However it's not like that. In case if fee on transfer tokens or rebasing tokens will be used by protocol then it will stop working normally as Drips contract never checks balances, when doing calculations.
For example, here in case if fee on transfer token is used, balance will be increased with amount without fee. As result balance of ERC20 token will be outdated and next calculations for drips for the receivers will be wrong.
Tools Used
VsCode
Recommended Mitigation Steps
Make your documentation be inline with the code, so users will not use all erc20.
Lines of code
https://github.com/code-423n4/2023-01-drips/blob/main/src/Drips.sol#L636
Vulnerability details
Impact
Detailed description of the impact of this finding.
Proof of Concept
Docs of protocol say that any erc20 token is supported.
https://v2.docs.drips.network/docs/drips-v2-features#multi-token-support-any-erc20
However it's not like that. In case if fee on transfer tokens or rebasing tokens will be used by protocol then it will stop working normally as
Drips
contract never checks balances, when doing calculations.For example, here in case if fee on transfer token is used, balance will be increased with amount without fee. As result balance of ERC20 token will be outdated and next calculations for drips for the receivers will be wrong.
Tools Used
VsCode
Recommended Mitigation Steps
Make your documentation be inline with the code, so users will not use all erc20.