Omniscia Powercity Audit

Static Analysis

Static Analysis

The execution of our static analysis toolkit identified 382 potential issues within the codebase of which 345 were ruled out to be false positives or negligible findings.

The remaining 37 issues were validated and grouped and formalized into the 24 exhibits that follow:

IDSeverityAddressedTitle
APL-01SInexistent Sanitization of Input Address
APL-02SImproper Invocations of EIP-20 transfer / transferFrom
BOS-01SInexistent Event Emission
BOS-02SInexistent Visibility Specifiers
BOS-03SInexistent Sanitization of Input Address
BOS-04SImproper Invocations of EIP-20 transferFrom
CSP-01SInexistent Event Emission
CSP-02SInexistent Sanitization of Input Address
CSP-03SImproper Invocations of EIP-20 transfer / transferFrom
DPL-01SInexistent Visibility Specifier
DPL-02SImproper Invocation of EIP-20 transferFrom
LQT-01SIllegible Numeric Value Representation
LMH-01SIllegible Numeric Value Representation
LCT-01SIllegible Numeric Value Representation
LCT-02SInexistent Sanitization of Input Addresses
LCF-01SIllegible Numeric Value Representation
MTG-01SInexistent Sanitization of Input Addresses
PFD-01SIllegible Numeric Value Representation
PFD-02SInexistent Visibility Specifiers
SPL-01SInexistent Event Emission
SPL-02SInexistent Sanitization of Input Address
SPL-03SImproper Invocations of EIP-20 transfer / transferFrom
TCR-01SInexistent Sanitization of Input Address
TMR-01SInexistent Visibility Specifiers