Summary

TSender on Blast chain lacks gas fees claiming logic.

Vulnerability Details

TSender is expected to be deployed on Blast chain, which has a unique feature of allowing contracts to claim back gas fees spent by the contract. See https://docs.blast.io/building/guides/gas-fees

TSender distributes airdrop tokens to a large number of users and therefore is likely to accrue a large amount claimable gas fees.

However, due to the lack of gas fees claiming implementation, these fees will instead go to the Blast sequencer operator. As TSender was designed with the sole intention of reducing gas fees during airdrop, claiming back a portion of sent gas fees should be a critical step in further improving its performance.

Impact

Loss in claimable gas fees.

Tools Used

Manual

Recommendations

Consider implementing gas fees claiming logic, as described in the Blast documentation linked above.