From 08a69031ed7895ecca1480af0d2f767b075c746e Mon Sep 17 00:00:00 2001 From: franz Date: Wed, 26 Mar 2025 10:12:49 +0100 Subject: [PATCH 1/3] wip --- erc4626/VicunaReview.md | 64 +++++++++++++++++++++++++++++++++++++++++ 1 file changed, 64 insertions(+) create mode 100644 erc4626/VicunaReview.md diff --git a/erc4626/VicunaReview.md b/erc4626/VicunaReview.md new file mode 100644 index 00000000..0d25cfe9 --- /dev/null +++ b/erc4626/VicunaReview.md @@ -0,0 +1,64 @@ +# ERC4626 Vault: `BeefyWrapper` + +## Details +- Reviewed by: @franzns +- Checked by: @danielmkm +- Deployed at: + - [sonic:0x62b12a64020834E6368a776aE874DAD80a069a0C](https://sonicscan.org/address/0x62b12a64020834E6368a776aE874DAD80a069a0C#code) +- Audits: + - [Vicuna audits](https://github.com/VicunaFinance-com/Audits) + + +## Context +Vicuna is an Aave v3 and Beefy fork. They wrap the aTokens into compounding Beefy vaults to compound any rewards into the erc4626. + +## Review Checklist: Bare Minimum Compatibility +Each of the items below represents an absolute requirement for the ERC4626. If any of these is unchecked, the the ERC4626 is unfit to use. + +- [x] Tests based on the [balancer-v3-monorepo](https://github.com/balancer/balancer-v3-monorepo/tree/main/pkg/vault/test/foundry/fork) pass for the given ERC4626 vaults, which can be found [here](https://github.com/balancer/balancer-v3-erc4626-tests/blob/main/test/sonic/). +- [x] The required Vault implements the required operational ERC4626 Interface + +## Review Checklist: Common Findings +Each of the items below represents a common red flag found in ERC4626 contracts. + +If none of these is checked, then this might be a pretty great ERC4626! If any of these is checked, we must thoroughly elaborate on the conditions that lead to the potential issue. Decision points are not binary; a ERC4626 can be safe despite these boxes being checked. A check simply indicates that thorough vetting is required in a specific area, and this vetting should be used to inform a holistic analysis of the ERC4626. + +### Administrative Privileges +- [ ] The ERC4626 Beefy Wrapper Vault is upgradeable. + +### Common Manipulation Vectors +- [x] The ERC4626 Vault is susceptible to donation attacks. + - comment: The ERC4626 wrapper calls the vaults balance for totalAssets() which is part of the `totalAssets` used in the `converToAssets` calculation. + + ```solidity + /** + * @notice Fetches the total assets held by the vault + * @dev Returns the total assets held by the vault, not only the wrapper + * @return totalAssets the total balance of assets held by the vault + */ + function totalAssets() public view virtual override returns (uint256) { + return IVault(vault).balance(); + } + ``` + The vault calculates it based on underlying balance inside the vault plus the balance inside the strategy. + ```solidity + /** + * @dev It calculates the total underlying value of {token} held by the system. + * It takes into account the vault contract balance, the strategy contract balance + * and the balance deployed in other contracts as part of the strategy. + */ + function balance() public view returns (uint) { + return want().balanceOf(address(this)) + IStrategyV7(strategy).balanceOf(); + } + ``` + + The underlying balance can be inflated by donating underlying assets to the vault. + + +## Additional Findings +To save time, we do not bother pointing out low-severity/informational issues or gas optimizations (unless the gas usage is particularly egregious). Instead, we focus only on high- and medium-severity findings which materially impact the contract's functionality and could harm users. + +## Conclusion +**Summary judgment: USABLE** + +The outlined ERC4626 Vaults should work well with Balancer pools. \ No newline at end of file From 8e11e06679d5d67eacbdbb8441069727c8d1b9ba Mon Sep 17 00:00:00 2001 From: franz Date: Thu, 27 Mar 2025 10:54:47 +0100 Subject: [PATCH 2/3] vicuna reviews --- erc4626/VicunaReview.md | 12 +- erc4626/registry.json | 50 +++++++++ rate-providers/VicunaWrapperRateprovider.md | 117 ++++++++++++++++++++ rate-providers/registry.json | 70 ++++++++++++ 4 files changed, 245 insertions(+), 4 deletions(-) create mode 100644 rate-providers/VicunaWrapperRateprovider.md diff --git a/erc4626/VicunaReview.md b/erc4626/VicunaReview.md index 0d25cfe9..701a4914 100644 --- a/erc4626/VicunaReview.md +++ b/erc4626/VicunaReview.md @@ -1,10 +1,14 @@ -# ERC4626 Vault: `BeefyWrapper` +# ERC4626 Vault: `VicunaWrapper` ## Details - Reviewed by: @franzns -- Checked by: @danielmkm +- Checked by: - Deployed at: - - [sonic:0x62b12a64020834E6368a776aE874DAD80a069a0C](https://sonicscan.org/address/0x62b12a64020834E6368a776aE874DAD80a069a0C#code) + - [sonic:0xdB1E39faC2EeeEdB49198735B12a8e598a84510c](https://sonicscan.org/address/0xdB1E39faC2EeeEdB49198735B12a8e598a84510c#code) + - [sonic:0x6C2dadFfAB1714485aD87d1926f4c26E29a957b6](https://sonicscan.org/address/0x6C2dadFfAB1714485aD87d1926f4c26E29a957b6#code) + - [sonic:0x711a93a8bD6803aF0a6122F2dE18c1a6AB7CB29C](https://sonicscan.org/address/0x711a93a8bD6803aF0a6122F2dE18c1a6AB7CB29C#code) + - [sonic:0xd7c9f62622dB85545731F0E4e5D4556aC8a19832](https://sonicscan.org/address/0xd7c9f62622dB85545731F0E4e5D4556aC8a19832#code) + - [sonic:0xef23FdCbd9b36Ed99A6C51CaA83Af549c36601CF](https://sonicscan.org/address/0xef23FdCbd9b36Ed99A6C51CaA83Af549c36601CF#code) - Audits: - [Vicuna audits](https://github.com/VicunaFinance-com/Audits) @@ -24,7 +28,7 @@ Each of the items below represents a common red flag found in ERC4626 contracts. If none of these is checked, then this might be a pretty great ERC4626! If any of these is checked, we must thoroughly elaborate on the conditions that lead to the potential issue. Decision points are not binary; a ERC4626 can be safe despite these boxes being checked. A check simply indicates that thorough vetting is required in a specific area, and this vetting should be used to inform a holistic analysis of the ERC4626. ### Administrative Privileges -- [ ] The ERC4626 Beefy Wrapper Vault is upgradeable. +- [ ] The ERC4626 Wrapper Vault is upgradeable. ### Common Manipulation Vectors - [x] The ERC4626 Vault is susceptible to donation attacks. diff --git a/erc4626/registry.json b/erc4626/registry.json index 0ea7eba2..e287572e 100644 --- a/erc4626/registry.json +++ b/erc4626/registry.json @@ -707,6 +707,56 @@ "canUseBufferForSwaps": true, "useUnderlyingForAddRemove": true, "useWrappedForAddRemove": true + }, + "0xdB1E39faC2EeeEdB49198735B12a8e598a84510c": { + "asset": "0xE5DA20F15420aD15DE0fa650600aFc998bbE3955", + "name": "Wrapped Vicuna stS", + "summary": "safe", + "review": "./VicunaReview.md", + "warnings": [], + "canUseBufferForSwaps": true, + "useUnderlyingForAddRemove": true, + "useWrappedForAddRemove": true + }, + "0x6C2dadFfAB1714485aD87d1926f4c26E29a957b6": { + "asset": "0x039e2fB66102314Ce7b64Ce5Ce3E5183bc94aD38", + "name": "Wrapped Vicuna wS", + "summary": "safe", + "review": "./VicunaReview.md", + "warnings": [], + "canUseBufferForSwaps": true, + "useUnderlyingForAddRemove": true, + "useWrappedForAddRemove": true + }, + "0x711a93a8bD6803aF0a6122F2dE18c1a6AB7CB29C": { + "asset": "0xd3DCe716f3eF535C5Ff8d041c1A41C3bd89b97aE", + "name": "Wrapped Vicuna scUSD", + "summary": "safe", + "review": "./VicunaReview.md", + "warnings": [], + "canUseBufferForSwaps": true, + "useUnderlyingForAddRemove": true, + "useWrappedForAddRemove": true + }, + "0xd7c9f62622dB85545731F0E4e5D4556aC8a19832": { + "asset": "0x6047828dc181963ba44974801FF68e538dA5eaF9", + "name": "Wrapped Vicuna USDT", + "summary": "safe", + "review": "./VicunaReview.md", + "warnings": [], + "canUseBufferForSwaps": true, + "useUnderlyingForAddRemove": true, + "useWrappedForAddRemove": true + }, + "0xef23FdCbd9b36Ed99A6C51CaA83Af549c36601CF": { + "asset": "0x29219dd400f2Bf60E5a23d13Be72B486D4038894", + "name": "Wrapped Vicuna USDC.e", + "summary": "safe", + "review": "./VicunaReview.md", + "warnings": [], + "canUseBufferForSwaps": true, + "useUnderlyingForAddRemove": true, + "useWrappedForAddRemove": true } }, "sepolia": { diff --git a/rate-providers/VicunaWrapperRateprovider.md b/rate-providers/VicunaWrapperRateprovider.md new file mode 100644 index 00000000..6e88bc19 --- /dev/null +++ b/rate-providers/VicunaWrapperRateprovider.md @@ -0,0 +1,117 @@ +# Rate Provider: `ERC4626RateProvider` + +## Details +- Reviewed by: @franzns +- Checked by: +- Deployed at: + - [sonic:0x6d73714c4b10c7585ba40cd5a92125e7db112eed](https://sonicscan.org/address/0x6d73714c4b10c7585ba40cd5a92125e7db112eed#code) + - [sonic:0x39db3b2fa46e0c219d44aa28e2ed15eb7b386f5a](https://sonicscan.org/address/0x39db3b2fa46e0c219d44aa28e2ed15eb7b386f5a#code) + - [sonic:0x1cede7f2f659e27d5f03e9cf8dcf3acca103b042](https://sonicscan.org/address/0x1cede7f2f659e27d5f03e9cf8dcf3acca103b042#code) + - [sonic:0xd63cf9c8432f2347b53a450d724963696af80b0d](https://sonicscan.org/address/0xd63cf9c8432f2347b53a450d724963696af80b0d#code) + - [sonic:0xc9b913a047285fbb9b7d7a417f68ec0fb45f272a](https://sonicscan.org/address/0xc9b913a047285fbb9b7d7a417f68ec0fb45f272a#code) +- Audits: + - [Vicuna audits](https://github.com/VicunaFinance-com/Audits) + + +## Context +Vicuna is an Aave v3 and Beefy fork. They wrap the aTokens into compounding Beefy vaults to compound any rewards into the erc4626. +The ERC4626 Rate Provider fetches the rate of the Vicuna vault for assets deposited into their Aave instance. The rate provider was created using the ERC4626 Rateprovider factory which calls convertToAssets on the ERC4626 to expose the rate. The rate of the ERC4626 is calculated by `shares.mulDiv(totalAssets() + 1, totalSupply() + 10 ** _decimalsOffset(), rounding)`. + +## Review Checklist: Bare Minimum Compatibility +Each of the items below represents an absolute requirement for the Rate Provider. If any of these is unchecked, the Rate Provider is unfit to use. + +- [x] Implements the [`IRateProvider`](https://github.com/balancer/balancer-v2-monorepo/blob/bc3b3fee6e13e01d2efe610ed8118fdb74dfc1f2/pkg/interfaces/contracts/pool-utils/IRateProvider.sol) interface. +- [x] `getRate` returns an 18-decimal fixed point number (i.e., 1 == 1e18) regardless of underlying token decimals. + +## Review Checklist: Common Findings +Each of the items below represents a common red flag found in Rate Provider contracts. + +If none of these is checked, then this might be a pretty great Rate Provider! If any of these is checked, we must thoroughly elaborate on the conditions that lead to the potential issue. Decision points