We were tasked with performing a second round review of the Alliance Block liquidity staking mechanism.
Over the course of the audit, we identified a major vulnerability in the way supplemental awards are added to the CompoundingRewardsPool that we urge the Alliance Block team to fix promptly.
Additionally, we identified multiple inefficiencies in the structure of the code that we strongly recommend be remediated.
Overall, we believe the codebase to be unnecessarily complex and we recommend the Alliance Block team to reconsider the code's structure and refactor it prior to deployment as in its current state it is unnecessarily convoluted.
During the audit, we filtered and validated a total of 8 findings utilizing static analysis tools as well as identified a total of 3 findings during the manual review of the codebase. We strongly recommend that any minor severity or higher findings are dealt with promptly prior to the project's launch as they introduce potential misbehaviours of the system as well as exploits.
The list below covers each segment of the audit in depth and links to the respective chapter of the report: