A reorg attack can happen if the buyer has enough validators or if the buyer gets lucky when the chain is reorg rule
The buyer executes to give the funds and meanwhile, the seller at the same block gives the audit report
Then the buyer reorgs the chain causing the funds to never have been sent
Gaining the audit report and still having the funds
If the escrow has an arbitor then the risk is mitigated but the auditor won't get the tokens until the dispute is settled
which can take n
amount of time for which the token price can drop causing the auditor not to get paid the rate that was agreed upon.
If the escrow has no arbitor then the seller will lose their funds and that is a huge problem for protocols with no arbitor
The reorg attack happens on polygon and mainnet and other chains increasing the severity
If the escrow has no arbitor then there is really no way of mitigating this issue
If there is a arbiter then maybe base the price on USD value or eth value something that is not as vulnerable as token price
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.