Submission Details
Impact:
Likelihood:
BriTechToken does not have a fixed amount of token
The BriTechToken can create more token than expected
Description
-
The ERC-20 should have a fix amount of token
-
Creating more and more token lead to an inflation of the token
// Root cause in the codebase with @> marks to highlight the relevant section
@> function mint() public onlyOwner {
_mint(owner(), 10_000_000 * 1e18);
}
Risk
Likelihood:
Will happen when the owner is malicious
Impact:
-
Will create inflation in the token when the owner create more token
-
Other user will loose value as the token will be more diluate
Proof of Concept
As a owner I call again function mint() to create more token.
Recommended Mitigation
Call to function mint() in the constructor of the contact BriTechToken
-contract BriTechToken is ERC20, Ownable {
- constructor() ERC20("BriTechLabs", "BTT") Ownable(msg.sender) {}
-
- function mint() public onlyOwner {
- _mint(owner(), 10_000_000 * 1e18);
- }
-}
+contract BriTechToken is ERC20, Ownable {
+ constructor() ERC20("BriTechLabs", "BTT") Ownable(msg.sender) {
+ _mint(owner(), 10_000_000 * 1e18);
+ }
+}
Rewards breakdown
nSLOC
193This contest has a flat reward structure with the following payouts:
100 EXP
20 EXP
2 EXP
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.