Polaris_2

Security Researcher

Got it!

Contact Me

High

Total

Medium

Total

$2.73K

Total Earnings

#1030 All Time

7x

Payouts

2x

Top 25

2x

Top 50

All

Cantina

CodeHawks

Aug '25

kuru-contracts

1,258.42 USDC • 1 total finding • Cantina • polaristow22

#17

high

Finding not yet public.

solayer-bridge

1,411.08 USDC • 3 total findings • Cantina • polaristow22

#13

high

Finding not yet public.

high

Finding not yet public.

medium

Finding not yet public.

Aug '24

Tadle

0.00 USDC • 1 total finding • CodeHawks • polaris_tow

#178

low

[Low-01] Missing Access Control in `CapitalPool::approve()` Function Allows any User to call it to set Allowance Amount `TokenContract` to `type(uint256).max`.

Aug '23

Sparkn

0.00 USDC • 1 total finding • CodeHawks • polaris_tow

#93

low

If a winner is blacklisted on any of the tokens they can't receive their funds

Jul '23

Beedle - Oracle free perpetual lending

13.30 USDC • 4 total findings • CodeHawks • polaris_tow

#143

high

Tokens with less than 18 decimals allow for draining of funds

high

Sandwich attack to steal all ERC-20 tokens in the Fees contract

high

Forcing a borrower to pay a huge debt via the giveLoan()

medium

Single-step process for critical ownership transfer is risky

Foundry DeFi Stablecoin CodeHawks Audit Contest

6.61 USDC • 6 total findings • CodeHawks • polaris_tow

#90

medium

staleCheckLatestRoundData() does not check the status of the Arbitrum sequencer in Chainlink feeds.

medium

DSC protocol can consume stale price data or cannot operate on some EVM chains

medium

Chainlink oracle will return the wrong price if the aggregator hits `minAnswer`

medium

All of the USD pair price feeds doesn't have 8 decimals

medium

Lack of fallbacks for price feed oracle

gas

Double checks

CodeHawks Escrow Contract - Competition Details

37.93 USDC • 1 total finding • CodeHawks • polaris_tow

#55

medium

High - Funds can be lost if any participant is blacklisted