Core Contracts

Regnum Aurum Acquisition Corp
HardhatReal World AssetsNFT
77,280 USDC
View results
Submission Details
Severity: low
Valid

Hard-coded Emission Rates in GaugeController Prevent Protocol Adaptation

Summary

The GaugeController contract has hard-coded emission rates for RWA (1M tokens monthly) and RAAC (250K tokens weekly) that cannot be adjusted, preventing protocol adaptation to market conditions.

Vulnerability Details

function _calculateRWAEmission() internal view returns (uint256) {
return 1000000 * 10**18; // Hard-coded 1M monthly
}
function _calculateRAACEmission() internal view returns (uint256) {
return 250000 * 10**18; // Hard-coded 250K weekly
}

Impact

  • Protocol cannot adjust emission rates based on market conditions

  • Emission rates may become suboptimal over time

  • No governance control over key economic parameters

  • Potential economic imbalance between RWA and RAAC gauges

Tools Used

Manual Review

Recommendations

Implement governance-controlled emission rates:

contract GaugeController {
uint256 public rwaEmissionRate;
uint256 public raacEmissionRate;
function setEmissionRates(uint256 _rwa, uint256 _raac) external onlyGovernance {
rwaEmissionRate = _rwa;
raacEmissionRate = _raac;
emit EmissionRatesUpdated(_rwa, _raac);
}
}
Updates

Lead Judging Commences

inallhonesty Lead Judge 3 months ago
Submission Judgement Published
Validated
Assigned finding tags:

GaugeController uses hardcoded placeholder emission values in _calculateRWAEmission() and _calculateRAACEmission() instead of actual tokenomics-based rates

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.