Skip to content

Instantly share code, notes, and snippets.

@yuriy77k

yuriy77k/ETC_bitunits_audit_report.md Secret

Forked from RideSolo/ETC_bitunits_audit_report.md
Created October 21, 2018 08:19
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save yuriy77k/f96117ef641b601010ffc9c9b5c2a0b9 to your computer and use it in GitHub Desktop.
Save yuriy77k/f96117ef641b601010ffc9c9b5c2a0b9 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
ETC_bitunits_audit_report.md

BitUnits Crowdsale Audit Report.

1. Summary

This document is a security audit report performed by RideSolo, where BitUnits has been reviewed.

2. In scope

  • BitUnits.sol github gist hash d0d28a553000ddc1a64f63b0fb4d4b05.

3. Findings

2 issues were reported:

  • 1 medium severity issue.

  • 1 low severity issue.

3.1. Crowdsale Price

Severity: medium

Description

Taking into account the decimals and the rate set by the developers, if any token value is allocated for the crowdsale the investors will receive for every 1 ETC = 10000000 token which is the total supply of UNITS token.

Developers should set a different rate otherwise the maximum collected fund will be 1 ETC.

Code snippet

https://gist.github.com/yuriy77k/d0d28a553000ddc1a64f63b0fb4d4b05#file-bitunits-sol-L189

3.2. Sale Availability

Severity: low

Description

In order for the investors to buy tokens the address 0x0 should be set with a certain amount of tokens to be sold, however 0x0 address is set with zero tokens.

The crowdsale won't work.

Code snippet

https://gist.github.com/yuriy77k/d0d28a553000ddc1a64f63b0fb4d4b05#file-bitunits-sol-L187#L189

Recommendation

4. Conclusion

The contract developers should consider the issues described above. the contract cannot be deployed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment