Omniscia Bluejay Finance Audit

BondRouter Static Analysis Findings

BRR-01S: Inexistent Sanitization of Input Addresses

Type	Severity	Location
Input Sanitization		BondRouter.sol:L46

Description:

The linked address arguments affect sensitive contract variables yet remain unsanitized.

Example:

packages/contracts/contracts/BondRouter.sol

46function initialize(address _blu, address _sblu) public initializer {
47  __Ownable_init();
48  __UUPSUpgradeable_init();
49
50  BLU = IERC20(_blu);
51  sBLU = IStakedToken(_sblu);
52}

Recommendation:

We advise them to be sanitized against the zero-address (address(0)) to prevent misconfiguration of the contract.

Alleviation:

The Bluejay Finance team stated that they do not wish to sanitize the referenced input arguments as the function is executed only once during the contract's lifetime. As a result, we consider this exhibit acknowledged.

Omniscia Bluejay Finance Audit

BondRouter Static Analysis Findings

BondRouter Static Analysis Findings

BRR-01S: Inexistent Sanitization of Input Addresses

Description:

Example:

Recommendation:

Alleviation:

BondGovernor.sol (BGR-S)

PriceStabilizer.sol (PSR-S)

On this page