
Security Researcher
$1M+ in bounties this year HackenProof #4 all-time L1/L2 clients + smart contracts Open to part-time audit work github.com/link-infsec
High
Total
Medium
Solo
Total

Total Earnings
#480 All Time

Payouts

Top 10

Top 25

Top 50
All
Sherlock
Apr '26
high
Delegating to a pseudo-account permanently blocks AMM, Vault, and LoanBroker cleanup
high
`getBookPage` applies IOU unlimited-funds semantics to MPT issuer offers, causing `book_offers` RPC to overreport executable liquidity
high
Batch multi-sign preimage fails to bind signing-for account, enabling cross-account signature replay and fund theft
medium
Integer truncation in MPT input allows partially funded offers to be consumed for free
medium
Incorrect sponsor parameter in PaymentChannelCreate reserve check allows sender to bypass post-lock reserve validation
medium
Silently discarded MPT rounding mode lets AMM pool be drained by directed rounding bias
medium
Confused Balance Check Subject in AMMDeposit Reserve Sponsor Allows Reserve-Locked XRP to Be Deposited into AMM Liquidity Pool and Monetized