Likelihood:
Reason 1: Oracle responses can fail in decentralized networks due to API rate limits, expired keys, malformed responses, or DON-level errors.
Reason 2: Users can unknowingly mint at high prices only to have their mint silently dropped, without any error feedback on-chain or refund.
Impact:
Impact 1: The user permanently loses ETH without receiving an NFT.
Impact 2: Repeated oracle failures can financially and reputationally damage the protocol, especially as s_currentMintPrice
rises.
If Oracle fails, the `fulfillMintRequest` function will not return the payed fee for the token to the user.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.