TSender

Cyfrin
DeFiFoundry
15,000 USDC
View results
Submission Details
Severity: high
Invalid

TSender on Blast lacks gas fees claiming logic

Summary

TSender on Blast chain lacks gas fees claiming logic.

Vulnerability Details

TSender is expected to be deployed on Blast chain, which has a unique feature of allowing contracts to claim back gas fees spent by the contract. See https://docs.blast.io/building/guides/gas-fees

TSender distributes airdrop tokens to a large number of users and therefore is likely to accrue a large amount claimable gas fees.

However, due to the lack of gas fees claiming implementation, these fees will instead go to the Blast sequencer operator. As TSender was designed with the sole intention of reducing gas fees during airdrop, claiming back a portion of sent gas fees should be a critical step in further improving its performance.

Impact

Loss in claimable gas fees.

Tools Used

Manual

Recommendations

Consider implementing gas fees claiming logic, as described in the Blast documentation linked above.

Updates

Lead Judging Commences

inallhonesty Lead Judge about 1 year ago
Submission Judgement Published
Invalidated
Reason: Design choice
billobaggebilleyan Judge
about 1 year ago
billobaggebilleyan Judge
about 1 year ago
giraffe0x Submitter
about 1 year ago
doggyBoleBhhuu Auditor
about 1 year ago
n0kto Judge
about 1 year ago
n0kto Judge
about 1 year ago
patrickalphac Auditor
about 1 year ago
inallhonesty Lead Judge about 1 year ago
Submission Judgement Published
Invalidated
Reason: Design choice

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.