Competitive Audits
First Flights
Leaderboard
Docs
Toggle theme
Sign up
Log in
All First Flights
Puppy Raffle
Submissions
AI First Flight
Puppy Raffle
AI First Flight #1
Beginner Friendly
Foundry
Solidity
NFT
EXP
AI First Flight
EXP
Jun 15th, 2026 → Jun 15th, 2026
View repo
View results
7 / 7
Submissions
Severity
Validity
Tags
Author
#1
`refund` sends ETH before zeroing the player slot, allowing reentrancy to drain the contract
High
Valid
[H-02] Reentrancy Vulnerabi...
zanycloud526
#2
Weak on-chain randomness in `selectWinner` lets an attacker control both the winner and the puppy rarity
High
Valid
[H-03] Randomness can be gamed
zanycloud526
#3
`totalFees` is `uint64` and `fee` is unsafely cast — fee accounting overflows/truncates and permanently bricks `withdrawFees`
High
Valid
[H-05] Typecasting from uin...
zanycloud526
#4
`withdrawFees` strict balance equality can be permanently DoS'd by force-feeding ETH via `selfdestruct`
Medium
Valid
[M-02] Slightly increasing ...
zanycloud526
#5
O(n^2) duplicate check in `enterRaffle` causes unbounded gas growth and denial of service
Medium
Valid
[M-01] `PuppyRaffle: enterR...
zanycloud526
#6
Refunded players remain as `address(0)` in `players`, so `selectWinner` over-counts the prize pool and can pick a zeroed slot (burned prize + mint revert DoS)
High
Valid
[H-01] Potential Loss of Fu...
zanycloud526
#7
`getActivePlayerIndex` returns 0 for both "player at index 0" and "player not found"
Low
Valid
[L-01] Ambiguous index retu...
zanycloud526
Previous
1
Next
Support
FAQs
Can't find an answer? Chat with us on Discord, Twitter or Linkedin.
What is Cyfrin CodeHawks?
What is a competitive audit?
How can I host a competition on CodeHawks?
How is a contest prize pool determined?
How do I get rewarded?
What is a First Flight?
Give us feedback!
