Back to Awesome's contests

prePO contest - Awesome's results

Decentralized Exchange for Pre-IPO Stocks & Pre-IDO Tokens.

General Information

Platform: Code4rena

Start Date: 09/12/2022

Pot Size: $36,500 USDC

Total HM: 9

Participants: 69

Period: 3 days

Judge: Picodes

Total Solo HM: 2

Id: 190

League: ETH

prePO

Findings Distribution

Researcher Performance

Rank: 53/69

Findings: 1

Award: $28.12

QA:
grade-b

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest PageGithub Contest RepositoryGithub Findings RepositoryprePO

Findings Information

🌟 Selected for report: 0xSmartContract

Also found by: 0Kage, 0x52, 0xAgro, 0xNazgul, 0xTraub, 0xhacksmithh, Awesome, Aymen0909, Bnke0x0, Englave, Janio, Mukund, Parth, RaymondFam, Rolezn, SmartSek, Tointer, UdarTeam, Udsen, Zarf, caventa, chaduke, csanuragjain, deliriusz, gz627, idkwhatimdoing, izhelyazkov, joestakey, neumo, obront, oyc_109, rvierdiiev, shark, trustindistrust, wait, yongskiws

Awards

28.124 USDC - $28.12

Labels

bug
grade-b
QA (Quality Assurance)
edited-by-warden
Q-16

External Links

Link to GitHub issue

1. inadequate NatSpec

Solidity contracts can use the Ethereum Natural Language Specification Format (NatSpec) to provide detailed documentation for functions, return variables, and other elements of the contract. This is done using a special type of comment within the contract code.

An instance of inadequate NatSpec: AccountListCaller.sol

Here is an example of a NatSpec comment in a Solidity contract:

/// @notice This is a NatSpec comment that provides
/// a brief description of the `setAccountList` function.
function setAccountList(IAccountList accountList) public virtual override {
  ...
}

NatSpec comments start with /// and follow a specific format that includes tags such as @notice and @param to indicate the type of information being provided. You can find more information about NatSpec and its usage in Solidity contracts at the following link:

https://docs.soliditylang.org/en/v0.8.16/natspec-format.html

2. Typos

  • Typo 1

File: IAllowedMsgSenders.sol

Line 24

Line 24:    * @dev This function is meant to be overriden and does not include any

  • Typo 2

File: INFTScoreRequirement.sol

LIne 28, LIne 40, LIne 49

Line 28:    * @dev This function is meant to be overriden and does not include any

Line 40:    * This function is meant to be overriden and does not include any

Line 49:    * @dev This function is meant to be overriden and does not include any

  • Typo 3

File: ITokenSenderCaller.sol

Line 27, Line 35

Line 27:    * @dev This function is meant to be overriden and does not include any

Line 35:    * @dev This function is meant to be overriden and does not include any

  • Typo 4

File: ICollateral.sol

Line 166

Line 166:    /// @return The factor used to calculate fees for depositinng

Suggested changes:

  • overriden => overridden
  • depositinng => depositing

#0 - c4-judge

2022-12-19T14:12:49Z

Picodes marked the issue as grade-b

AuditHub

A portfolio for auditors, a security profile for protocols, a hub for web3 security.

Built bymalatrax © 2024

Auditors

Browse

Contests

Browse

Get in touch

ContactTwitter