Heurist
Off-Chain (Private)
Audited on 2024/11/04
No active critical issues
Summary
This document outlines the overall security of the Heurist smart contract/s evaluated by the Zokyo Security team. The scope of this audit was to analyze and document the Heurist smart contract/s codebase for quality, security, and correctness.
Issues (17)
Low | Medium | High | Critical | Total | |
|---|---|---|---|---|---|
Not fixed | 7 | 4 | - | - | 11 |
Fixed | 4 | - | 2 | - | 6 |
| Total | 11 | 4 | 2 | 0 | 17 |
Exchange Rate Manipulation via Direct Transfers
not_fixed/medium
None
Missing Upper Bound on vestPeriod
not_fixed/medium
None
Risk of Centralisation
not_fixed/medium
None
Zero HEU Payouts Due to Rounding in Exchange Rate Calculation
not_fixed/medium
None
Claim During Migration Mode
not_fixed/low
None
Insufficient HEU Tokens for Claims
not_fixed/low
None
Lack of Two-Step Ownership Transfer
not_fixed/low
None
Missing Invariant for Consistent Token Balances (ChestRewards.addRewards())
not_fixed/low
None
Missing Validation for Claiming More than Available Balance (ChestRewards.claimRewards())
not_fixed/low
None
Missing Validation for Empty Address Inputs (ChestRewards.addRewards() and distribute())
not_fixed/low
None
Use the proxy pattern at the early stage of the protocol
not_fixed/low
None
Contract (1)
| # | File Name |
|---|---|
| 1 | Unknown Contract |