The purrrCollateralToAave and purrrCollateralFromAave functions lack a more robust authorization mechanism to ensure that only authorized entities can perform these critical operations.
Location: purrrCollateralToAave and purrrCollateralFromAave functions.
Description: The contract uses a simple ownership check (onlyMeowntainer) for managing critical operations like supplying and withdrawing collateral to and from Aave. This can be restrictive and might require more flexibility and security.
Severity: Medium
Effect: The lack of a more granular authorization mechanism can lead to difficulties in managing the contract and could become a security risk if the meowntainer compromise occurs.
Manual code review
Implement a more flexible and granular authorization system, such as a multi-signature wallet or a role-based access control mechanism.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.