Trail of Bits
Audit Open Original ↗

Raft

Type

Security review

Client

Tempus

Date

2023-04

Domain

Blockchain

Effort

2 wks

Section

Ethereum/EVM

Trail of Bits's security review of Tempus (Apr 2023) identified 8 issues: 3 medium, 1 low, and 4 informational.

Findings · 8

  1. 1 Solidity compiler optimizations can be problematic Informational
  2. 2 Issues with Chainlink oracle’s return data validation Low
  3. 3 Incorrect constant for 1000-year periods Informational
  4. 4 Inconsistent use of safeTransfer for collateralToken Medium
  5. 5 Tokens may be trapped in an invalid position Informational
  6. 6 Price deviations between stETH and ETH may cause Tellor oracle to return an incorrect price Informational
  7. 7 Incorrect constant value for MAX_REDEMPTION_SPREAD Medium
  8. 8 Liquidation rewards are calculated incorrectly Medium

Findings extracted from the published report PDF. See the full report below for details and remediation.

Related