API3

Findings · 9

1. 1 Publish-subscribe protocol users are vulnerable to a denial of service High
2. 2 Solidity compiler optimizations can be problematic Informational
3. 3 Decisions to opt out of a monetization scheme are irreversible Medium
4. 4 Depositors can front-run request-blocking transactions Medium
5. 5 Incompatibility with non-standard ERC20 tokens Low
6. 6 Compromise of a single oracle enables limited control of the dAPI value High
7. 7 Project dependencies contain vulnerabilities Undetermined
8. 8 DapiServer beacon data is accessible to all users Low
9. 9 Misleading function name Informational

Findings extracted from the published report PDF. See the full report below for details and remediation.