{"componentChunkName":"component---node-modules-rocketseat-gatsby-theme-docs-core-src-templates-docs-query-js","path":"/manual-review/ArtBlocksVerifier-ABV","result":{"data":{"mdx":{"id":"f258058a-b8a4-5276-b11d-203fd7eaa25c","excerpt":"ABV-01M: Improper Enforcement of Check Type Severity Location Input Sanitization ArtBlocksVerifier.sol:L95-L96 Description: The referenced statement is meant to…","fields":{"slug":"/manual-review/ArtBlocksVerifier-ABV/"},"frontmatter":{"title":"ArtBlocksVerifier Manual Review Findings","description":"Contains all the findings that relate to manual review on the contract codebase","image":null,"disableTableOfContents":null},"body":"var _excluded = [\"components\"];\n\nfunction _extends() { _extends = Object.assign || function (target) { for (var i = 1; i < arguments.length; i++) { var source = arguments[i]; for (var key in source) { if (Object.prototype.hasOwnProperty.call(source, key)) { target[key] = source[key]; } } } return target; }; return _extends.apply(this, arguments); }\n\nfunction _objectWithoutProperties(source, excluded) { if (source == null) return {}; var target = _objectWithoutPropertiesLoose(source, excluded); var key, i; if (Object.getOwnPropertySymbols) { var sourceSymbolKeys = Object.getOwnPropertySymbols(source); for (i = 0; i < sourceSymbolKeys.length; i++) { key = sourceSymbolKeys[i]; if (excluded.indexOf(key) >= 0) continue; if (!Object.prototype.propertyIsEnumerable.call(source, key)) continue; target[key] = source[key]; } } return target; }\n\nfunction _objectWithoutPropertiesLoose(source, excluded) { if (source == null) return {}; var target = {}; var sourceKeys = Object.keys(source); var key, i; for (i = 0; i < sourceKeys.length; i++) { key = sourceKeys[i]; if (excluded.indexOf(key) >= 0) continue; target[key] = source[key]; } return target; }\n\n/* @jsxRuntime classic */\n\n/* @jsx mdx */\nvar _frontmatter = {\n  \"title\": \"ArtBlocksVerifier Manual Review Findings\",\n  \"description\": \"Contains all the findings that relate to manual review on the contract codebase\"\n};\nvar layoutProps = {\n  _frontmatter: _frontmatter\n};\nvar MDXLayout = \"wrapper\";\nreturn function MDXContent(_ref) {\n  var components = _ref.components,\n      props = _objectWithoutProperties(_ref, _excluded);\n\n  return mdx(MDXLayout, _extends({}, layoutProps, props, {\n    components: components,\n    mdxType: \"MDXLayout\"\n  }), mdx(\"h2\", {\n    \"id\": \"span-idabv-01mabv-01m-improper-enforcement-of-checkspan\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h2\",\n    \"href\": \"#span-idabv-01mabv-01m-improper-enforcement-of-checkspan\",\n    \"aria-label\": \"span idabv 01mabv 01m improper enforcement of checkspan permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), mdx(\"span\", {\n    id: \"ABV-01M\"\n  }, \"ABV-01M: Improper Enforcement of Check\")), mdx(\"table\", null, mdx(\"thead\", {\n    parentName: \"table\"\n  }, mdx(\"tr\", {\n    parentName: \"thead\"\n  }, mdx(\"th\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, \"Type\"), mdx(\"th\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, \"Severity\"), mdx(\"th\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, \"Location\"))), mdx(\"tbody\", {\n    parentName: \"table\"\n  }, mdx(\"tr\", {\n    parentName: \"tbody\"\n  }, mdx(\"td\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, mdx(\"a\", {\n    parentName: \"td\",\n    \"href\": \"/reports/arcade-xyz-protocol-implementation-64b937995ed4f90014b424b9/appendix/finding-types#input-sanitization\"\n  }, \"Input Sanitization\")), mdx(\"td\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, mdx(\"img\", {\n    parentName: \"td\",\n    \"className\": \"o-severity o-minor\",\n    \"src\": \"https://omniscia.io/report-assets/minor.png\"\n  })), mdx(\"td\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, mdx(\"a\", {\n    parentName: \"td\",\n    \"href\": \"https://github.com/arcadexyz/arcade-protocol/blob/f1eb8ae7b7595f7dc46dc785e35172d9b8f63cf0/contracts/verifiers/ArtBlocksVerifier.sol#L95-L96\"\n  }, \"ArtBlocksVerifier.sol:L95-L96\"))))), mdx(\"h3\", {\n    \"id\": \"description\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h3\",\n    \"href\": \"#description\",\n    \"aria-label\": \"description permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), \"Description:\"), mdx(\"p\", null, \"The referenced statement is meant to validate that the predicate's amount value is non-zero, however, the predicate's amount is solely utilized when \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"anyIdAllowed\"), \" is set to \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"true\"), \".