_mint() is discouraged in favor of _safeMint() which ensures that the recipient is either an EOA or implements IERC721Receiver. Both OpenZeppelin and solmate have versions of this function. In the cases below, _mint() does not call ERC721TokenReceiver.onERC721Received() on the recipient.
Lines of code
139, 178, 204
Vulnerability details
_mint()
is discouraged in favor of_safeMint()
which ensures that the recipient is either an EOA or implementsIERC721Receiver
. Both OpenZeppelin and solmate have versions of this function. In the cases below,_mint()
does not callERC721TokenReceiver.onERC721Received()
on the recipient.Assessed type
other