This document is a security audit report performed by RideSolo, where 0xBitcoin Project has been reviewed.
- _0xBitcoinToken.sol github commit hash 9f60a4a0117d10dbe39d44895ed01c2bd2d2c13c.
2 issues were reported including:
- 2 low severity issues.
Transfer to address zero in the audited contract is used as basic burn mechnism (check totalSupply
, balances[address(0)]
is deducted from the total supply), this mechanism open the doors also for sending tokens by mistake to address 0x0.
https://github.com/RideSolo/0xbitcoin-token/blob/master/contracts/_0xBitcoinToken.sol#L488
https://github.com/RideSolo/0xbitcoin-token/blob/master/contracts/_0xBitcoinToken.sol#L520
https://github.com/RideSolo/0xbitcoin-token/blob/master/contracts/_0xBitcoinToken.sol#L580
- It is possible to double withdrawal attack. More details here
- Lack of transaction handling mechanism issue. WARNING! This is a very common issue and it already caused millions of dollars losses for lots of token users! More details here
The contract logic has been audited, the results confirm that the mining process of the token is safe and coherent with the white paper. The audited contract is safe to be deployed.