The following QA issues were found during the code audit:
Unsafe ERC20 Operation(s) (2 instances)
Unspecific Compiler Version Pragma (22 instances)
Total 24 instances of 2 issues.
1. Unsafe ERC20 Operation(s) (2 instances)
ERC20 operations can be unsafe due to different implementations and vulnerabilities in the standard. It is therefore recommended to always either use OpenZeppelin's SafeERC20 library or at least to wrap each operation in a require statement.
2. Unspecific Compiler Version Pragma (22 instances)
Avoid floating pragmas for non-library contracts. While floating pragmas make sense for libraries to allow them to be included with multiple different versions of applications, it may be a security risk for application implementations. A known vulnerable compiler version may accidentally be selected or security tools might fall-back to an older compiler version ending up checking a different EVM compilation that is ultimately deployed on the blockchain. It is recommended to pin to a concrete compiler version.
Nouns Builder Contest QA Report
Summary
The following QA issues were found during the code audit:
Total 24 instances of 2 issues.
1. Unsafe ERC20 Operation(s) (2 instances)
ERC20 operations can be unsafe due to different implementations and vulnerabilities in the standard. It is therefore recommended to always either use OpenZeppelin's SafeERC20 library or at least to wrap each operation in a require statement.
2. Unspecific Compiler Version Pragma (22 instances)
Avoid floating pragmas for non-library contracts. While floating pragmas make sense for libraries to allow them to be included with multiple different versions of applications, it may be a security risk for application implementations. A known vulnerable compiler version may accidentally be selected or security tools might fall-back to an older compiler version ending up checking a different EVM compilation that is ultimately deployed on the blockchain. It is recommended to pin to a concrete compiler version.