are not binary; a Rate Provider can be safe despite these boxes being checked. A check simply indicates that thorough vetting is required in a specific area, and this vetting should be used to inform a holistic analysis of the Rate Provider. + +### Administrative Privileges +- [x] The Rate Provider is upgradeable (e.g., via a proxy architecture or an `onlyOwner` function that updates the price source address). +The rateprovider is not upgradable but part of its infrastructure, specifically the aTokens wrapped in the vault: + + - [sonic:0x6d73714c4b10c7585ba40cd5a92125e7db112eed](https://sonicscan.org/address/0x6d73714c4b10c7585ba40cd5a92125e7db112eed#code) + - upgradeable component: `aToken` ([sonic:0xFB56Cd34244985222068ae1C384ecE4215528D04](https://sonicscan.org/address/0xFB56Cd34244985222068ae1C384ecE4215528D04#code)) + - admin address: [sonic:0x86cdb4ded52fac7b735913d0236ac068570af9f8](https://sonicscan.org/address/0x86cdb4ded52fac7b735913d0236ac068570af9f8) + - admin of admin address: [sonic:0x64592138883327ab8009e458231a4b731f2fd8f5](https://sonicscan.org/address/0x64592138883327ab8009e458231a4b731f2fd8f5) + - admin owner: [sonic:0xaCAdD458dF075eF4B6F423A83d5153a98DE4eF4A](https://sonicscan.org/address/0xaCAdD458dF075eF4B6F423A83d5153a98DE4eF4A) + - admin type: Multisig 2/4 + - multisig timelock? No. + + - [sonic:0x39db3b2fa46e0c219d44aa28e2ed15eb7b386f5a](https://sonicscan.org/address/0x39db3b2fa46e0c219d44aa28e2ed15eb7b386f5a#code) + - upgradeable component: `aToken` ([sonic:0x9e07EF144325DAe02ff92910aDd1FE91581D4798](https://sonicscan.org/address/0x9e07EF144325DAe02ff92910aDd1FE91581D4798#code)) + - admin address: [sonic:0x86cdb4ded52fac7b735913d0236ac068570af9f8](https://sonicscan.org/address/0x86cdb4ded52fac7b735913d0236ac068570af9f8) + - admin of admin address: [sonic:0x64592138883327ab8009e458231a4b731f2fd8f5](https://sonicscan.org/address/0x64592138883327ab8009e458231a4b731f2fd8f5) + - admin owner: [sonic:0xaCAdD458dF075eF4B6F423A83d5153a98DE4eF4A](https://sonicscan.org/address/0xaCAdD458dF075eF4B6F423A83d5153a98DE4eF4A) + - admin type: Multisig 2/4 + - multisig timelock? No. + + - [sonic:0x1cede7f2f659e27d5f03e9cf8dcf3acca103b042](https://sonicscan.org/address/0x1cede7f2f659e27d5f03e9cf8dcf3acca103b042#code) + - upgradeable component: `aToken` ([sonic:0xfb2e5Fd5de4E0757062363dfA44dF2e3654A35A5](https://sonicscan.org/address/0xfb2e5Fd5de4E0757062363dfA44dF2e3654A35A5#code)) + - admin address: [sonic:0x0D8D2221AE6a46770639416Aa253a16422cA65Ad](https://sonicscan.org/address/0x0D8D2221AE6a46770639416Aa253a16422cA65Ad) + - admin of admin address: [sonic:0xd01A2DE5e1Dd7a0826D8B3367A82FE12b4A640b8](https://sonicscan.org/address/0xd01A2DE5e1Dd7a0826D8B3367A82FE12b4A640b8) + - admin owner: [sonic:0xaCAdD458dF075eF4B6F423A83d5153a98DE4eF4A](https://sonicscan.org/address/0xaCAdD458dF075eF4B6F423A83d5153a98DE4eF4A) + - admin type: Multisig 2/4 + - multisig timelock? No. + + - [sonic:0xd63cf9c8432f2347b53a450d724963696af80b0d](https://sonicscan.org/address/0xd63cf9c8432f2347b53a450d724963696af80b0d#code) + - upgradeable component: `aToken` ([sonic:0x11054544BEbab950B3B2F88fBb73B10550d4FF5c](https://sonicscan.org/address/0x11054544BEbab950B3B2F88fBb73B10550d4FF5c#code)) + - admin address: [sonic:0x0D8D2221AE6a46770639416Aa253a16422cA65Ad](https://sonicscan.org/address/0x0D8D2221AE6a46770639416Aa253a16422cA65Ad) + - admin of admin address: [sonic:0xd01A2DE5e1Dd7a0826D8B3367A82FE12b4A640b8](https://sonicscan.org/address/0xd01A2DE5e1Dd7a0826D8B3367A82FE12b4A640b8) + - admin