Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

KS-391: Capabilities Registry Fixes #13937

Merged
merged 2 commits into from
Jul 29, 2024
Merged

KS-391: Capabilities Registry Fixes #13937

merged 2 commits into from
Jul 29, 2024

Conversation

cds95
Copy link
Contributor

@cds95 cds95 commented Jul 29, 2024

  1. Update updateNodeOperators to check msg.sender against current admin instead of new admin
  2. Update updateNodes to prevent a malicious node operator from taking over a node belonging to another node by calling the function and passing in the p2p ID of the node they are taking over.

@cds95 cds95 force-pushed the KS-391/capabilities-registry-audit-fixes branch from c414a5a to 76cb4bc Compare July 29, 2024 04:52
@cds95 cds95 force-pushed the KS-391/capabilities-registry-audit-fixes branch from 76cb4bc to 6e2a249 Compare July 29, 2024 04:55
@cds95 cds95 force-pushed the KS-391/capabilities-registry-audit-fixes branch from 6e2a249 to a840f63 Compare July 29, 2024 05:00
@cds95 cds95 marked this pull request as ready for review July 29, 2024 05:10
@cds95 cds95 requested review from archseer, bolekk, patrick-dowell and a team as code owners July 29, 2024 05:10
@cl-sonarqube-production
Copy link

Quality Gate passed Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarQube

@DeividasK DeividasK added this pull request to the merge queue Jul 29, 2024
Merged via the queue into develop with commit 27d9c71 Jul 29, 2024
115 checks passed
@DeividasK DeividasK deleted the KS-391/capabilities-registry-audit-fixes branch July 29, 2024 10:17
@github-actions github-actions bot mentioned this pull request Jul 29, 2024
Draft
@jira jira bot mentioned this pull request Jul 29, 2024
Merged
Tofel pushed a commit that referenced this pull request Jul 31, 2024
@cds95 @Tofel
KS-391: Capabilities Registry Fixes (#13937)
9840cb7 
* prevent malicious a node operator from taking over another node belonging to another node operator

* prevent malicious node operator from becoming the admin for another node operator
This was referenced Jul 31, 2024
Draft
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@archseer archseer archseer approved these changes

@DeividasK DeividasK DeividasK approved these changes

@bolekk bolekk Awaiting requested review from bolekk

@patrick-dowell patrick-dowell Awaiting requested review from patrick-dowell

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@cds95 @archseer @DeividasK