https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/916ae18a-67d1-401e-b164-4a441aa5207f.png

0xastronatey

Security Researcher

Building Auron (https://auron.xyz), an autonomous AI security researcher for smart contract and DLT bugs. Please reach me on nate@auron.xyz or on X

Contact Me

High

Total

Medium

Total

$9.48K

Total Earnings

#676 All Time

9x

Payouts

2x

3rd Places

4x

Top 10

6x

Top 25

All

Code4rena

Feb '25

THORWallet

0.35 USDC • 2 total findings • Code4rena • 0xastronatey

high

MergeTgt has no handling if TGT_TO_EXCHANGE is exceeded during the exchange period

medium

Improper Transfer Restrictions on Non-Bridged Tokens Due to Boolean Bridged Token Tracking, Allowing a DoS Attack Vector

Stealth Project by Textile

1,469.31 USDC • Code4rena • 0xastronatey

Jan '25

Liquid Ron

0 USDC • 1 total finding • Code4rena • 0xastronatey

#11

medium

Incorrect Logic in onlyOperator Modifier Leading to Denial-of-Service for Authorized Operators Across Critical Functions

Dec '24

SecondSwap

1.21 USDC • 3 total findings • Code4rena • 0xastronatey

#60

high

Users can claim more that their actual allotment

medium

Listing potential can not be purchased with discounted price

medium

Incorrect listing type validation bypasses enforcement of minimum purchase amount

Chainlink Payment Abstraction

1,987.07 USDC • Code4rena • 0xastronatey

Sep '24

Kakarot

6,026.65 USDC • 2 total findings • Code4rena • 0xastronatey

high

Unauthorized Contracts Can Bypass Precompile Authorization via delegatecall in Kakarot zkEVM

high

Three valid signatures for the same message

Aug '24

The Wildcat Protocol

0 USDC • Code4rena • 0xastronatey

#12

Chakra

0.07 USDT • 1 total finding • Code4rena • 0xastronatey

#63

high

There is no refund mechanism in `ChakraSettlement.processCrossChainCallback` or `ChakraSettlementHandler.receive_cross_chain_callback` function

Superposition

1.26 USDC • 1 total finding • Code4rena • 0xastronatey

#32

medium

_onTransferReceived() does not work as intended