Beedle - Oracle free perpetual lending

BeedleFi

DeFiFoundry

20,000 USDC

View results

Previous Next

Submission Details

Severity: gas

Valid

Cannot use `_burn` Function in Beedle.sol Contract

0xepley

Summary

The Beedle.sol contract includes an unused internal _burn function which is internal and not being called anywhere within the contract. As it stands, the function is not accessible externally and is effectively "hidden" from external calls.

Vulnerability Details

The _burn function in the Beedle.sol contract is defined as an internal function but lacks any internal or derived contract function calls to invoke it. As a result, there is currently no way for external contracts or transactions to access and call the _burn function directly.

Impact

Owner will not be able to burn the tokes, owner can only mint without burning with cause hyper inflation. Without the ability to burn tokens, the contract's supply becomes permanently inflationary, which could undermine the token's value and negatively impact its utility and market perception.

Tools Used

Manual review

Recommendations

consider adding this code

function burn(address to, uint256 amount) external onlyOwner {

_burn(to, amount);

}

Prize pool breakdown

Total prize

20,000 USDC

nSLOC

706

28 USDC / LOC

High Medium

18,000 USDC

Low

2,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.

Give us feedback!