The s_zkSyncUSDC
variable in Deploy.s.sol
contains an incorrect address, making it point to the wrong contract.
In Deploy.s.sol
, the s_zkSyncUSDC
variable is initialized with the address 0xf69aaa25bd4dd10deb2ccd8235266f7cc815f6e9d539e9f4d47cae16e0c36a05
. However, this is not the real address for the zkSync USDC token contract.
Any code that relies on s_zkSyncUSDC
to interact with the zkSync USDC token contract will instead interact with the wrong contract at the invalid address. This can lead to loss of funds, failed transactions, and other issues.
Manual review
Update the s_zkSyncUSDC
variable in Deploy.s.sol
to contain the correct address: 0x1d17CBcF0D6D143135aE902365D2E5e2A16538D4
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.