Summary
This is the report from a security audit performed on ZAC Finance Staking contract by MrCrambo.
The audit focused primarily on the security of ZAC Finance Staking smart contract.
In scope
- sZAC.sol
Findings
In total, 1 issue were reported including:
-
0 high severity issues.
-
0 medium severity issues.
-
0 owner privilegies issues.
-
1 low severity issues.
Security issues
1. Zero address checking
Severity: low severity
Description
There are no zero address checking in function withdrawTokens
, so owner will be able to send his tokens to the zero address.
Recommendation
We recommend adding zero address checking in function withdrawTokens
, but if the ZAC smart contract does not support zero address checking too, then this mechanism could be used for burning.
Conclusion
Smart contract contains only low severity issue and could be deployed on mainnet without any threats to investors.