M-09 MitigationConfirmed

[code423n4]

Lines of code

Vulnerability details

Issue mitigated

About the problem

Claimer._computeMaxFee function calculated fee for the bot incorrectly, because it used getTierPrizeSize for the wrong tier if tier was not canary. Because of that, there can be cases, when bots will be not incentivized to claim prizes as they will not receive enough fee to cover gas costs.

Solution

This issue was fixed by fetching correct prize size for the tier.

[c4-judge]

Picodes marked the issue as satisfactory