Omniscia Faith Tribe Audit

Token Implementation Security Audit

We were tasked with performing an audit of the Faith Tribe codebase and in particular their token implementations that are meant to be bridge compatible.

Over the course of the audit, we identified certain issues in the custom dependencies of the project that we strongly recommend the Faith Tribe team to alleviate.

Additionally, we identified certain optimizations and standardization changes that can be made to the contracts that we advise the Faith Tribe to consider and implement along with the fixes to the potential vulnerabilities identified within the report.

Files in Scope	Repository	Commit(s)
AccessControlMixin.sol (ACM)	faithtribe-token	ffc328748e, 10a1def02a
ContextMixin.sol (CMN)	faithtribe-token	ffc328748e, 10a1def02a
ChildFaithTribe.sol (CFT)	faithtribe-token	ffc328748e, 10a1def02a
EIP712Base.sol (EIP)	faithtribe-token	ffc328748e, 10a1def02a
FaithTribe.sol (FTE)	faithtribe-token	ffc328748e, 10a1def02a
Initializable.sol (INI)	faithtribe-token	ffc328748e, 10a1def02a
NativeMetaTransaction.sol (NMT)	faithtribe-token	ffc328748e, 10a1def02a

During the audit, we filtered and validated a total of 2 findings utilizing static analysis tools as well as identified a total of 6 findings during the manual review of the codebase. We strongly recommend that any minor severity or higher findings are dealt with promptly prior to the project's launch as they introduce potential misbehaviours of the system as well as exploits.

The list below covers each segment of the audit in depth and links to the respective chapter of the report:

Token Implementation Security Audit

Compilation