- Join Sherlock Discord
- Submit findings using the issue page in your private contest repo (label issues as med or high)
- Read for more details
Mainnet, possibly Avalanche C-Chain for the staking contract.
$VVV
none
no
none
no
no
TRUSTED -- if AuthorizationRegistry is considered a protocol in this case
TRUSTED
DefaultAdmin, any arbitrary role- actions: a. Create role b. Remove role c. Set permission d. Call function
- expected outcomes:
DefaultAdminmust be allowed to take all these actions (d. only ifsetPermissionwas used to give it permission`).- Any arbitrary role should only be allowed to take action d. if (and only if) given permission through
setPermission
- prohibited:
- Any arbitrary role must not be allowed to take action a - c
- No role may be able to take action d without having the role assigned through
setPermission
Q: Is the code/contract expected to comply with any EIPs? Are there specific assumptions around adhering to those EIPs that Watsons should be aware of?
no
We accept a loss of precision of 0.000000000001% on the vested amount calculation.
none
Q: Are there any off-chain mechanisms or off-chain procedures for the protocol (keeper bots, input validation expectations, etc)?
no
Q: In case of external protocol integrations, are the risks of external contracts pausing or executing an emergency withdrawal acceptable? If not, Watsons will submit issues related to these situations that can harm your protocol's functionality.
no
Q: Do you expect to use any of the following tokens with non-standard behaviour with the smart contracts?
no
https://hackmd.io/@vvv-knowledge/Syme5HlRT
vvv-platform-smart-contracts @ 7008f399a58c05832ef361dc5c54bd091d723f84
- vvv-platform-smart-contracts/contracts/auth/VVVAuthorizationRegistry.sol
- vvv-platform-smart-contracts/contracts/auth/VVVAuthorizationRegistryChecker.sol
- vvv-platform-smart-contracts/contracts/staking/VVVETHStaking.sol
- vvv-platform-smart-contracts/contracts/tokens/VvvToken.sol
- vvv-platform-smart-contracts/contracts/vesting/VVVVesting.sol