Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Address Slither Issues in GoodDollar/Bancor Contracts #526

Merged
merged 12 commits into from
Oct 15, 2024

Conversation

chapati23
Copy link
Contributor

@chapati23 chapati23 commented Oct 11, 2024

Description

Fixes #525

Mostly false positives where I added comments.

One change I did make was adding reentrancy guards to the mint functions in the GoodDollarExpansionController.

Even though the slither warnings were only a "medium" around possibly manipulating event data via re-entrancy, I thought it'd still be a good idea to disallow reentrancy for all mint functions.

Base automatically changed from feat/change-gdollar-modifiers to feat/GDollar-of-latest-develop October 14, 2024 10:28
Copy link
Contributor

@baroooo baroooo left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks good, but I don't think ReentrancyGuard provides any value here since the functions:
1- do not give the right of execution to any arbitrary contract, calls are made to known erc20 tokens and mento protocol contracts
2- follows check-effects-interactions pattern correctly

@chapati23 chapati23 force-pushed the chore/address-slither-issues branch 3 times, most recently from 2043749 to cf48d9a Compare October 15, 2024 13:37
they didn't add any value as the mint functions
only interact with trusted contracts and tokens
@chapati23 chapati23 force-pushed the chore/address-slither-issues branch from cf48d9a to 99bd07c Compare October 15, 2024 13:39
@chapati23 chapati23 merged commit 914ba7d into feat/GDollar-of-latest-develop Oct 15, 2024
4 of 5 checks passed
@chapati23 chapati23 deleted the chore/address-slither-issues branch October 15, 2024 13:53
bowd pushed a commit that referenced this pull request Oct 24, 2024
7704a9b chore: reserve storage gap in new contracts
040b7fe GoodDollar Fork Tests (#530)
2ee14b4 Feat(454): Exchange provider tests  (#529)
578747c test: add BancorExchangeProvider pricing tests (#532)
fcd3d02 feat: improve tests around the expansion controller (#533)
d3a31fa Streamline comments and errors (#528)
ec64f0a fix: ☦ pray to the lords of echidna
13d3a98 fix: add back forge install to the CI step
c236009 fix: echidna tests
c50a198 feat: add Broker liquidity check (#523)
914ba7d Address Slither Issues in GoodDollar/Bancor Contracts (#526)
8bcf3fd Feat/change gdollar modifiers (#524)
379a511 feat: make validate() internal
bcbd9aa chore: added "yarn todo" task to log out open todos in the code
0631c60 refactor: renamed SafeERC20 to SafeERC20MintableBurnable
2800297 feat: simplified SafeERC20
e858391 feat: extend open zeppelin's IERC20 instead of duplicating it
196f6be chore: fixed linter and compiler warnings
096efe2 test: fix fork integration test
e5308d9 feat: add GoodDollar contracts + tests
3135626 feat: update Broker + TradingLimits to 0.8 and make G$ changes
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants