ZetaChain Solana Gateway

Findings · 9

1. 1 Rent payer account can be drained High
2. 2 Hash collision risks Undetermined
3. 3 update_authority does not use a two-step transfer process Informational
4. 4 Requirement that recipients be System-owned is unjustified Informational
5. 5 Receivers lack null address checks Informational
6. 6 Ineffective use of log messages Informational
7. 7 Bump seeds not stored in PDAs Informational
8. 8 Untested code Informational
9. 9 Tests may not fail as intended Informational

Findings extracted from the published report PDF. See the full report below for details and remediation.