Ribbon Finance Audit
Summary
that safely porting over fixes from this audit to a codebase that has been substantially iterated on can be non-trivial. We recommend all iterations of the codebase undergo audits and that no code that has not been audited be relied upon to handle user funds. System Overview Ribbon Finance is a protocol... The Ribbon Finance team asked us to review and audit their Theta Vault and Delta Vault smart contracts. We looked at the code and now publish our results. Scope We audited commit 3fa3bec15ad1e2b18ad87f979b87a68368497f13 of the ribbon-finance/ribbon-v2 repository. In scope were the following...
Issues (23)
Low | Medium | High | Critical | Total | |
|---|---|---|---|---|---|
Not fixed | - | - | - | - | 0 |
Fixed | 16 | 5 | 1 | 1 | 23 |
| Total | 16 | 5 | 1 | 1 | 23 |
Contracts (17)
| # | File Name |
|---|---|
| 1 | contracts/vaults/base/RibbonVault.sol |
| 2 | contracts/interfaces/GammaInterface.sol |
| 3 | contracts/interfaces/IERC20Detailed.sol |
| 4 | contracts/libraries/SupportsNonCompliantERC20.sol |
| 5 | contracts/interfaces/IWETH.sol |
| 6 | contracts/utils/StrikeSelection.sol |
| 7 | contracts/vaults/RibbonThetaVault.sol |
| 8 | contracts/vaults/RibbonDeltaVault.sol |
| 9 | contracts/libraries/GnosisAuction.sol |
| 10 | contracts/libraries/VaultLifecycle.sol |