c4-judge
commented
4 months ago Picodes marked the issue as satisfactory
Open c4-bot-10 opened 4 months ago
c4-judge
commented
4 months ago Picodes marked the issue as satisfactory
c4-judge
commented
4 months ago Picodes marked the issue as confirmed for report
Lines of code
Vulnerability details
Comments
In the original implementation, the first liquidity provider could suffer a loss on their deposited tokens by a front-run attack becuase slippage protection is ineffective for the first
addLiquidity()transaction.Mitigation
commit 0bb763c in
Pools#addLiquidity(),minAddedAmountAandminAddedAmountBare introduced to ensure that the amounts of deposited tokens must not be less than these values. The original issue was resolved.Conclusion
Confirmed