primary AI based primary recommendation πŸ€–_48_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#122 opened Aug 18, 2024 by c4-bot-10
ProTip! What’s not been updated in a month: updated:<2024-12-16.