Foundry DeFi Stablecoin CodeHawks Audit Contest

Cyfrin

DeFiFoundry

15,000 USDC

View results

Previous Next

Submission Details

Severity: medium

Contracts cant be upgraded

aballok

Summary

Protocol is not upgradeable

Vulnerability Details

The protocol can not be upgraded. This implies there is no remedy to the following

Policy, Market, Improvements, Experiences learning and changes e.g cant change collateral assets, can't add new functionality to the contracts, cant change thresholds
In the event of attack, bugs, problems in protocol the system cant be upgraded to correct challenge and ensure continuity

Impact

Medium: Not being upgradeable makes the system brittle and inflexible and unable to react to challenges, learnings, market conditions, new policies, attacks, inability to enhance functionality, competitiveness and more

Tools Used

Manual Analysis

Recommendations

It is recommended contracts be made upgradeable with MultiSig or Governance controlling the accesses, changes etc, so that an issues, new policies, changes can be adopted to ensure continuity of the project at the same address and states familiar to users

Prize pool breakdown

Total prize

15,000 USDC

nSLOC

236

64 USDC / LOC

High Medium

14,000 USDC

Low

1,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.