https://sherlock-files.ams3.digitaloceanspaces.com/twitter_images/936dfb7a-7c60-4090-ba1c-a0df95ebe1e3.jpg

JrNet

Security Researcher

Smart Contract Security Researcher | Securing web3 | https://t.co/vIkPZrU12v 🌐

Contact Me

High

Total

Medium

Total

$215.00

Total Earnings

#1646 All Time

7x

Payouts

1x

Top 25

5x

Top 50

All

Code4rena

CodeHawks

Feb '24

Althea Liquid Infrastructure

64.41 USDC • 1 total finding • Code4rena • JrNet

#26

medium

Distribution can be bricked, and double claims by a few holders are possible when owner calls `LiquidInfrastructureERC20::setDistributableERC20s`

Dec '23

The Standard

15.80 USDC • 2 total findings • CodeHawks • JrNet

#63

high

Looping over unbounded `pendingStakes` array can lead to permanent DoS and frozen funds

medium

Wrong Implementation of `LiquidationPool::empty` excludes holder with pending stakes when decreasing a position, resulting in exclusion from asset distribution

Jul '23

Beedle - Oracle free perpetual lending

49.54 USDC • 12 total findings • CodeHawks • JrNet

#70

high

Lender contract can be drained by re-entrancy in `setPool`

high

During refinance() new Pool balance debt is subtracted twice

medium

Lender contract can be drained by re-entrancy in `seizeLoan`

low

Zero address leads to transaction reverts

gas

Move the Duplicate Checks into a Modifier

gas

Multiple accesses of a mapping/array should use a local variable cache.

gas

+= and -= are more expensive

gas

Unbounded loop in Lender.sol functions may revert.

gas

Compromised / Malicious owner of `Lender.sol` can favour old pool by transfering all loans to new pool when `buyLoan` called and receive excess rewards.

gas

Repeated code

gas

Unwanted gas expenditure by recomputing already computed value

gas

Refactor checks involving constants first followed by that include state variables to save gas.

Dec '22