Claimed event with msg.sender instead of the actual payout recipient, causing off-chain systems to misinterpret who received the reward.The contract emits the caller (msg.sender) instead of the actual recipient:
Occurs on every successful claim()
Off-chain systems (indexers, dashboards, analytics) record incorrect recipient
Breaks accounting, attribution, and monitoring
Can mislead users and auditors analyzing contract activity
Add this test
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.
The contest is complete and the rewards are being distributed.