Security Researcher
i stare at codes till either of us breaks!
High
Total
Medium
Total Earnings
#1518 All Time
Payouts
Top 25
Top 50
All
Sherlock
Cantina
Nov '25
1.02 USDC • 2 total findings • Sherlock • BoyD
#45
high
Price manipulation of `stNXM–wNXM` Uniswap V3 pool inflates vault share minting by reading instantaneous V3 `slot0` for ERC‑4626 accounting
medium
Hard-coded zero slippage bounds when removing/adding Uniswap v3 liquidity allows sandwich/front-run to drain wNXM
Oct '25
89.98 USDC • Sherlock • BoyD
#19
28.61 USDC • 2 total findings • Cantina • boyD
#24
Sep '25
1.14 OP • 3 total findings • Sherlock • BoyD
#46
`onlyGauge` accrual enables griefing and systemic reward loss
Over accrual across 0 stake periods leads to increase in `rewardindex`
`setMintRate` updates `mintRate` but does not call `_updateRewardIndex()` first leading to `stakers` being under/overpaid depending on timing
595.10 USDC • 2 total findings • Sherlock • BoyD
#11
parent `subtreeBorrowedX/Y` is not aggregated during non visit propagation in `LiqWalker.up()`
`MakerFacet.newMaker` makes settlement to `msg.sender`; while `recipient` parameter is ignored for settlement.
