Trail of Bits
Audit Open Original ↗

Solang Solana Library

Type

Security review

Client

Solana Labs

Date

2023-07

Domain

Blockchain

Effort

1 wk

Section

Solana

Trail of Bits's security review of Solana Labs (Jul 2023) identified 5 issues: 2 medium, and 3 informational.

Findings · 5

  1. 1 spl_token library uses old Token Program’s ID but supports new instructions Informational
  2. 2 Insufficient documentation Informational
  3. 3 spl_token incorrectly sets some accounts to writable Medium
  4. 4 spl_token incorrectly decodes the close_authority field of the token account Medium
  5. 5 Lack of tests Informational

Findings extracted from the published report PDF. See the full report below for details and remediation.

Related