Trail of Bits
Audit Open Original ↗

STON.fi DEX V2

Type

Security review

Client

STON.fi Holding Ltd

Date

2025-01

Domain

Blockchain

Effort

8 wks

Section

TON

Trail of Bits's security review of STON.fi Holding Ltd (Jan 2025) identified 5 issues: 1 high, 2 medium, 1 low, and 1 informational.

Findings · 5

  1. 1 An attacker can steal jettons from a user’s lp_account contract High
  2. 2 Protocol fees can be withdrawn by liquidity providers Medium
  3. 3 The math::int::sqrt function returns a result for a negative input Low
  4. 4 Risk of locking jettons in the router contract with cross-router swaps Medium
  5. 5 The convergence threshold in Weighted Stableswap Pool iterations is too large Informational

Findings extracted from the published report PDF. See the full report below for details and remediation.

Related