Submission Details
Severity:
Wrong documentation of the function `getPassword()` about the parameter `newPassword`
Summary
Wrong documentation of the function
getPassword()about the parameternewPasswordmust be removed because it is not taking any parameter and it is misleading the reader.
Vulnerability Details
/*
* @notice This allows only the owner to retrieve the password.
@> * @param newPassword The new password to set.
*/
function getPassword() external view returns (string memory) {
if (msg.sender != s_owner) {
revert PasswordStore__NotOwner();
}
return s_password;
}
In this function, we are not giving the parameters. but, documentation mention above the function shows that it takes the parameter
newPassword.
Impact
Can cause the misleading information and blur the understanding of the code.
Tools Used
Manual review
Recommendations
/*
* @notice This allows only the owner to retrieve the password.
- * @param newPassword The new password to set.
*/
function getPassword() external view returns (string memory) {
if (msg.sender != s_owner) {
revert PasswordStore__NotOwner();
}
return s_password;
}
Remove the documentation of the parameter
newPasswordfrom the functiongetPassword().
Updates
Rewards breakdown
nSLOC
20This contest has a flat reward structure with the following payouts:
100 EXP
20 EXP
2 EXP
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.