Platform: Code4rena
Start Date: 07/07/2023
Pot Size: $121,650 USDC
Total HM: 36
Participants: 111
Period: 7 days
Judge: Picodes
Total Solo HM: 13
Id: 258
League: ETH
Rank: 95/111
Findings: 1
Award: $15.92
š Selected for report: 0
š Solo Findings: 0
š Selected for report: bin2chen
Also found by: 0x11singh99, 0xWaitress, 0xbepresent, ABAIKUNANBAEV, ArmedGoose, Bauchibred, DadeKuma, GREY-HAWK-REACH, GalloDaSballo, Inspecktor, Jeiwan, Kaysoft, MohammedRizwan, Rolezn, Vagner, alexzoid, alymurtazamemon, ayden, banpaleo5, catellatech, dacian, erebus, eyexploit, fatherOfBlocks, grearlake, joaovwfreire, keccak123, kutugu, lanrebayode77, markus_ether, nadin, naman1778, rvierdiiev, squeaky_cactus, volodya, yixxas
15.9228 USDC - $15.92
| Number | Issue | Instances | |
|---|---|---|---|
| [Lā01] | Use of outdated prb-math library | 1 | |
| [Lā02] | draft-ERC20Permit.sol is deprecated by openzeppelin | 1 |
The contracts have heavily used prb-math library but the library version used in contracts is v3.3.0 which is outdated. prb-math library is updated to latest version v4.01 which comes with features and optimizations.
There is 1 instance of this issue: All contracts: https://github.com/PaulRBerg/prb-math/blob/1edf08dd73eb1ace0042459ba719b8ea4a55c0e0/package.json#L4
Update the prb-math library to v4.01.
Vault.sol has used draft-ERC20Permit.sol in contract but Openzeppelin has deprecated draft-ERC20Permit.sol contract in v4.9.0. Reference link:- https://github.com/OpenZeppelin/openzeppelin-contracts/releases
There is 1 instance of this issue: https://github.com/GenerationSoftware/pt-v5-vault/blob/b1deb5d494c25f885c34c83f014c8a855c5e2749/src/Vault.sol#L5
Use ERC20Permit.sol instead of draft-ERC20Permit.sol.
#0 - c4-judge
2023-07-18T19:14:46Z
Picodes marked the issue as grade-b