Skip to content

Instantly share code, notes, and snippets.

@yuriy77k
Forked from pro100skm/HYDRO.md
Created November 24, 2018 08:49
Show Gist options
  • Save yuriy77k/2c309e2dfe1b3ea5190fa12e3035d84c to your computer and use it in GitHub Desktop.
Save yuriy77k/2c309e2dfe1b3ea5190fa12e3035d84c to your computer and use it in GitHub Desktop.

HYDRO audit report

Summary

This is the report from a security audit performed on HYDRO by pro100skm.

The audit focused primarily on the security of HYDRO contract.

In scope

  1. https://github.com/hydrogen-dev/smart-contracts/blob/master/hydro-token-and-server-raindrop/contracts/HydroToken.sol

Findings

In total, 2 issues were reported including:

  • 0 high severity issues.

  • 0 medium severity issues.

  • 2 low severity issues.

  • 0 minor observations.

Security issues

1. Known Issues of ERC20 Standard

Severity: low

Description

approve + transferFrom mechanism allows double Withdrawal attack before decreasing approved ballance to zero.

2. Representation

Severity: low

Description

Better use decimal variable in calculating totalSuplay amount.

Conclusion

There weren't detected any high severity vulnerabilities that can directly hurt the HYDRO smart contract. We highly recommend you to complete other bugbounty before use.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment