Skip to content

Instantly share code, notes, and snippets.

@MrCrambo

MrCrambo/DirhamToken_audit_report.md Secret

Created March 28, 2021 12:56
Show Gist options
  • Save MrCrambo/dd3f22539e06d502b8b678b7cc705112 to your computer and use it in GitHub Desktop.
Save MrCrambo/dd3f22539e06d502b8b678b7cc705112 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
DirhamToken_audit_report.md

Summary

This is the report from a security audit performed on DirhamToken by MrCrambo.

The audit focused primarily on the security of DirhamToken smart contracts.

In scope

  1. https://github.com/DirhamCrypto/DirhamToken/blob/e4a9dc34f9020e7733a289b9b9b4a3d74daee1a1/contracts/Dirham.sol
  2. https://github.com/DirhamCrypto/DirhamToken/blob/e4a9dc34f9020e7733a289b9b9b4a3d74daee1a1/contracts/ERC20Detailed.sol

Findings

In total, 1 issue was reported including:

  • 0 high severity issues.

  • 0 medium severity issues.

  • 0 low severity issues.

  • 1 owner privilegies issues.

Security issues

1. Owner privileges

Severity: owner privileges

Description

  • Owner can emit fake transfer events, this could be risky if exchanges will work with this token and evaluate transfers using Transfer event.
  • Minter can mint any amount of tokens.

Conclusion

Smart contract contains only low severity issue.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment