stake.link

stake.link
DeFiHardhatBridge
27,500 USDC
View results
Submission Details
Severity: low
Invalid

Consider using increaseAllowance() instead of `approve()`/`safeApprove()`

Summary

Use increaseAllowance() instead of approve()/safeApprove()

Vulnerability Details

Changing an allowance with approve() brings the risk that someone may use both the old and the new allowance by unfortunate transaction ordering. Refer to ERC20 API: An Attack Vector on the Approve/TransferFrom Methods. It is recommended to use the increaseAllowance()/decreaseAllowance() to avoid this problem.

Impact

Changing an allowance with approve() brings the risk that someone may use both the old and the new allowance by unfortunate transaction ordering.

Tools Used

Manual Review

Recommendations

Consider using increaseAllowance() instead of approve()/safeApprove()

Updates

Lead Judging Commences

0kage Lead Judge over 1 year ago
Submission Judgement Published
Invalidated
Reason: Other

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.