Low | Medium | High | Critical | Total | |
|---|---|---|---|---|---|
Not fixed | 2 | - | 2 | - | 4 |
Fixed | - | - | - | - | 0 |
| Total | 2 | 0 | 2 | 0 | 4 |
not_fixed/high
In the contract `BGT` the role `_bridgeadmin` has authority over the functions shown in the diagram below. Any compromise to the `_bridgeadmin` account may allow the hacker to take advantage of this authority and mint and burn tokens.  In the contract `BGT` the role `_owner` has authority over the functions shown in the diagram below. Any compromise to the `_owner` account may allow the hacker to take advantage of this authority and add bridge admin and Policeman to the contract.  In the contract `BGT` the role `_policemans` has authority over the functions shown in the diagram below. Any compromise to the `_policemans` account may allow the hacker to take advantage of this authority and modify the Prohibit list. 
not_fixed/high
All of the BGT tokens are sent to the contract deployer or one or several externally-owned account (EOA) addresses. This is a centralization risk because the deployer or the owner(s) of the EOAs can distribute tokens without obtaining the consensus of the community. Any compromise to these addresses may allow a hacker to steal and sell tokens on the market, resulting in severe damage to the project.
not_fixed/low
There should always be events emitted in the sensitive functions that are controlled by centralization roles.
not_fixed/low
One or more statements do not affect the functionality of the codebase and appear to be either leftovers from test code or older functionality. ```solidity=112 amount; ```