Trail of Bits
Audit Open Original ↗

Dfinity SNS Phase 2

Type

Security review

Client

DFINITY

Date

2023-06

Domain

Crypto

Effort

2.5 wks

Section

Cryptography Reviews

Trail of Bits's security review of DFINITY (Jun 2023) identified 4 issues: 1 medium, 1 low, and 2 informational.

Findings · 4

  1. 1 Uneven distribution of stake across neurons may impact SNS governance Low
  2. 2 Wrong error message returned from new_sale_ticket in Adopted state Medium
  3. 3 Swap canister paging implementations panic on invalid ranges Informational
  4. 4 The NNS governance canister always warns about missing neurons if a token swap fails Informational

Findings extracted from the published report PDF. See the full report below for details and remediation.

Related