Closed code423n4 closed 3 years ago
a_delamo
Use latestRoundData instead of latestAnswer for chainlink Oracles in order to be able to run more validations like
( roundId, rawPrice, , updateTime, answeredInRound ) = AggregatorV3Interface(source.source).latestRoundData(); require(rawPrice > 0, "Chainlink price <= 0"); require(updateTime != 0, "Incomplete round"); require(answeredInRound >= roundId, "Stale price");
Provide direct links to all referenced code in GitHub. Add screenshots, logs, or any other relevant proof that illustrates the concept.
Duplicate of #145
changed risk from 1 to 2 as per judges sheet
Handle
a_delamo
Vulnerability details
Impact
Use latestRoundData instead of latestAnswer for chainlink Oracles in order to be able to run more validations like
Proof of Concept
Provide direct links to all referenced code in GitHub. Add screenshots, logs, or any other relevant proof that illustrates the concept.
Tools Used
Recommended Mitigation Steps