Closed code423n4 closed 2 years ago
which such critical changes?
This has been fixed
I completely disagree with the findings, you can track the call of any function by using call listeners, the most common JS libraries such as ethers or web3 allow to literally call: Contract.on(FunctionName) to check for function calls
"There should be events" is a best practice, not a security risk
duplicate of #55
Handle
0x0x0x
Vulnerability details
Proof of Concept
Such critical changes has to be emitted with events. So that users can get notified about such critical changes. It is important to create a safe environment for users, investors and devs.
Furthermore, I strongly recommend using timelock to create an even safer application and make sure users have no worry about front-running etc.
Tools Used
Manual analysis