Zero Address Validation of `sequencerUptimeFeedAddresses`
Summary
Looking at the configureSequencerUptimeFeedByChainId function, it lacks validation to prevent zero addresses from being set as sequencerUptimeFeedAddresses. This oversight could lead to security risks and system inconsistencies.
Vulnerability Details
In the configureSequencerUptimeFeedByChainId function, there is no check to ensure that the provided sequencerUptimeFeedAddresses are not zero addresses. It allows any address, including the zero address to be set as a sequencer uptime feed for a given chain ID.
Impact
Zero addresses set as sequencer uptime feeds could lead to unexpected behavior in dependent systems. Also, the system might accept invalid configurations, leading to hard-to-debug issues.
Tools Used
Manual code review
Recommendations
Implement a zero address check of the sequenceUptimeFeedAddresses within the configureSequencerUptimeFeedByChainId function
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.