TempleGold
TempleDAO
Foundry
25,000 USDC
View results
Previous Next
Submission Details
Severity: low
Invalid

Single-step ownership change introduces risks

tpiliposian

Summary

The TempleGold.sol and TempleTeleporter.sol contracts currently importing Ownable.sol. This single-step ownership transfer process introduces the risk of accidentally setting an incorrect address as an owner.

Vulnerability Details

Single-step ownership transfers add the risk of setting an unwanted owner by accident if the ownership transfer is not done with excessive care.

The two-step ownership transfer pattern offers a robust solution by introducing a two-step process that enhances security and control over ownership transitions.

Pattern Description:

Initiation: The current owner initiates the transfer by specifying the new owner's address.

Confirmation: The new owner confirms the transfer request, completing the ownership transition.

Impact

An incorrect address being set as the owner can lead to loss of control over the contract's critical functions.

Tools Used

Manual review.

Recommendations

Use OZ/Ownable2Step.sol.

Updates

Lead Judging Commences

inallhonesty Lead Judge 12 months ago
Submission Judgement Published
Invalidated
Reason: Non-acceptable severity

Appeal created

tpiliposian Submitter
12 months ago
inallhonesty Lead Judge
12 months ago
inallhonesty Lead Judge 12 months ago
Submission Judgement Published
Invalidated
Reason: Non-acceptable severity

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.