https://sherlock-files.ams3.digitaloceanspaces.com/twitter_images/2497906f-839c-46d9-9236-87c2e54d0714.jpg

Sm4rty

Security Researcher

📡 Web3 Security Researcher 🔎 | 🔮 Audits @code4rena @codehawks @sherlockdefi | 🛡 Former auditor @QuillAudits | DM for Collaborations ☄️

Contact Me

High

2

Total

Medium

11

Total

$2.60K

Total Earnings

#913 All Time

37x

Payouts

regular

1x

Top 10

regular

7x

Top 25

regular

23x

Top 50

All

Sherlock

Code4rena

CodeHawks

Jul '22Aug '22Sep '22Oct '22Jul '23Aug '232 findings2 findings3 findings1 finding6 findings3 findings

Aug '23

Sparkn

Sparkn

20.26 USDC 3 total findings • CodeHawkssm4rty

#46

low

If a winner is blacklisted on any of the tokens they can't receive their funds

low

Potential DOS due to Gas Exhaustion Due to Large Array Iteration in `_distribute` Function

low

Missing Events

Jul '23

Foundry DeFi Stablecoin CodeHawks Audit Contest

Foundry DeFi Stablecoin CodeHawks Audit Contest

0.97 USDC 4 total findings • CodeHawkssm4rty

#135

medium

staleCheckLatestRoundData() does not check the status of the Arbitrum sequencer in Chainlink feeds.

medium

Chainlink oracle will return the wrong price if the aggregator hits `minAnswer`

medium

All of the USD pair price feeds doesn't have 8 decimals

low

Pragma isn't specified correctly which can lead to nonfunction/damaged contract when deployed on Arbitrum

CodeHawks Escrow Contract - Competition Details

CodeHawks Escrow Contract - Competition Details

59.72 USDC 1 total finding • CodeHawkssm4rty

#42

low

Lack of proper event emission at resolveDispute function.

Beam

Beam

35.23 USDC SherlockSm4rty

#34

Bond Options

Bond Options

99.50 USDC 1 total finding • SherlockSm4rty

#17

high

Attacker can Steal Other User's Collateral

Mar '23

Gitcoin

Gitcoin

69.98 USDC SherlockSm4rty

#45

Oct '22

Paladin - Warden Pledges contest

Paladin - Warden Pledges contest

19.64 USDC Code4renaSm4rty

#33

Mycelium

Mycelium

99.78 USDC 1 total finding • SherlockSm4rty

#9

high

A malicious early user/attacker can manipulate the myLink token's pricePerShare to take an unfair share of future users' deposits

Sep '22

Frax Ether Liquid Staking contest

Frax Ether Liquid Staking contest

54.44 USDC 1 total finding • Code4renaSm4rty

#45

medium

frxETHMinter: Non-conforming ERC20 tokens not recoverable

VTVL contest

VTVL contest

28.18 USDC Code4renaSm4rty

#67

Art Gobblers contest

Art Gobblers contest

55.2 USDC Code4renaSm4rty

#21

Harpie

Harpie

16.97 USDC 1 total finding • SherlockSm4rty

#21

medium

Use safeTransferFrom instead of transferFrom for ERC721 transfers

Y2k Finance contest

Y2k Finance contest

16.18 USDC Code4renaSm4rty

#53

PartyDAO contest

PartyDAO contest

40.18 USDC Code4renaSm4rty

#58

FEI and TRIBE Redemption contest

FEI and TRIBE Redemption contest

33.58 USDC Code4renaSm4rty

#14

Canto Dex Oracle contest

Canto Dex Oracle contest

107.4 CANTO 1 total finding • Code4renaSm4rty

#11

medium

unbounded loop length dos

Aug '22

Olympus DAO contest

Olympus DAO contest

99.68 USDC 1 total finding • Code4renaSm4rty

#54

medium

[NAZ-M1] Chainlink's `latestRoundData` Might Return Stale Results

Nouns DAO contest

Nouns DAO contest

52.41 USDC Code4renaSm4rty

#32

FIAT DAO veFDT contest

FIAT DAO veFDT contest

44.84 USDC Code4renaSm4rty

#62

Fraxlend (Frax Finance) contest

Fraxlend (Frax Finance) contest

67.02 USDC Code4renaSm4rty

#54

Foundation Drop contest

Foundation Drop contest

74.99 USDC 1 total finding • Code4renaSm4rty

#34

medium

NFT of NFT collection or NFT drop collection can be locked when calling _mint or mintCountTo function to mint it to a contract that does not support ERC721 protocol

Mimo August 2022 contest

Mimo August 2022 contest

69.66 USDC Code4renaSm4rty

#38

Rigor Protocol contest

Rigor Protocol contest

62.34 USDC Code4renaSm4rty

#65

Jul '22

Axelar Network v2 contest

Axelar Network v2 contest

90.6 USDC Code4renaSm4rty

#24

Golom contest

Golom contest

56.64 USDC Code4renaSm4rty

#81

Yield Witch v2 contest

Yield Witch v2 contest

16.88 USDC Code4renaSm4rty

#55

Swivel v3 contest

Swivel v3 contest

72.25 USDC Code4renaSm4rty

#41

ENS contest

ENS contest

293.9 USDC 1 total finding • Code4renaSm4rty

#26

medium

The `unwrapETH2LD` use `transferFrom` instead of `safeTransferFrom` to transfer ERC721 token

Fractional v2 contest

Fractional v2 contest

105.13 USDC Code4renaSm4rty

#63

Juicebox V2 contest

Juicebox V2 contest

132.45 USDC 1 total finding • Code4renaSm4rty

#40

medium

Use a safe transfer helper library for ERC20 transfers

Jun '22

Putty contest

Putty contest

56.36 USDC 1 total finding • Code4renaSm4rty

#71

medium

Putty position tokens may be minted to non ERC721 receivers

Canto v2 contest

Canto v2 contest

64.9 USDC Code4renaSm4rty

#29

Yieldy contest

Yieldy contest

79.85 USDC Code4renaSm4rty

#54

Badger-Vested-Aura contest

Badger-Vested-Aura contest

51.26 USDC Code4renaSm4rty

#35

Infinity NFT Marketplace contest

Infinity NFT Marketplace contest

48.98 USDC Code4renaSm4rty

#70

Notional x Index Coop

Notional x Index Coop

135.59 USDC Code4renaSm4rty

#34

May '22

Backd Tokenomics contest

Backd Tokenomics contest

171.81 USDC Code4renaSm4rty

#26