In most of the contracts there's a purgeDeployer() function that sets the Deployer address to zero. Contracts synthVault and Router though don't have it. Since the idea is to decentralize the protocol giving all the power to the Dao, the function should be added also here.
SamusElderg
commented
3 years ago
Handle
0xsanson
Vulnerability details
Impact
In most of the contracts there's a
purgeDeployer()function that sets the Deployer address to zero. ContractssynthVaultandRouterthough don't have it. Since the idea is to decentralize the protocol giving all the power to the Dao, the function should be added also here.Proof of Concept
snip
Tools Used
editor
Recommended Mitigation Steps
Add purgeDeployer() to all the contracts.