-
The create address derivation for `EOFCREATE` is based on `CREATE2`.
keccack256(sender_address + salt + keccak256(init-container))
where the `sender_address` is the logical address of the co…
-
### Feature description
## Background
Currently, the Miden client only allows users to create accounts with standardized code (basic wallet and faucets) and storage. We want users to be able to cr…
-
#1
https://github.com/code-423n4/2022-05-factorydao/blob/db415804c06143d8af6880bc4cda7222e5463c0e/contracts/FixedPricePassThruGate.sol#L53
https://github.com/code-423n4/2022-05-factorydao/blob/db415…
-
1. Missing zero address check
The following are missing zero address checks. Mistakenly inputing a zero address could lead to tokens being sent to zero address leading to loss of funds/tokens. Or it c…
-
## [N1] Unused imports
The following source units are imported but not referenced in the contract:
https://github.com/code-423n4/2022-02-nested/blob/879bae87b1987d6810f25c1082e5bf664390ae7f/contract…
-
# Handle
WatchPug
# Vulnerability details
Reading array length at each iteration of the loop takes 6 gas (3 for mload and 3 to place memory_offset) in the stack.
Caching the array length in the s…
-
# 1. Use uint256 Instead of uint
## Impact
Use uint256 because it is consistent with other uint data types, which also specify their size, and also because making the size of the data explicit remind…
-
# Handle
cccz
# Vulnerability details
## Impact
It is good to add a require() statement that checks the return value of token transfers or to use something like OpenZeppelin’s safeTransfer/safeTr…
-
# Low Risk
## [L-01] Floating pragma
It's a good practice to avoid the use of floating pragma. Code must be compiled with the same version it as been tested the most. It also avoids the use of any n…
-
## Issue 1 (Low) - All function inputs should verify address != address(0)
https://github.com/code-423n4/2022-03-joyn/blob/c9297ccd925ebb2c44dbc6eaa3effd8db5d2368a/core-contracts/contracts/CoreCollec…