Skip to content

Issues: code-423n4/2024-01-decent-findings

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

44 Open 706 Closed
44 Open 706 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Gas Optimizations bug Something isn't working G (Gas Optimization) G-01 grade-a sufficient quality report This report is of sufficient quality
#739 opened Jan 23, 2024 by c4-bot-8
4
Analysis A-01 analysis-advanced grade-b sufficient quality report This report is of sufficient quality
#732 opened Jan 23, 2024 by c4-bot-6
2
Anyone can update the address of the Router in the DcntEth contract to any address they would like to set. 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working H-01 primary issue Highest quality submission among a set of duplicates satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality
#721 opened Jan 23, 2024 by c4-bot-8
6
QA Report bug Something isn't working edited-by-warden grade-b Q-01 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#712 opened Jan 23, 2024 by c4-bot-3
5
Analysis A-02 analysis-advanced grade-b sufficient quality report This report is of sufficient quality
#680 opened Jan 23, 2024 by c4-bot-4
2
Analysis A-03 analysis-advanced grade-a high quality report This report is of especially high quality selected for report This submission will be included/highlighted in the audit report sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#667 opened Jan 23, 2024 by c4-bot-2
5
Permanent loss of tokens if swap data gets outdated 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue M-01 primary issue Highest quality submission among a set of duplicates satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality
#665 opened Jan 23, 2024 by c4-bot-8
13
Analysis A-04 analysis-advanced grade-a high quality report This report is of especially high quality sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#651 opened Jan 23, 2024 by c4-bot-8
3
Analysis A-05 analysis-advanced edited-by-warden grade-a high quality report This report is of especially high quality sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#648 opened Jan 23, 2024 by c4-bot-3
3
Users can use the protocol freely without paying any fees by calling the DecentEthRouter::bridgeWithPayload() function directly. 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue high quality report This report is of especially high quality M-02 primary issue Highest quality submission among a set of duplicates satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#647 opened Jan 23, 2024 by c4-bot-1
16
QA Report bug Something isn't working grade-b insufficient quality report This report is not of sufficient quality Q-03 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
#621 opened Jan 23, 2024 by c4-bot-9
5
Analysis A-06 analysis-advanced grade-a sufficient quality report This report is of sufficient quality
#618 opened Jan 23, 2024 by c4-bot-4
2
Analysis A-07 analysis-advanced grade-b high quality report This report is of especially high quality sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#617 opened Jan 23, 2024 by c4-bot-7
5
QA Report bug Something isn't working edited-by-warden grade-a Q-04 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#616 opened Jan 23, 2024 by c4-bot-8
6
QA Report bug Something isn't working edited-by-warden grade-b Q-05 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#604 opened Jan 23, 2024 by c4-bot-2
9
Missing access control on UTB:receiveFromBridge allows UTB swaps to be executed without spending bridge fees while bypassing fee/swap instruction signature verification 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue edited-by-warden M-03 primary issue Highest quality submission among a set of duplicates satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality
#590 opened Jan 23, 2024 by c4-bot-10
7
Analysis A-08 analysis-advanced grade-b sufficient quality report This report is of sufficient quality
#545 opened Jan 23, 2024 by c4-bot-7
2
QA Report bug Something isn't working grade-b Q-06 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#542 opened Jan 23, 2024 by c4-bot-9
5
Gas Optimizations bug Something isn't working G (Gas Optimization) G-02 grade-b sufficient quality report This report is of sufficient quality
#539 opened Jan 23, 2024 by c4-bot-1
4
Due to missing checks on minimum gas passed through LayerZero, executions can fail on the destination chain 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working disagree with severity Sponsor confirms validity, but disagrees with warden’s risk assessment (sponsor explain in comments) edited-by-warden H-02 primary issue Highest quality submission among a set of duplicates satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sufficient quality report This report is of sufficient quality upgraded by judge Original issue severity upgraded from QA/Gas by judge
#525 opened Jan 23, 2024 by c4-bot-6
13
Potential loss of capital due to fixed fee calculations 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working M-04 primary issue Highest quality submission among a set of duplicates selected for report This submission will be included/highlighted in the audit report sufficient quality report This report is of sufficient quality
#520 opened Jan 23, 2024 by c4-bot-5
5
QA Report bug Something isn't working grade-a Q-07 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#512 opened Jan 23, 2024 by c4-bot-1
4
QA Report bug Something isn't working grade-a Q-08 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#508 opened Jan 23, 2024 by c4-bot-2
4
Loss of funds when redeeming Decent tokens on chains that dont support ETH as gas token bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue edited-by-warden grade-b primary issue Highest quality submission among a set of duplicates Q-09 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality
#505 opened Jan 23, 2024 by c4-bot-5
11
Gas Optimizations bug Something isn't working G (Gas Optimization) G-03 grade-a sufficient quality report This report is of sufficient quality
#485 opened Jan 23, 2024 by c4-bot-1
4
ProTip! Type g i on any issue or pull request to go back to the issue listing page.