location: /src/SablierFlow.sol
Description: The access control check does not adequately validate whether the caller is authorized. If an unauthorized address interacts with sensitive functions, it could lead to unauthorized modifications of stream states.
Real-World Consequences: Unauthorized manipulation can cause financial losses and breaches of trust in the system, leading to potential legal repercussions.
Role-Based Access Control (RBAC): Use OpenZeppelin’s AccessControl
to implement specific roles for users (e.g., stream creators, recipients, admins).
Audit Access Controls: Conduct a thorough review of all functions requiring access control to ensure all scenarios are covered.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.