Payouts
1st Places
2nd Places
3rd Places
All
Sherlock
Code4rena
Oct '23
Jul '23
Mar '23
Jan '23
Dec '22
Nov '22
Oct '22
Sep '22
medium
Centralization risk: admin have privileges: admin can set address to mint any amount of frxETH, can set any address as validator, and change important state in frxETHMinter and withdraw fund from frcETHMinter
medium
Rewards delay release could cause yields steal and loss
medium
removeValidator() and removeMinter() may fail due to exceeding gas limit
medium
frxETHMinter: Non-conforming ERC20 tokens not recoverable
medium
`recoverEther` not updating `currentWithheldETH` breaks calculation of withheld amount for further deposits
high
Multiple vote checkpoints per block will lead to incorrect vote accounting
medium
A proposal can be cancelled by anyone if the proposal has exactly proposalThreshold votes
medium
`Governor` - Quorum could be less than intended
medium
Delegation should not be allowed to address(0)
medium
Precision is not enough for proposalThreshold and quorum. Collections with at least 20000 NFTs in total supply may have some trouble.
medium
Proposals can be bricked and Auctions stalled by bad settings
medium
Loss of Veto Power can Lead to 51% Attack
Aug '22
Jul '22
Jun '22
May '22
Apr '22