Zora
Summary
Quantstamp has been able to identify 12 security issues of varying severity: 3 high risk issues, 1 medium risk issue, 4 low risk issues, 1 informational issue and 3 issues of undetermined severity. Unfortunately it seems some of the issues will require significant code changes to fix. The scope of the audit are the solidity files in the `contracts/` directory save for the `BaseErc20.sol` file. However, the files `Decimal.sol`, `ERC721.sol`, `ERC721Burnable.sol` and `Math.sol` were only considered to the extent they differ from their clones . **Update 2021-01-06:** A re-audit of the codebase at version `v1.0.0` (commit `a12b3fd8c701b949f8171db7c7d6d1214f419b65`) was performed. Two new issues have been included in the report. Overall, there is still only one unresolved issue, with 4 having been fixed, 2 mitigated and 5 acknowledged. The majority of issues in the Best Practices and Code Documentation sections have been addressed as well, though a few remain unresolved. **Update 2021-01-11:** QSP-4 has been mitigated, leaving no security issues unresolved.
Issues (12)
Low | Medium | High | Critical | Total | |
|---|---|---|---|---|---|
Not fixed | 5 | 1 | 2 | - | 8 |
Fixed | 3 | - | 1 | - | 4 |
| Total | 8 | 1 | 3 | 0 | 12 |