Immutable Review Time Prevents Contract Upgradeability
Summary
The LevelOne.sol contract uses an immutable variable for reviewTime which cannot be modified after deployment, making it impossible to adjust this parameter in future upgrades.
Vulnerability Details
ReviewTime is declared as immutable with a fixed value of 1 week. Immutable variables are set at contract creation and cannot be changed, so this prevents any flexibility in adjusting review periods through upgrades.
Impact
Low:
Makes the contract less flexible for future changes
Could require a new contract deployment if review time needs to change
Tools Used
Manual code review
Recommendations
Remove the immutable keyword.
Initialize the review time in the initialize function.
Lead Judging Commences
unsafe immutable use
Immutable variables are stored in the bytecode of the contract. hence, they should only be used for values that will not change across upgrades.
Appeal created
unsafe immutable use
Immutable variables are stored in the bytecode of the contract. hence, they should only be used for values that will not change across upgrades.
Rewards breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.