Back to lukris02's contests

Papr contest - lukris02's results

NFT Lending Powered by Uniswap v3.

General Information

Platform: Code4rena

Start Date: 16/12/2022

Pot Size: $60,500 USDC

Total HM: 12

Participants: 58

Period: 5 days

Judge: Trust

Total Solo HM: 4

Id: 196

League: ETH

Backed Protocol

Findings Distribution

Researcher Performance

Rank: 35/58

Findings: 1

Award: $43.54

QA:
grade-b

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest PageGithub Contest RepositoryGithub Findings RepositoryBacked Protocol

Findings Information

🌟 Selected for report: yixxas

Also found by: 0x52, 0xAgro, 0xSmartContract, 0xhacksmithh, Aymen0909, Bnke0x0, Bobface, Breeje, Diana, Franfran, HE1M, HollaDieWaldfee, IllIllI, Jeiwan, RaymondFam, Rolezn, SaharDevep, Secureverse, SmartSek, ak1, bin2chen, brgltd, chrisdior4, gz627, imare, ladboy233, lukris02, oyc_109, rvierdiiev, shark, tnevler, unforgiven, wait

Awards

43.5439 USDC - $43.54

Labels

bug
grade-b
QA (Quality Assurance)
Q-26

External Links

Link to GitHub issue

QA Report for Papr contest

Overview

During the audit, 1 low and 6 non-critical issues were found.

â„–TitleRisk RatingInstance Count
L-1Unsafe uncheckedLow1
NC-1Order of FunctionsNon-Critical2
NC-2TyposNon-Critical4
NC-3Unused named return variablesNon-Critical1
NC-4Unused variableNon-Critical1
NC-5Maximum line length exceededNon-Critical4
NC-6Missing NatSpecNon-Critical18

Low Risk Findings(1)

L-1. Unsafe unchecked

Description

It is not safe to use unchecked block for int56 delta = endTick - startTick; in timeWeightedAverageTick() function in OracleLibrary.sol because startTick can be larger than endTick. There is no guarantee that the input data will always be correct.

Instances

Non-Critical Risk Findings(6)

NC-1. Order of Functions

Description

According to Style Guide, ordering helps readers identify which functions they can call and to find the constructor and fallback definitions easier.
Functions should be grouped according to their visibility and ordered:

  1. constructor
  2. receive function (if exists)
  3. fallback function (if exists)
  4. external
  5. public
  6. internal
  7. private
Instances

external functions should be placed before public:

Recommendation

Reorder functions where possible.

NC-2. Typos

Instances

NC-3. Unused named return variables

Description

Both named return variable(s) and return statement are used.

Instances
Recommendation

To improve clarity use only named return variables.
For example, change:

function functionName() returns (uint id) {
    return x;

to

function functionName() returns (uint id) {
    id = x;

NC-4. Unused variable

Description

param uint256 id is not used in the _auctionCurrentPrice() function

Instances

NC-5. Maximum line length exceeded

Description

According to Style Guide, maximum suggested line length is 120 characters.

Instances
Recommendation

Make the lines shorter.

NC-6. Missing NatSpec

Description

NatSpec is missing for 18 functions in 4 contracts.

Instances
Recommendation

Add NatSpec for all functions.

#0 - c4-judge

2022-12-25T16:28:34Z

trust1995 marked the issue as grade-b

AuditHub

A portfolio for auditors, a security profile for protocols, a hub for web3 security.

Built bymalatrax © 2024

Auditors

Browse

Contests

Browse

Get in touch

ContactTwitter