\"), mdx(\"h3\", {\n    \"id\": \"impact\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h3\",\n    \"href\": \"#impact\",\n    \"aria-label\": \"impact permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), \"Impact:\"), mdx(\"p\", null, \"The code will not assume an \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"amount\"), \" of \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"1\"), \" if \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"tokenId\"), \" has been defined in the current iteration of the codebase for validation purposes, rendering it contradictory to its specification.\"), mdx(\"h3\", {\n    \"id\": \"example\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h3\",\n    \"href\": \"#example\",\n    \"aria-label\": \"example permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), \"Example:\"), mdx(\"pre\", null, mdx(\"code\", {\n    parentName: \"pre\",\n    \"className\": \"language-sol\",\n    \"metastring\": \"title=contracts/verifiers/ArtBlocksVerifier.sol highlight={2,4,18,23,29} lineNumbers=true lineOffset=94\",\n    \"title\": \"contracts/verifiers/ArtBlocksVerifier.sol\",\n    \"highlight\": \"{2,4,18,23,29}\",\n    \"lineNumbers\": \"true\",\n    \"lineOffset\": \"94\"\n  }, \"// No amount provided\\nif (item.amount == 0) revert IV_NoAmount(item.asset, item.amount);\\n\\nif (item.anyIdAllowed) {\\n    // Iterate through tokens\\n    uint256 tokenCount = IArtBlocks(item.asset).balanceOf(vault);\\n    uint256 found;\\n\\n    for (uint256 j = 0; j < tokenCount; j++) {\\n        uint256 fullTokenId = IArtBlocks(item.asset).tokenOfOwnerByIndex(vault, j);\\n        uint256 ownedProjectId = fullTokenId / PROJECT_ID_BASE;\\n\\n        // If project is owned, increment num found\\n        // If we've found enough, break\\n        if (ownedProjectId == item.projectId) {\\n            found++;\\n\\n            if (found >= item.amount) break;\\n        }\\n    }\\n\\n    // We looped and didn't find enough, so fail\\n    if (found < item.amount) return false;\\n} else {\\n    // Look for a specific token ID\\n    uint256 fullTokenId = _getFullTokenId(item.projectId, item.tokenId);\\n\\n    // Check if the token is owned by the vault\\n    if (IERC721(item.asset).ownerOf(fullTokenId) != vault) {\\n        return false;\\n    }\\n}\\n\")), mdx(\"h3\", {\n    \"id\": \"recommendation\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h3\",\n    \"href\": \"#recommendation\",\n    \"aria-label\": \"recommendation permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), \"Recommendation:\"), mdx(\"p\", null, \"Given that the \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"struct\"), \" documentation explicitly states \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"amount\"), \" is assumed to be \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"1\"), \" if a \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"tokenId\"), \" has been specified, we advise the code to relocate the referenced check within the \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"if (item.anyIdAllowed)\"), \" code branch, ensuring that it is validated only when it is appropriate to do so.\"), mdx(\"h3\", {\n    \"id\": \"alleviation-7a4e1dc948e94ded7385dbb74818bcf93ecc207c\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h3\",\n    \"href\": \"#alleviation-7a4e1dc948e94ded7385dbb74818bcf93ecc207c\",\n    \"aria-label\": \"alleviation 7a4e1dc948e94ded7385dbb74818bcf93ecc207c permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), \"Alleviation (7a4e1dc948e94ded7385dbb74818bcf93ecc207c):\"), mdx(\"p\", null, \"The referenced \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"if-revert\"), \" check has been relocated as advised, ensuring that the code behaves according to its specification.