Competitive Audits
First Flights
Leaderboard
Docs
Toggle theme
Sign up
Log in
All First Flights
Snowman Merkle Airdrop
Submissions
AI First Flight
Snowman Merkle Airdrop
AI First Flight #10
Beginner Friendly
Foundry
Solidity
NFT
EXP
AI First Flight
EXP
Mar 12th, 2026 → Mar 12th, 2026
View repo
View results
10 / 10
Submissions
Severity
Validity
Tags
Author
#1
Global s_earnTimer causes protocol-wide Denial of Service for earning snow
Low
Valid
[L-02] Global Timer Reset i...
plarochkin
#2
The buySnow function does not refund incorrect msg.value amounts, leading to loss of user funds
High
Invalid
plarochkin
#3
Incorrect fee calculation in buySnow due to double multiplication of decimals
High
Invalid
plarochkin
#4
The mintSnowman function lacks access control, allowing anyone to mint unlimited NFTs
High
Valid
[H-01] Unrestricted NFT Min...
plarochkin
#5
Missing check on s_hasClaimedSnowman allows users to claim the airdrop multiple times
Low
Valid
[L-01] Missing Claim Status...
plarochkin
#6
Dynamic balance checks allow attackers to front-run and grief airdrop claims
Medium
Valid
[M-01] DoS to a user trying...
plarochkin
#7
Typo in MESSAGE_TYPEHASH violates the EIP-712 standard
High
Valid
[H-02] Unconsistent `MESSAG...
plarochkin
#8
Single-step role transfer for collector in changeCollector
Low
Invalid
plarochkin
#9
Unbounded loop in mintSnowman can cause an out-of-gas denial of service
Medium
Invalid
plarochkin
#10
The collectFee function uses transfer instead of safeTransfer for ERC20 token transfers
Low
Invalid
plarochkin
Previous
1
Next
Support
FAQs
Can't find an answer? Chat with us on Discord, Twitter or Linkedin.
What is Cyfrin CodeHawks?
What is a competitive audit?
How can I host a competition on CodeHawks?
How is a contest prize pool determined?
How do I get rewarded?
What is a First Flight?
Give us feedback!