owner: [sonic:0xaCAdD458dF075eF4B6F423A83d5153a98DE4eF4A](https://sonicscan.org/address/0xaCAdD458dF075eF4B6F423A83d5153a98DE4eF4A) + - admin type: Multisig 2/4 + - multisig timelock? No. + + - [sonic:0xc9b913a047285fbb9b7d7a417f68ec0fb45f272a](https://sonicscan.org/address/0xc9b913a047285fbb9b7d7a417f68ec0fb45f272a#code) + - upgradeable component: `aToken` ([sonic:0x0127C186D905Ddaf323e76c4f6AB41cDD66619e5](https://sonicscan.org/address/0x0127C186D905Ddaf323e76c4f6AB41cDD66619e5#code)) + - admin address: [sonic:0x0D8D2221AE6a46770639416Aa253a16422cA65Ad](https://sonicscan.org/address/0x0D8D2221AE6a46770639416Aa253a16422cA65Ad) + - admin of admin address: [sonic:0x64592138883327ab8009e458231a4b731f2fd8f5](https://sonicscan.org/address/0x64592138883327ab8009e458231a4b731f2fd8f5) + - admin owner: [sonic:0xaCAdD458dF075eF4B6F423A83d5153a98DE4eF4A](https://sonicscan.org/address/0xaCAdD458dF075eF4B6F423A83d5153a98DE4eF4A) + - admin type: Multisig 2/4 + - multisig timelock? No. + + + +### Oracles +- [ ] Price data is provided by an off-chain source (e.g., a Chainlink oracle, a multisig, or a network of nodes). + +- [ ] Price data is expected to be volatile (e.g., because it represents an open market price instead of a (mostly) monotonically increasing price). + +### Common Manipulation Vectors +- [x] The Rate Provider is susceptible to donation attacks. + - comment: The ERC4626 wrapper calls the vaults balance for totalAssets() which is part of the `totalAssets` used in the `converToAssets` call and therefore in the `getRate` calculation. + + ```solidity + /** + * @notice Fetches the total assets held by the vault + * @dev Returns the total assets held by the vault, not only the wrapper + * @return totalAssets the total balance of assets held by the vault + */ + function totalAssets() public view virtual override returns (uint256) { + return IVault(vault).balance(); + } + ``` + The vault calculates it based on underlying balance inside the vault plus the balance inside the strategy. + ```solidity + /** + * @dev It calculates the total underlying value of {token} held by the system. + * It takes into account the vault contract balance, the strategy contract balance + * and the balance deployed in other contracts as part of the strategy. + */ + function balance() public view returns (uint) { + return want().balanceOf(address(this)) + IStrategyV7(strategy).balanceOf(); + } + ``` + + The underlying balance can be inflated by donating underlying assets to the vault. + +## Additional Findings +To save time, we do not bother pointing out low-severity/informational issues or gas optimizations (unless the gas usage is particularly egregious). Instead, we focus only on high- and medium-severity findings which materially impact the contract's functionality and could harm users. + + +## Conclusion +**Summary judgment: SAFE** + +Overall this Rate Provider should work well in pool operations with Balancer pools. diff --git a/rate-providers/registry.json b/rate-providers/registry.json index 38dcee1a..0b7b9f4d 100644 --- a/rate-providers/registry.json +++ b/rate-providers/registry.json @@ -3661,6 +3661,76 @@ "warnings": [""], "factory": "0x00de97829d01815346e58372be55aefd84ca2457", "upgradeableComponents": [] + }, + "0x6d73714c4b10c7585ba40cd5a92125e7db112eed": { + "asset": "0xdB1E39faC2EeeEdB49198735B12a8e598a84510c", + "name": "Wrapped Vicuna stS", + "summary": "safe", + "review": "./VicunaWrapperRateprovider.md", + "warnings": [""], + "factory": "0x00de97829d01815346e58372be55aefd84ca2457", + "upgradeableComponents": [ + { + "entrypoint": "0xFB56Cd34244985222068ae1C384ecE4215528D04", + "implementationReviewed": "0x2bc3d3cccafdb70f68e52d5033f955d9cb7e8d97" + } + ] + }, + "0x39db3b2fa46e0c219d44aa28e2ed15eb7b386f5a": { + "asset": "0x6C2dadFfAB1714485aD87d1926f4c26E29a957b6", + "name": "Wrapped Vicuna wS", + "summary": "safe", + "review": "./VicunaWrapperRateprovider.md", + "warnings": [""], + "factory": "0x00de97829d01815346e58372be55aefd84ca2457", + "upgradeableComponents": [ + { + "entrypoint": "0x9e07EF144325DAe02ff92910aDd1FE91581D4798", + "implementationReviewed": "0x2bc3d3cccafdb70f68e52d5033f955d9cb7e8d97" + } + ] + }, + "0x1cede7f2f659e27d5f03e9cf8dcf3acca103b042": { + "asset": "0x711a93a8bD6803aF0a6122F2dE18c1a6AB7CB29C", + "name": "Wrapped Vicuna scUSD", + "summary": "safe", + "review": "./VicunaWrapperRateprovider.md", + "warnings": [""], + "factory": "0x00de97829d01815346e58372be55aefd84ca2457", + "upgradeableComponents": [ + { + "entrypoint": "0xfb2e5Fd5de4E0757062363dfA44dF2e3654A35A5", + "implementationReviewed": "0xe16b8f78b11a78dbe3863e483808cce6d704d52a" + } + ] + }, + "0xd63cf9c8432f2347b53a450d724963696af80b0d": { + "asset": "0xd7c9f62622dB85545731F0E4e5D4556aC8a19832", + "name": "Wrapped Vicuna USDT", + "summary": "safe", + "review": "./VicunaWrapperRateprovider.md", + "warnings": [""], + "factory": "0x00de97829d01815346e58372be55aefd84ca2457", + "upgradeableComponents": [ + { + "entrypoint": "0x11054544BEbab950B3B2F88fBb73B10550d4FF5c", + "implementationReviewed": "0xe16b8f78b11a78dbe3863e483808cce6d704d52a" + } + ] + }, + "0xc9b913a047285fbb9b7d7a417f68ec0fb45f272a": { + "asset": "0xef23FdCbd9b36Ed99A6C51CaA83Af549c36601CF", + "name": "Wrapped Vicuna sUSDC.etS", + "summary": "safe", + "review": "./VicunaWrapperRateprovider.md", + "warnings": [""], + "factory": "0x00de97829d01815346e58372be55aefd84ca2457", + "upgradeableComponents": [ + { + "entrypoint": "0x0127C186D905Ddaf323e76c4f6AB41cDD66619e5", + "implementationReviewed": "0xe16b8f78b11a78dbe3863e483808cce6d704d52a" + } + ] } } } From 5ba5347009564a81d368bc288c8bfc614ffdb78f Mon Sep 17 00:00:00 2001 From: Daniel Date: Thu, 27 Mar 2025 17:09:22 +0100 Subject: [PATCH 3/3] add checked by --- erc4626/VicunaReview.md | 2 +- rate-providers/VicunaWrapperRateprovider.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/erc4626/VicunaReview.md b/erc4626/VicunaReview.md index 701a4914..0e87e053 100644 --- a/erc4626/VicunaReview.md +++ b/erc4626/VicunaReview.md @@ -2,7 +2,7 @@ ## Details - Reviewed by: @franzns -- Checked by: +- Checked by: @danielmkm - Deployed at: - [sonic:0xdB1E39faC2EeeEdB49198735B12a8e598a84510c](https://sonicscan.org/address/0xdB1E39faC2EeeEdB49198735B12a8e598a84510c#code) - [sonic:0x6C2dadFfAB1714485aD87d1926f4c26E29a957b6](https://sonicscan.org/address/0x6C2dadFfAB1714485aD87d1926f4c26E29a957b6#code) diff --git a/rate-providers/VicunaWrapperRateprovider.md b/rate-providers/VicunaWrapperRateprovider.md index 6e88bc19..b33e436c 100644 --- a/rate-providers/VicunaWrapperRateprovider.md +++ b/rate-providers/VicunaWrapperRateprovider.md @@ -2,7 +2,7 @@ ## Details - Reviewed by: @franzns -- Checked by: +- Checked by: @danielmkm - Deployed at: - [sonic:0x6d73714c4b10c7585ba40cd5a92125e7db112eed](https://sonicscan.org/address/0x6d73714c4b10c7585ba40cd5a92125e7db112eed#code) - [sonic:0x39db3b2fa46e0c219d44aa28e2ed15eb7b386f5a](https://sonicscan.org/address/0x39db3b2fa46e0c219d44aa28e2ed15eb7b386f5a#code)