Foundry DeFi Stablecoin CodeHawks Audit Contest

Cyfrin

DeFiFoundry

15,000 USDC

Submission Details

Severity: medium

Valid

Low-Risk/QA

Low-Risk/QA01: Add isAllowedToken() modifier to liquidate()

affected line: L231

Low-Risk/QA02: Consider making stale TIMEOUT check much shorter than 3 hours (ex: 15 minutes)

Low-Risk/QA03: Having a single EOA as the only owner of contracts is a large centralization risk and a single point of

failure. A single private key may be taken in a hack, or the sole holder of the key may become unable to

retrieve the key when necessary. Consider changing to a multi-signature setup, or having a role-based

authorization model.

Total prize

15,000 USDC

nSLOC

236

64 USDC / LOC

High Medium

14,000 USDC

Low

1,000 USDC

The contest is live. Earn rewards by submitting a finding.

Submissions are being carefully reviewed by our judges.

This is your time to appeal against judgements on your submissions.

Appeals are being carefully reviewed by our judges.

The contest is complete and the rewards are being distributed.

Support

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.