-
## DISCREPANCY IN AUTH BETWEEN CONTRACTS COULD CAUSE MALFUNCTION
### SEVERITY: Low
### PATH: see description
### REMEDIATION
implement a single Auth contract that uses
OpenZeppelin’s Access…
-
## WITHDRAWAL IS NOT COMPLIANT WITH ERC4626 SPECIFICATION
### SEVERITY: Medium
### PATH: MevEth.sol:_withdraw (L582-599)
https://github.com/manifoldfinance/mevETH2/blob/63edde66d91c263b919fe9c2…
-
## Problem
Ideally, a locally testable network should be present to ease testing the smart contracts easily and locally without a full-fledged network.
## Solution
Implement the local testabl…
-
## Problem
```
Reentrancy in MevEth.deposit(uint256,address) (src/MevEth.sol#254-279):
External calls:
- WETH.transferFrom(msg.sender,address(this),assets) (src/MevEth.sol#255)
…
-
## MEVETH OFT TRANSFERS MIGHT GET STUCK
### SEVERITY: Medium
### PATH: OFTCoreV2.sol:_sendAndCall:L179-205
https://github.com/manifoldfinance/mevETH2/blob/63edde66d91c263b919fe9c21e128a38221988…
-
Story: manifoldfinance/mevETH2#68
### Description
Ideally, we should test the specific functionality of the `mevETH` contract. This includes the following functions:
- `setManifoldLSD`
- `m…
-
Ensure (95% or higher) test coverage for the following contracts
- [x] MevEth
- [x] MevEthShareVault
- [x] manifoldfinance/mevETH2#5
- [x] WagyuStaker
-
## MEVETH ETH BUFFER PERCENTAGE IS UNBOUNDED
### SEVERITY: Low
### PATH: MevEth.sol:updateBufferPercentNumerator(uint8):L143-145
https://github.com/manifoldfinance/mevETH2/blob/63edde66d91c263b…
-
## Status
Reported
## Type
Vulnerability
## Severity
Highest
## Code Snippet:
```js
function grantRewards() external payable {
// Process the withdrawal queue, paying out any pendin…
-
## Problem
MevEth deposit minimum is currently hard coded as 1,000 wei. This should be parametrized and agreed upon. 0xBeans contract had the deposit minimum as 1,000,000,000,000,000,000 wei by compa…