\"), mdx(ViewDiffButton, {\n    repoUrl: \"https://github.com/arcadexyz/arcade-protocol\",\n    mainHash: \"f1eb8ae7b7595f7dc46dc785e35172d9b8f63cf0\",\n    fixHash: \"7a4e1dc948e94ded7385dbb74818bcf93ecc207c\",\n    gitHubIssue: \"0\",\n    mdxType: \"ViewDiffButton\"\n  }), mdx(\"h2\", {\n    \"id\": \"span-idabv-02mabv-02m-incorrect-assumption-of-functionspan\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h2\",\n    \"href\": \"#span-idabv-02mabv-02m-incorrect-assumption-of-functionspan\",\n    \"aria-label\": \"span idabv 02mabv 02m incorrect assumption of functionspan permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), mdx(\"span\", {\n    id: \"ABV-02M\"\n  }, \"ABV-02M: Incorrect Assumption of Function\")), mdx(\"table\", null, mdx(\"thead\", {\n    parentName: \"table\"\n  }, mdx(\"tr\", {\n    parentName: \"thead\"\n  }, mdx(\"th\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, \"Type\"), mdx(\"th\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, \"Severity\"), mdx(\"th\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, \"Location\"))), mdx(\"tbody\", {\n    parentName: \"table\"\n  }, mdx(\"tr\", {\n    parentName: \"tbody\"\n  }, mdx(\"td\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, mdx(\"a\", {\n    parentName: \"td\",\n    \"href\": \"/reports/arcade-xyz-protocol-implementation-64b937995ed4f90014b424b9/appendix/finding-types#logical-fault\"\n  }, \"Logical Fault\")), mdx(\"td\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, mdx(\"img\", {\n    parentName: \"td\",\n    \"className\": \"o-severity o-minor\",\n    \"src\": \"https://omniscia.io/report-assets/minor.png\"\n  })), mdx(\"td\", {\n    parentName: \"tr\",\n    \"align\": null\n  }, mdx(\"a\", {\n    parentName: \"td\",\n    \"href\": \"https://github.com/arcadexyz/arcade-protocol/blob/f1eb8ae7b7595f7dc46dc785e35172d9b8f63cf0/contracts/verifiers/ArtBlocksVerifier.sol#L66-L67\"\n  }, \"ArtBlocksVerifier.sol:L66-L67\"))))), mdx(\"h3\", {\n    \"id\": \"description-1\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h3\",\n    \"href\": \"#description-1\",\n    \"aria-label\": \"description 1 permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), \"Description:\"), mdx(\"p\", null, \"The \", mdx(\"a\", {\n    parentName: \"p\",\n    \"href\": \"https://github.com/arcadexyz/arcade-protocol/blob/f1eb8ae7b7595f7dc46dc785e35172d9b8f63cf0/contracts/verifiers/ArtBlocksVerifier.sol#L76-L132\"\n  }, mdx(\"inlineCode\", {\n    parentName: \"a\"\n  }, \"ArtBlocksVerifier::verifyPredicates\")), \" function assumes that an empty predicates array has been addressed in the \", mdx(\"a\", {\n    parentName: \"p\",\n    \"href\": \"https://github.com/arcadexyz/arcade-protocol/blob/f1eb8ae7b7595f7dc46dc785e35172d9b8f63cf0/contracts/OriginationController.sol#L200-L229\"\n  }, mdx(\"inlineCode\", {\n    parentName: \"a\"\n  }, \"OriginationController::initializeLoanWithItems\")), \" and \", mdx(\"a\", {\n    parentName: \"p\",\n    \"href\": \"https://github.com/arcadexyz/arcade-protocol/blob/f1eb8ae7b7595f7dc46dc785e35172d9b8f63cf0/contracts/OriginationController.sol#L375-L411\"\n  }, mdx(\"inlineCode\", {\n    parentName: \"a\"\n  }, \"OriginationController::rolloverLoanWithItems\")), \" functions, however, this is \", mdx(\"strong\", {\n    parentName: \"p\"\n  }, \"incorrect\"), \" as the functions ensure that the \", mdx(\"strong\", {\n    parentName: \"p\"\n  }, \"whole predicate array is not empty\"), \", not that the \", mdx(\"strong\", {\n    parentName: \"p\"\n  }, mdx(\"inlineCode\", {\n    parentName: \"strong\"\n  }, \"data\"), \" payload of a predicate call contains non-zero entries\"), \".\"), mdx(\"h3\", {\n    \"id\": \"impact-1\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h3\",\n    \"href\": \"#impact-1\",\n    \"aria-label\": \"impact 1 permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), \"Impact:\"), mdx(\"p\", null, \"The \", mdx(\"a\", {\n    parentName: \"p\",\n    \"href\": \"https://github.com/arcadexyz/arcade-protocol/blob/f1eb8ae7b7595f7dc46dc785e35172d9b8f63cf0/contracts/verifiers/ArtBlocksVerifier.sol#L76-L132\"\n  }, mdx(\"inlineCode\", {\n    parentName: \"a\"\n  }, \"ArtBlocksVerifier::verifyPredicates\")), \" will misbehave if supplied an empty \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"items\"), \" data entry when called via the \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"OriginationController\"), \" despite its documentation specifying that no sanitization is needed as it is incorrect.