Skip to content

Instantly share code, notes, and snippets.

Last active July 22, 2019 17:06
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
Star You must be signed in to star a gist
What would you like to do?

Zilliqa Token Audit Report.

1. Summary

This document is a security audit report performed by RideSolo, where Zilliqa Token has been reviewed.

Token desription:

Symbol      : ZIL
Name        : Zilliqa
Total supply: To be set in the construction phase
Decimals    : 12
Standard    : ERC20

2. In scope

3. Findings

3 issues were reported:

  • 1 medium severity issue.
  • 1 low severity issue.
  • 1 minor remark.

3.1. Owner Privileges

Severity: medium


Owner can pause & unpause token transfers separately for two diffrent addresses groups, token holders and (owner,admin) addresses.

Code snippet

3.2. Known vulnerabilities of ERC-20 token

Severity: low


  1. It is possible to double withdrawal attack. More details here
  2. Lack of transaction handling mechanism issue. WARNING! This is a very common issue and it already caused millions of dollars losses for lots of token users! More details here

3.3. Gas Optimization

Severity: minor remark


validDestination contains a requirement that is already implemented in the inherited transfer & transferFrom functions, require(_to!=0x0), adding more gas consumption.

Code snippet


Users should be aware of pause unpause functionality.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment