Foundry DeFi Stablecoin CodeHawks Audit Contest

Cyfrin

DeFiFoundry

15,000 USDC

Submission Details

Severity: medium

Valid

ERC20 tokens with no return value will fail to transfer

The ERC20 standard recommends that a successful token transfer should return true.
However, numerous tokens, including prominent ones like USDT, do not comply with this recommendation and do not return true on success.
As a consequence, when using the transfer() function, it will revert even if the transfer is successful since Solidity checks whether the size of the returned data matches the ERC20 interface.

ERC20 tokens with no return value will fail to transfer

Manual review

Consider using OpenZeppelin’s SafeERC20

Total prize

15,000 USDC

nSLOC

236

64 USDC / LOC

High Medium

14,000 USDC

Low

1,000 USDC

The contest is live. Earn rewards by submitting a finding.

Submissions are being carefully reviewed by our judges.

This is your time to appeal against judgements on your submissions.

Appeals are being carefully reviewed by our judges.

The contest is complete and the rewards are being distributed.

Support

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.