Platform: Code4rena
Start Date: 06/01/2023
Pot Size: $210,500 USDC
Total HM: 27
Participants: 73
Period: 14 days
Judge: 0xean
Total Solo HM: 18
Id: 203
League: ETH
Rank: 41/73
Findings: 1
Award: $121.59
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: CodingNameKiki
Also found by: 0xA5DF, 0xAgro, 0xNazgul, 0xSmartContract, Aymen0909, BRONZEDISC, Bnke0x0, Breeje, Cyfrin, GalloDaSballo, HollaDieWaldfee, IceBear, IllIllI, MyFDsYours, RaymondFam, Ruhum, SaharDevep, Sathish9098, Soosh, Udsen, __141345__, brgltd, btk, carlitox477, chaduke, chrisdior4, cryptonue, delfin454000, descharre, hihen, joestakey, ladboy233, lukris02, luxartvinsec, peanuts, pedr02b2, rotcivegaf, shark, tnevler, yongskiws
121.587 USDC - $121.59
requireNotPausedOrFrozen() FunctionSeverity: Low
Context: RToken.sol#L557, RToken.sol#L580
Description:
According to the natspec of requireNotPausedOrFrozen() function:
@dev Used in reward claim functions to save on contract size
However, it is used across several other functions on top of the reward claim functions causing an inconsistency in the use of requireNotPausedOrFrozen() function.
Recommendation: Consider either of the following:
requireNotPausedOrFrozen() functionmint() && setBasketsNeeded() and adding the notPausedOrFrozen modifier to them.Severity: Low
Context: Main.sol#L43
Description: According to the walkthrough video at 10:30. The poke function was for testing and to prove equivalence between P1 and P0.
Recommendation: Consider removing this function for production use since it can confuse some users.
setLongFreeze() is Larger Than shortFreezeSeverity: Low
Context: Auth.sol#L187
Description:
setLongFreeze() can be set to be less than shortFreeze defeating the purpose of having both.
Recommendation:
Consider adding a check so that longFreeze is always larger than shortFreeze or that it is larger than MAX_SHORT_FREEZE.
#0 - c4-judge
2023-01-24T22:25:22Z
0xean marked the issue as grade-b