Example of SWC-107 mitigation

In this function we update rewards user to 0 before execute safeTransfer function


    function getReward() public updateReward(msg.sender) checkStart checkNextEpoch{
        uint256 reward = earned(msg.sender);
        if (reward > 0) {
            accumulatedStakingPower[msg.sender] = accumulatedStakingPower[msg.sender].add(rewards[msg.sender]);
            rewards[msg.sender] = 0;
            CARLOS.safeTransfer(msg.sender, reward);            
            emit RewardPaid(msg.sender, reward);
        }
    }

Example of SWC-115 mitigation

in this function at LPTokenWrapper we used msg.sender instead of tx.origin


    function stake(uint256 amount) public {
        address sender = msg.sender;
        require(!address(sender).isContract(), "plz farm by hand");
        require(tx.origin == sender, "plz farm by hand");
        _totalSupply = _totalSupply.add(amount);
        _balances[sender] = _balances[sender].add(amount);
        CONS.transferFrom(sender, address(this), amount);  //TBD, in mainnet SafeERC20, previous line
    }

Other security issues mitigation

Smart contract passed Consensys MythX.io Deep scan to avoid security issues and common attacks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Example of SWC-107 mitigation

Example of SWC-115 mitigation

Other security issues mitigation

FilesExpand file tree

avoiding_common_attacks.md

Latest commit

History

avoiding_common_attacks.md

File metadata and controls

Example of SWC-107 mitigation

Example of SWC-115 mitigation

Other security issues mitigation