Platform: Code4rena
Start Date: 07/04/2023
Pot Size: $47,000 USDC
Total HM: 20
Participants: 120
Period: 6 days
Judge: GalloDaSballo
Total Solo HM: 4
Id: 230
League: ETH
Rank: 17/120
Findings: 1
Award: $506.27
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: Haipls
Also found by: 0xSmartContract, Rolezn
506.2665 USDC - $506.27
Judge has assessed an item in Issue #245 as 2 risk. The relevant finding follows:
[L-05] PrivatePoolMetadata.tokenURI is not compliant with EIP721 It implements PrivatePoolMetadata.tokenURI() , a function overriding ERC721's tokenURI().
This function returns the metadata URI of the provided token ID
The issue is that if queried for a token that does not have an owner or has not been minted, it returns the empty string ’’.
src/PrivatePoolMetadata.sol: 16 /// @param tokenId The private pool's token ID. 17: function tokenURI(uint256 tokenId) public view returns (string memory) { 18: // forgefmt: disable-next-item
19: bytes memory metadata = abi.encodePacked( 20: "{", 21: '"name": "Private Pool ',Strings.toString(tokenId),'",', 22: '"description": "Caviar private pool AMM position.",', 23: '"image": ','"data:image/svg+xml;base64,', Base64.encode(svg(tokenId)),'",', 24: '"attributes": [', 25: attributes(tokenId), 26: "]", 27: "}" 28: ); 29: 30: return string(abi.encodePacked("data:application/json;base64,", Base64.encode(metadata))); 31: }if (_owners[_tokenId] == address(0)) return '';
#0 - c4-judge
2023-05-02T08:49:25Z
GalloDaSballo marked the issue as duplicate of #44
#1 - c4-judge
2023-05-02T08:49:31Z
GalloDaSballo marked the issue as satisfactory