GalloDaSballo
commented
2 years ago Disagree as the functions are marked as deprecated for the new versions of the library, we are using 0.6.12, also we only use the safeApprove once, as designed
Closed code423n4 closed 2 years ago
GalloDaSballo
commented
2 years ago Disagree as the functions are marked as deprecated for the new versions of the library, we are using 0.6.12, also we only use the safeApprove once, as designed
0xleastwood
commented
2 years ago agree with sponsor. warden has linked the most up-to-date version of the contract.
Handle
pmerkleplant
Vulnerability details
Impact
Zap.sol,SettToRenIbbtcZap.solandIbbtcVaultZap.soluse OpenZeppelinsSafeERC20::safeApprovefunction.This function is marked as deprecated, see OZ repo.
Recommended Mitigation Steps
Use OZ's
SafeERC20::safeIncreaseAllowanceinstead ofsafeApprove.