Incorrect Import Path for ECDSA Utility in soliditybranch.sol
Summary
The Solidity file soliditybranch.sol contains an incorrect import path for the ECDSA utility from the OpenZeppelin library. This incorrect path can lead to compilation errors, preventing the contract from being deployed or tested correctly.
Vulnerability Details
Incorrect Import in soliditybranch.sol:
Correct Import:
Issue:
The incorrect path
@openzeppelin/contracts/utils/cryptography/ECDSA.soldoes not exist in the current version of the OpenZeppelin library.The correct path is
@openzeppelin/utils/cryptography/ECDSA.sol.
This is because, in the path has been remaped in the remapping.txt
Impact
The incorrect import path causes the following issues:
Compilation Errors: The contract will not compile due to the incorrect import path, halting the development process.
Deployment Delays: Incorrect imports need to be identified and fixed before deployment, leading to potential delays in project timelines.
Testing Issues: Unit tests and other automated tests will fail if the contract does not compile, hindering continuous integration and deployment workflows.
Tools Used
Manual code review
Solidity compiler
Recommendations
Correct the Import Path: Update the import statement in soliditybranch.sol to use the correct path for the ECDSA utility from the OpenZeppelin library. The correct import statement is:
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.