Skip to content

Instantly share code, notes, and snippets.

@yuriy77k

yuriy77k/hydro_token_conclusion.md

Created November 30, 2018 19:52
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save yuriy77k/3052299ab0bc3bd8ada577dfc7cd6050 to your computer and use it in GitHub Desktop.
Save yuriy77k/3052299ab0bc3bd8ada577dfc7cd6050 to your computer and use it in GitHub Desktop.
Download ZIP
HYDRO Token Audit Report.
Raw
hydro_token_conclusion.md

1. Summary

HYDRO Token security audit report performed by Callisto Security Audit Department

2. In scope

  • HydroToken.sol github commit hash 01146703bddae7658cac9afa3a8009d07fdef819.

3. Findings

In total, 2 issues were reported including:

  • 1 low severity issues.

  • 1 minor observation.

No critical security issues were found.

3.1. Known vulnerabilities of ERC-20 token

Severity: low

Description

  1. It is possible to double withdrawal attack. More details here
  2. Lack of transaction handling mechanism issue. WARNING! This is a very common issue and it already caused millions of dollars losses for lots of token users! More details here

3.2. Representation

Severity: minor observation

Description

Better use decimal variable in calculating totalSuplay amount.

4. Conclusion

The contract can be deployed.

5. Revealing audit reports

https://gist.github.com/yuriy77k/bcdc452765c91d75ebc6b9e303b4c0a8

https://gist.github.com/yuriy77k/31c5afe97574047f8a5c842df9776432

https://gist.github.com/yuriy77k/2c309e2dfe1b3ea5190fa12e3035d84c

@solihinbleking
Copy link

0x7282e9E13BE10d8BA2dD82cD930B035D0A34436f

@dnalob
Copy link

dnalob commented May 28, 2020

Hmm

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment