Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

QA Report #212

Open
c4-bot-4 opened this issue Mar 11, 2024 · 7 comments
Open

QA Report #212

c4-bot-4 opened this issue Mar 11, 2024 · 7 comments
Labels
bug Something isn't working edited-by-warden grade-a high quality report This report is of especially high quality Q-05 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")

Comments

@c4-bot-4
Copy link
Contributor

See the markdown file with the details of this report here.
@c4-bot-4 c4-bot-4 added bug Something isn't working QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax labels Mar 11, 2024
c4-bot-5 added a commit that referenced this issue Mar 11, 2024
@c4-bot-5
0xmystery issue #212
371dbf2
c4-bot-2 added a commit that referenced this issue Mar 11, 2024
@c4-bot-2
0xmystery data for issue #212
4d4f2de
c4-bot-3 added a commit that referenced this issue Mar 11, 2024
@c4-bot-3
Report for issue #212 updated by 0xmystery
fcd7ca1
@raymondfam
Copy link

L1 to #172
8 L and 2 NC well-elaborated.

@c4-pre-sort
Copy link

raymondfam marked the issue as high quality report

@c4-pre-sort c4-pre-sort added the high quality report This report is of especially high quality label Mar 13, 2024
@c4-sponsor
Copy link

trmid (sponsor) confirmed

@c4-sponsor c4-sponsor added the sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") label Mar 14, 2024
@c4-judge c4-judge mentioned this issue Mar 15, 2024
Closed
@trmid
Copy link

trmid commented Mar 15, 2024

[L-03] mitigation: GenerationSoftware/pt-v5-vault#87

@c4-judge
Copy link
Contributor

hansfriese marked the issue as grade-a

@c4-judge
Copy link
Contributor

hansfriese marked the issue as selected for report

@c4-judge c4-judge added the selected for report This submission will be included/highlighted in the audit report label Mar 18, 2024
@hansfriese
Copy link

hansfriese commented Mar 18, 2024
edited

[L-01] PrizeVault._tryGetAssetDecimals() may return erroneous decimals
L

[L-02] Rounding strategies in lossy states should prioritize protocol security
Ignore, the current one works as intended.

[L-03] Streamlining token approvals in PrizeVault._depositAndMint() with forceApprove()
L

[L-04] Simplifying yield fee distribution through direct transfers
L

[L-05] Enhancing liquidation efficiency with dynamic adjustment
L

[L-06] Adapting PrizeVault to L2’s decentralized sequencing: Navigating New Frontiers in Transaction Fairness
NC

[L-07] Enhancing contract efficiency with proactive financial health checks in PrizeVault._depositAndMint()
L

[L-08] Implementing dynamic adjustments for enhanced transaction reliability when depositing/withdrawing
L

[N-01] Private function with embedded modifier reduces contract size
NC

[N-02] Activate the Optimizer
NC

6L 3NC + 2 downgraded QAs

@C4-Staff C4-Staff added the Q-05 label Mar 21, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working edited-by-warden grade-a high quality report This report is of especially high quality Q-05 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
9 participants
@trmid @hansfriese @raymondfam @c4-judge @c4-sponsor @c4-pre-sort @C4-Staff @code4rena-admin @c4-bot-4