Platform: Code4rena
Start Date: 27/05/2022
Pot Size: $75,000 USDC
Total HM: 20
Participants: 58
Period: 7 days
Judge: GalloDaSballo
Total Solo HM: 15
Id: 131
League: ETH
Rank: 47/58
Findings: 1
Award: $119.82
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: IllIllI
Also found by: 0x1f8b, 0x29A, 0xNazgul, 0xf15ers, BowTiedWardens, Chom, Funen, Kaiziron, Kumpa, MiloTruck, Picodes, Ruhum, SecureZeroX, Sm4rty, SmartSek, StyxRave, WatchPug, Waze, asutorufos, bardamu, berndartmueller, c3phas, catchup, cccz, codexploder, cryptphi, defsec, delfin454000, dipp, fatherOfBlocks, gzeon, hake, hansfriese, hyh, masterchief, oyc_109, sach1r0, sashik_eth, shenwilly, simon135, unforgiven
119.8232 USDC - $119.82
Users are still able to stake even if the gauge is killed. This appears to be the intention of the smart contract but thought I would flag this. It would be relatively straightforward to implement a require prior to allowing a user to stake into a gauge. Similar to blinded auction from solidity docs https://docs.soliditylang.org/en/v0.8.14/solidity-by-example.html#id2. Except no need for timestamp check.
This logic is repeated in other places (i.e. KeeperGauge). Thanks!
#0 - chase-manning
2022-06-07T13:09:47Z
duplicate of #147
#1 - GalloDaSballo
2022-06-21T17:06:11Z
Dup of #147