c4-judge
commented
1 year ago Picodes marked the issue as grade-a
Open code423n4 opened 1 year ago
c4-judge
commented
1 year ago Picodes marked the issue as grade-a
c4-judge
commented
1 year ago Picodes marked the issue as selected for report
ramenforbreakfast
commented
1 year ago Was asked to repost this from the C4 Discord.
Thank you for preparing the review and also including our discussions for clarification on certain issues! The following are things I spotted while reviewing:
Picodes
commented
1 year ago L07: report is valid (there is a centralization risk) although it is not stated in the repo that owner role isn’t behind a multi-sig so this can be amended for the report. L-10: invalid as upgradeable contracts are deployed and initialized in one transaction L-4, L-11, and NC-1 are the same issue, we can keep only NC-1 for the report N-9: invalid N-12: per the sponsor comments seems invalid on their main repo, but valid on the audit repo
The rest can be kept for the report!
liveactionllama
commented
1 year ago Just a note that C4 is excluding the invalid entries (noted by the judge above) from the official report.
ramenforbreakfast
commented
1 year ago What about N-05 nad N-12? is the formatting correct? Seems strange to me that "Function writing" and "inherited state variables" are formatted with backticks.
N-11 has "Solidity Style Guide" in the title as well, but is not formatted in the same vein, seems to be a mistake.
For the Non-Critical Issues Summary Table, there is a typo "All Conracts" instead of "All Contracts"
See the markdown file with the details of this report here.