\"), mdx(\"h3\", {\n    \"id\": \"example-1\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h3\",\n    \"href\": \"#example-1\",\n    \"aria-label\": \"example 1 permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), \"Example:\"), mdx(\"pre\", null, mdx(\"code\", {\n    parentName: \"pre\",\n    \"className\": \"language-sol\",\n    \"metastring\": \"title=contracts/verifiers/ArtBlocksVerifier.sol highlight={5,6,23,25} lineNumbers=true lineOffset=61\",\n    \"title\": \"contracts/verifiers/ArtBlocksVerifier.sol\",\n    \"highlight\": \"{5,6,23,25}\",\n    \"lineNumbers\": \"true\",\n    \"lineOffset\": \"61\"\n  }, \"/**\\n * @notice Verify that the items specified by the packed SignatureItem array are held by the vault.\\n * @dev    Reverts on a malformed SignatureItem, returns false on missing contents.\\n *\\n *         Verification for empty predicates array has been addressed in initializeLoanWithItems and\\n *         rolloverLoanWithItems.\\n *\\n * @param collateralAddress             The address of the loan's collateral.\\n * @param collateralId                  The tokenId of the loan's collateral.\\n * @param predicates                    The SignatureItem[] array of items, packed in bytes.\\n *\\n * @return verified                     Whether the bundle contains the specified items.\\n */\\n// solhint-disable-next-line code-complexity\\nfunction verifyPredicates(\\n    address, address,\\n    address collateralAddress,\\n    uint256 collateralId,\\n    bytes calldata predicates\\n) external view override returns (bool) {\\n    address vault = IVaultFactory(collateralAddress).instanceAt(collateralId);\\n    // Unpack items\\n    SignatureItem[] memory items = abi.decode(predicates, (SignatureItem[]));\\n\\n    for (uint256 i = 0; i < items.length; ++i) {\\n\")), mdx(\"h3\", {\n    \"id\": \"recommendation-1\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h3\",\n    \"href\": \"#recommendation-1\",\n    \"aria-label\": \"recommendation 1 permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), \"Recommendation:\"), mdx(\"p\", null, \"We advise the code to properly ensure that the \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"items\"), \" decoded contain a non-zero length as otherwise the predicate would succeed without validating anything, signifying a potential scam attempt.\"), mdx(\"h3\", {\n    \"id\": \"alleviation-7a4e1dc948e94ded7385dbb74818bcf93ecc207c-1\",\n    \"style\": {\n      \"position\": \"relative\"\n    }\n  }, mdx(\"a\", {\n    parentName: \"h3\",\n    \"href\": \"#alleviation-7a4e1dc948e94ded7385dbb74818bcf93ecc207c-1\",\n    \"aria-label\": \"alleviation 7a4e1dc948e94ded7385dbb74818bcf93ecc207c 1 permalink\",\n    \"className\": \"anchor before\"\n  }, mdx(\"svg\", {\n    parentName: \"a\",\n    \"aria-hidden\": \"true\",\n    \"focusable\": \"false\",\n    \"height\": \"16\",\n    \"version\": \"1.1\",\n    \"viewBox\": \"0 0 16 16\",\n    \"width\": \"16\"\n  }, mdx(\"path\", {\n    parentName: \"svg\",\n    \"fillRule\": \"evenodd\",\n    \"d\": \"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"\n  }))), \"Alleviation (7a4e1dc948e94ded7385dbb74818bcf93ecc207c):\"), mdx(\"p\", null, \"A proper \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"if-revert\"), \" pattern was introduced that ensures the decoded \", mdx(\"inlineCode\", {\n    parentName: \"p\"\n  }, \"SignatureItem\"), \" array contains non-zero entries, alleviating this exhibit in full.\"), mdx(ViewDiffButton, {\n    repoUrl: \"https://github.com/arcadexyz/arcade-protocol\",\n    mainHash: \"f1eb8ae7b7595f7dc46dc785e35172d9b8f63cf0\",\n    fixHash: \"7a4e1dc948e94ded7385dbb74818bcf93ecc207c\",\n    gitHubIssue: \"0\",\n    mdxType: \"ViewDiffButton\"\n  }));\n}\n;\nMDXContent.isMDXComponent = true;","headings":[{"depth":2,"value":"<span id=\"ABV-01M\">ABV-01M: Improper Enforcement of Check</span>"},{"depth":3,"value":"Description:"},{"depth":3,"value":"Impact:"},{"depth":3,"value":"Example:"},{"depth":3,"value":"Recommendation:"},{"depth":3,"value":"Alleviation (7a4e1dc948e94ded7385dbb74818bcf93ecc207c):"},{"depth":2,"value":"<span id=\"ABV-02M\">ABV-02M: Incorrect Assumption of Function</span>"},{"depth":3,"value":"Description:"},{"depth":3,"value":"Impact:"},{"depth":3,"value":"Example:"},{"depth":3,"value":"Recommendation:"},{"depth":3,"value":"Alleviation (7a4e1dc948e94ded7385dbb74818bcf93ecc207c):"}]}},"pageContext":{"slug":"/manual-review/ArtBlocksVerifier-ABV/","prev":{"label":"ArcadeItemsVerifier.sol (AIV-M)","link":"/manual-review/ArcadeItemsVerifier-AIV"},"next":{"label":"AssetVault.sol (AVT-M)","link":"/manual-review/AssetVault-AVT"}}},"staticQueryHashes":["1954253342","2328931024","2501019404","973074209"]}