Skip to content

Issues: code-423n4/2024-04-renzo-findings

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

90 Open 523 Closed
90 Open 523 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Withdrawals can be locked forever if recipient is a contract 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working H-01 primary issue Highest quality submission among a set of duplicates 🤖_23_group AI based duplicate group recommendation satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality
#612 opened May 28, 2024 by howlbot-integration bot
11
Users that place in multiple withdrawal requests within the cooldown period would have their amount of tokens to redeem locked in the WithdrawalQueue for their later placed withdrawals bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-a QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax 🤖_31_group AI based duplicate group recommendation sponsor disputed Sponsor cannot duplicate the issue, or otherwise disagrees this is an issue sufficient quality report This report is of sufficient quality
#611 opened May 28, 2024 by howlbot-integration bot
5
Finalized withdrawals can be modified bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue duplicate-607 edited-by-warden grade-b Q-02 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax 🤖_primary AI based primary recommendation 🤖_31_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#610 opened May 28, 2024 by howlbot-integration bot
4
Changing coolDownPeriod will affect already queued withdrawals bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue duplicate-607 grade-b Q-04 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax 🤖_31_group AI based duplicate group recommendation sufficient quality report This report is of sufficient quality
#608 opened May 28, 2024 by howlbot-integration bot
4
Unfair changes to cooldown period affect existing withdrawals bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-a primary issue Highest quality submission among a set of duplicates QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax 🤖_31_group AI based duplicate group recommendation sponsor disputed Sponsor cannot duplicate the issue, or otherwise disagrees this is an issue sufficient quality report This report is of sufficient quality
#607 opened May 28, 2024 by howlbot-integration bot
7
Withdrawals can fail due to deposits reverting in completeQueuedWithdrawal() 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working M-01 primary issue Highest quality submission among a set of duplicates 🤖_42_group AI based duplicate group recommendation satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons sufficient quality report This report is of sufficient quality
#604 opened May 28, 2024 by howlbot-integration bot
6
Restake Manager incorrectly calculates the totatRewardsEarned bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-b Q-06 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax 🤖_primary AI based primary recommendation 🤖_11_group AI based duplicate group recommendation sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality
#603 opened May 28, 2024 by howlbot-integration bot
9
Upgraded Q -> 2 from #57 [1716796622913] downgraded by judge Judge downgraded the risk level of this issue grade-b QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor disputed Sponsor cannot duplicate the issue, or otherwise disagrees this is an issue withdrawn by judge Special case: this finding was auto-generated by a judge and is now withdrawn; it can be ignored
#597 opened May 27, 2024 by c4-judge
7
Withdrawals and Claims are meant to be pausable, but it is not possible in practice 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working edited-by-warden M-02 primary issue Highest quality submission among a set of duplicates 🤖_06_group AI based duplicate group recommendation satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality
#569 opened May 10, 2024 by howlbot-integration bot
3
Fixed hearbeat used for price validation is too stale for some tokens 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working edited-by-warden M-03 primary issue Highest quality submission among a set of duplicates 🤖_02_group AI based duplicate group recommendation satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons sufficient quality report This report is of sufficient quality unknown
#563 opened May 10, 2024 by howlbot-integration bot
8
QA Report bug Something isn't working edited-by-warden grade-b Q-07 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#559 opened May 10, 2024 by howlbot-integration bot
2
QA Report bug Something isn't working grade-b Q-08 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#558 opened May 10, 2024 by howlbot-integration bot
2
QA Report 1st place bug Something isn't working edited-by-warden grade-a Q-09 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax selected for report This submission will be included/highlighted in the audit report sufficient quality report This report is of sufficient quality
#557 opened May 10, 2024 by howlbot-integration bot
6
QA Report bug Something isn't working edited-by-warden grade-b Q-10 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#556 opened May 10, 2024 by howlbot-integration bot
8
QA Report bug Something isn't working grade-a Q-11 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#555 opened May 10, 2024 by howlbot-integration bot
2
QA Report bug Something isn't working grade-a Q-12 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#554 opened May 10, 2024 by howlbot-integration bot
4
QA Report bug Something isn't working grade-b Q-13 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#553 opened May 10, 2024 by howlbot-integration bot
2
QA Report bug Something isn't working grade-b Q-14 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#550 opened May 10, 2024 by howlbot-integration bot
2
QA Report bug Something isn't working grade-a Q-15 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#549 opened May 10, 2024 by howlbot-integration bot
4
QA Report bug Something isn't working grade-a Q-16 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#547 opened May 10, 2024 by howlbot-integration bot
2
QA Report bug Something isn't working grade-b Q-17 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#546 opened May 10, 2024 by howlbot-integration bot
2
OperatorDelegator#queueWithdrawals() would assume the wrong share amount from some strategies when queuing withdrawals bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-a QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax 🤖_54_group AI based duplicate group recommendation sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons sufficient quality report This report is of sufficient quality
#545 opened May 10, 2024 by howlbot-integration bot
5
QA Report bug Something isn't working grade-a Q-01 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#543 opened May 10, 2024 by howlbot-integration bot
3
QA Report bug Something isn't working edited-by-warden grade-b Q-18 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#542 opened May 10, 2024 by howlbot-integration bot
2
QA Report bug Something isn't working edited-by-warden grade-a Q-19 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#541 opened May 10, 2024 by howlbot-integration bot
2
ProTip! Type g p on any issue or pull request to go back to the pull request listing page.