Add the xcm-config-check lint to validate if pallet-xcm has been configured properly.

KaiserKarel / substrace

Static analysis for Substrate based projects

27 stars 1 forks source link

Add the xcm-config-check lint to validate if pallet-xcm has been configured properly. #12

Open KaiserKarel opened 1 year ago

KaiserKarel commented 1 year ago

Karura had an XCM bug because of a misconfigured pallet-xcm. We need a lint that compares a pallet-XCM configuration with the one that allowed for the karura hack to happen, and warn users of this.

TheCodingWombat commented 1 year ago

Details: https://medium.com/kusama-network/kusamas-governance-thwarts-would-be-attacker-9023180f6fb

TheCodingWombat commented 1 year ago

Example config location: https://github.com/ComposableFi/composable/blob/main/code/parachain/runtime/picasso/src/lib.rs