This is the report from a security audit performed on Lucky Strike v4 by gorbunovperm.
Lucky Strike, based fully in Ethereum smart-contract, is bringing the core philosophy of blockchain to the gambling industry – enhancing it with an ICO model we’re calling ‘Bet & Own.’
https://lucky-strike.io/game/#/
In total, 3 issues were reported including:
-
0 high severity issue.
-
0 medium severity issues.
-
1 low severity issues.
-
1 owner privileges.
-
1 minor observations.
-
It is possible to double withdrawal attack. More details here
-
Lack of transaction handling mechanism issue. WARNING! This is a very common issue and it already caused millions of dollars losses for lots of token users! More details here
Function mint
allows owner to mint more tokens than hardCap
.
You should check (invested + _invested) > hardCap
before minting and if it's true, mint only hardCap - invested
number of tokens and return remainder to investor.
adjustAllocation
function allows the owner to reset the rates of the different jackpots and income rate.
There are no serious vulnerabilities that should be fixed.