User is allowed to stake and unstake as many times as possible there is no check in the server or the contract to limit this behaviour , user can utilise this to get more rewards by staking and unstaking a minimum amount repeatedly.
There is no check or any reduction in rewards when an user unstakes the amount already staked amount.
User can use this to drain the rewards given during the $STEAK token airdrop. An user can use this technique to acquire all the $STEAK tokens thus becoming the shark in the STEAK environment.
-> Manual Review
-> Foundry
instead of logging Stake event on every stake, emit the amount staked only when the owner calls the setVaultAddress fucntion OR add a time dependent way to calculate the rewards
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.