This is the report from a security audit performed on Lucky Strike v7 by gorbunovperm.
Lucky Strike, based fully in Ethereum smart-contract, is bringing the core philosophy of blockchain to the gambling industry – enhancing it with an ICO model we’re calling ‘Bet & Own.’
https://lucky-strike.io/game/#/
In total, 3 issues were reported including:
-
0 critical severity issue.
-
0 high severity issue.
-
0 medium severity issues.
-
1 low severity issues.
-
1 owner privileges.
-
1 note.
-
It is possible to double withdrawal attack. More details here
-
Lack of transaction handling mechanism issue. WARNING! This is a very common issue and it already caused millions of dollars losses for lots of token users! More details here
Function mint
allows owner to mint more tokens than hardCap
.
- LuckyStrikeTokens, line 353
You should check (invested + _invested) > hardCap
before minting and if it's true, mint only hardCap - invested
number of tokens and return remainder to investor.
adjustAllocation
function allows the owner to reset the rates of the different jackpots and income rate.
- LuckyStrike, line 1617
There are no dangerous vulnerabilities were discovered in these contracts.