The Auction.initialize function accepts a factory_ parameter.
However, as this contract is always initialized directly from the factory, it can just use msg.sender.
Recommended Mitigation Steps
Removing the additional factory_ parameter and using msg.sender instead will save gas.
This is already done for the other Basket contract.
GalloDaSballo
commented
2 years ago
Handle
cmichel
Vulnerability details
The
Auction.initializefunction accepts afactory_parameter. However, as this contract is always initialized directly from the factory, it can just usemsg.sender.Recommended Mitigation Steps
Removing the additional
factory_parameter and usingmsg.senderinstead will save gas. This is already done for the otherBasketcontract.