search

crytic / amarna

Amarna is a static-analyzer and linter for the Cairo programming language.
https://blog.trailofbits.com/2022/04/20/amarna-static-analysis-for-cairo-programs/
GNU Affero General Public License v3.0
149 stars 7 forks source link

Access controls during cross-chain calls #80

Open ggrieco-tob opened 1 year ago

ggrieco-tob commented 1 year ago

Add a detector to check if a function marked with @l1_handler calls get_caller_address (either directly or indirectly). It will return 0x0 and can cause issues in some cases.