Incorrect Comment References Non-Existent Function for Transaction Completion
01. Relevant GitHub Links
02. Summary
A misleading comment in the contract suggests that the function fellForTrick() should be called to finish a transaction, while in reality, the function to finalize the transaction is resolveTrick(). This incorrect comment could cause confusion for developers and users, leading to potential misuse or unintended behavior.
03. Vulnerability Details
The following comment incorrectly indicates that users should call fellForTrick() to complete the transaction. The actual function that performs this task is resolveTrick(). Incorrect documentation can lead to errors in function usage, especially for those not familiar with the contract’s full codebase.
In cases where developers or users rely on the comment rather than the function definitions, this can cause unnecessary debugging and frustration.
03. Impact
Potential Misuse: Developers or users may attempt to call fellForTrick() to finish a transaction, which could lead to failure if they don’t realize resolveTrick() is the correct function.
Increased Debugging and Maintenance Time: Misleading comments can lead to confusion, increased debugging time, and potential misinterpretation of the contract’s intended functionality.
04. Proof of Concept
05. Tools Used
Manual Code Review and Foundry
06. Recommended Mitigation
Update the Comment to Reference the Correct Function: Modify the comment to reference resolveTrick() instead of fellForTrick().
Appeal created
[invalid] Wrong comment
This is an informational issue.
Rewards breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.