-
Notifications
You must be signed in to change notification settings - Fork 3
Issues: code-423n4/2024-03-pooltogether-findings
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Gas Optimizations
bug
Something isn't working
G (Gas Optimization)
G-01
grade-b
sufficient quality report
This report is of sufficient quality
#352
opened Mar 11, 2024 by
c4-bot-6
QA Report
bug
Something isn't working
grade-b
insufficient quality report
This report is not of sufficient quality
Q-01
QA (Quality Assurance)
Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
#346
opened Mar 11, 2024 by
c4-bot-6
The winner can steal claimer fees, and force him to pay for the gas
2 (Med Risk)
Assets not at direct risk, but function/availability of the protocol could be impacted or leak value
bug
Something isn't working
insufficient quality report
This report is not of sufficient quality
M-01
primary issue
Highest quality submission among a set of duplicates
🤖_78_group
AI based duplicate group recommendation
satisfactory
satisfies C4 submission criteria; eligible for awards
selected for report
This submission will be included/highlighted in the audit report
sponsor confirmed
Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#345
opened Mar 11, 2024 by
c4-bot-6
Analysis
A-01
analysis-advanced
grade-b
sufficient quality report
This report is of sufficient quality
#341
opened Mar 11, 2024 by
c4-bot-10
_maxYieldVaultWithdraw()
uses yieldVault.convertToAssets()
2 (Med Risk)
#336
opened Mar 11, 2024 by
c4-bot-5
maxDeposit()
uses yieldVault.maxDeposit()
but _depositAndMint()
uses yieldVault.mint()
2 (Med Risk)
#335
opened Mar 11, 2024 by
c4-bot-10
Dust sweeping may exceed yield vault deposit limit
bug
Something isn't working
downgraded by judge
Judge downgraded the risk level of this issue
grade-a
insufficient quality report
This report is not of sufficient quality
primary issue
Highest quality submission among a set of duplicates
Q-02
QA (Quality Assurance)
Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
🤖_141_group
AI based duplicate group recommendation
satisfactory
satisfies C4 submission criteria; eligible for awards
#333
opened Mar 11, 2024 by
c4-bot-7
_withdraw()
may attempt to withdraw more than available
bug
#332
opened Mar 11, 2024 by
c4-bot-7
Gas Optimizations
bug
Something isn't working
G (Gas Optimization)
G-02
grade-a
sufficient quality report
This report is of sufficient quality
#326
opened Mar 11, 2024 by
c4-bot-7
Gas Optimizations
bug
Something isn't working
G (Gas Optimization)
G-03
grade-a
sponsor confirmed
Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
sufficient quality report
This report is of sufficient quality
#317
opened Mar 11, 2024 by
c4-bot-7
Gas Optimizations
bug
Something isn't working
G (Gas Optimization)
G-04
grade-b
sufficient quality report
This report is of sufficient quality
#316
opened Mar 11, 2024 by
c4-bot-2
Gas Optimizations
bug
Something isn't working
G (Gas Optimization)
G-05
grade-b
sufficient quality report
This report is of sufficient quality
#306
opened Mar 11, 2024 by
c4-bot-9
Analysis
A-02
analysis-advanced
edited-by-warden
grade-a
high quality report
This report is of especially high quality
selected for report
This submission will be included/highlighted in the audit report
sponsor acknowledged
Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#305
opened Mar 11, 2024 by
c4-bot-3
Gas Optimizations
bug
Something isn't working
G (Gas Optimization)
G-06
grade-b
sufficient quality report
This report is of sufficient quality
#303
opened Mar 11, 2024 by
c4-bot-8
Analysis
A-03
analysis-advanced
grade-a
high quality report
This report is of especially high quality
sponsor acknowledged
Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#299
opened Mar 11, 2024 by
c4-bot-10
Analysis
A-04
analysis-advanced
grade-b
sufficient quality report
This report is of sufficient quality
#298
opened Mar 11, 2024 by
c4-bot-7
Analysis
A-05
analysis-advanced
grade-b
sufficient quality report
This report is of sufficient quality
#289
opened Mar 11, 2024 by
c4-bot-1
Analysis
A-06
analysis-advanced
grade-b
sufficient quality report
This report is of sufficient quality
#288
opened Mar 11, 2024 by
c4-bot-8
Lack of Slippage Protection in Assets not at direct risk, but function/availability of the protocol could be impacted or leak value
bug
Something isn't working
M-04
primary issue
Highest quality submission among a set of duplicates
🤖_90_group
AI based duplicate group recommendation
satisfactory
satisfies C4 submission criteria; eligible for awards
selected for report
This submission will be included/highlighted in the audit report
sponsor confirmed
Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
sufficient quality report
This report is of sufficient quality
withdraw
/redeem
Functions of the Vault
2 (Med Risk)
#274
opened Mar 11, 2024 by
c4-bot-6
Gas Optimizations
bug
Something isn't working
G (Gas Optimization)
G-07
grade-a
sponsor confirmed
Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
sufficient quality report
This report is of sufficient quality
#273
opened Mar 11, 2024 by
c4-bot-7
QA Report
bug
Something isn't working
grade-b
insufficient quality report
This report is not of sufficient quality
Q-03
QA (Quality Assurance)
Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
#250
opened Mar 11, 2024 by
c4-bot-8
yieldFeeBalance
wouldn't be claimed after calling transferTokensOut()
.
2 (Med Risk)
#244
opened Mar 11, 2024 by
c4-bot-9
QA Report
bug
Something isn't working
grade-a
high quality report
This report is of especially high quality
Q-04
QA (Quality Assurance)
Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
sponsor confirmed
Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#237
opened Mar 11, 2024 by
c4-bot-1
Gas Optimizations
bug
Something isn't working
G (Gas Optimization)
G-08
grade-a
high quality report
This report is of especially high quality
selected for report
This submission will be included/highlighted in the audit report
sponsor confirmed
Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#236
opened Mar 11, 2024 by
c4-bot-1
Funds locked due to missing transfer check
2 (Med Risk)
Assets not at direct risk, but function/availability of the protocol could be impacted or leak value
bug
Something isn't working
downgraded by judge
Judge downgraded the risk level of this issue
edited-by-warden
high quality report
This report is of especially high quality
M-06
primary issue
Highest quality submission among a set of duplicates
🤖_90_group
AI based duplicate group recommendation
satisfactory
satisfies C4 submission criteria; eligible for awards
selected for report
This submission will be included/highlighted in the audit report
sponsor confirmed
Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#235
opened Mar 11, 2024 by
c4-bot-7
Previous Next
ProTip!
Updated in the last three days: updated:>2024-05-27.