Nomad Security Smart Contract Audit

Summary

**Initial audit**: <br> Through reviewing the code, we found **40 potential issues** of various levels of severity:`1` high-severity, `6` medium-severity, `18` low-severity, `9` informational-security and `6` undermined issues. We recommend addressing all the issues before deploying the code. </br> **After the re-audit**: </br> The Nomad team has fixed the majority of the issues and the contracts are ready to be deployed, we also found a new issue the QSP-40.

Project

Nomad

Ethereum

Rekt reported

Last audited on 2022/06/09

Auditor

293 audits on Trustblock

Multi-Tags

Issues (40)

	Low	Medium	High	Critical	Total
Not fixed	28	2	-	-	30
Fixed	5	4	1	-	10
Total	33	6	1	0	40

Contracts (66)

#	File Name
61	Nomad/monrepo/packages/contracts-core/contracts/test/bad-recipient/BadRecipient3.sol
62	Nomad/monrepo/packages/contracts-core/contracts/test/bad-recipient/BadRecipient5.sol
63	Nomad/monrepo/packages/contracts-core/contracts/Queue.sol
64	Nomad/monrepo/packages/contracts-bridge/contracts/BridgeToken.sol
65	Nomad/zodiac/contracts/test/TestAvatar.sol
66	Nomad/monrepo/packages/contracts-core/contracts/Home.sol

Nomad

Summary

Issues (40)

Long Queues Can Lead To Denial Of Servicenot_fixed/medium

Watcher Availability Concernnot_fixed/medium

`_dust` Method Can Be Abusednot_fixed/low

Incompatibility With Deflationary Tokensnot_fixed/low

Replay Attack In The `improperUpdate` not_fixed/low

Contracts (66)