Open code423n4 opened 2 years ago
There is not enough data in the report, I think what the warden wanted to report is that there was no check for recipient
address in TempusController. depositYieldBearing
. If that is the case, we fixed it here https://github.com/tempus-finance/tempus-protocol/pull/371
However, I think the severity of this one is 0
downgrading to non-critical. Zero address checks are a good practice but don't prevent many other bad calls or human errors from potentially being made.
Handle
pants
Vulnerability details