Hardcoded Arbitrum Sequencer Feed Address makes protocol incompatible with Avalanche
Description:
The protocol is designed to work on both Arbitrum and Avalanche networks...
...but the current implementation has network-specific validation issues.
The KeeperProxy contract has hardcoded the Arbitrum Sequencer Uptime Feed address in the initialize function:
This address is specific to Arbitrum network and will not work on Avalanche since Avalanche doesn't use a Sequencer (it's an L1 chain)
Impact:
When deployed on Avalanche:
All price validation calls will revert (functions
KeeperProxy::run()andKeeperProxy::runNextAction())Keepers won't be able to execute orders
Users won't be able to trade
The protocol will be completely non-functional
Recommended Mitigation:
Add chain-specific configuration and network-specific validation
Lead Judging Commences
finding_Avalanche_has_no_sequencer
Likelihood: High, run and runNextAction will revert. Impact: Low, any deposit will be retrieve thanks to cancelFlow.
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.