Particle

Off-Chain (Private)

Audited on 2023/09/23

No active critical issues

Summary

The audit of the Particle Exchange protocol revealed several findings that need attention to ensure the protocol's security and functionality. The audit identified potential vulnerabilities, including the risk of incorrect ETH balance checks, the possibility of malicious NFT contract actions, and the absence of whitelisting for NFT collections. Moreover, the CEI pattern was not fully respected in certain functions, exposing the protocol to reentrancy risks. **Update:** The Particle team has either fixed or sufficiently acknowledged all issues found by the auditors. Most of the best practices recommended were also implemented with a few well-justified exceptions. We commend the team's diligent efforts in implementing the fixes.

Project

Particle

Ethereum

Issues (20)

	Low	Medium	High	Critical	Total
Not fixed	12	-	-	-	12
Fixed	4	3	1	-	8
Total	16	3	1	0	20

Contracts (6)

#	File Name
1	contracts/libraries/security/ReentrancyGuard.sol
2	contracts/libraries/math/MathUtils.sol
3	contracts/interfaces/IParticleExchange.sol
4	contracts/libraries/types/Errors.sol
5	contracts/libraries/types/Structs.sol
6	contracts/protocol/ParticleExchange.sol

#	File Name
1	contracts/libraries/security/ReentrancyGuard.sol
2	contracts/libraries/math/MathUtils.sol
3	contracts/interfaces/IParticleExchange.sol
4	contracts/libraries/types/Errors.sol
5	contracts/libraries/types/Structs.sol
6	contracts/protocol/ParticleExchange.sol

Particle

Summary

Issues (20)

`accruedInterest` Boundary Should Be Declared in Documentationnot_fixed/low

`Collection` Not Whitelistednot_fixed/low

Clone-and-Ownnot_fixed/low

Missing Input Validationnot_fixed/low

Missing Return Value Validationnot_fixed/low

Contracts (6)