Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: [audit] ZNS-12 Missing input validation #65

Merged
merged 4 commits into from
Oct 31, 2023
Merged

fix: [audit] ZNS-12 Missing input validation #65

merged 4 commits into from
Oct 31, 2023

Conversation

Whytecrowe
Copy link
Collaborator

No description provided.

@codecov
Copy link

codecov bot commented Oct 25, 2023
edited
Loading

Codecov Report

Merging #65 (8390856) into development (4824679) will increase coverage by 0.00%.
The diff coverage is 100.00%.

Additional details and impacted files 
@@             Coverage Diff              @@
##           development      #65   +/-   ##
============================================
  Coverage        99.79%   99.79%           
============================================
  Files               11       11           
  Lines              477      480    +3     
  Branches           116      119    +3     
============================================
+ Hits               476      479    +3     
  Misses               1        1

JamesEarle
JamesEarle reviewed Oct 30, 2023
View reviewed changes
test/ZNSAccessController.test.ts
governorAddresses: [ ethers.constants.AddressZero ],
adminAddresses: [ ethers.constants.AddressZero ],
})
).to.be.revertedWith("ZNSAccessController: Can't grant role to zero address");
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Consider adding the new errors to the "errors" file and reference them as constants like we have been doing for all the others

JamesEarle
JamesEarle reviewed Oct 30, 2023
View reviewed changes
test/ZNSCurvePricer.test.ts
const newFeePerc = BigNumber.from(10001);
await expect(
zns.curvePricer.connect(user).setFeePercentage(domainHash, newFeePerc)
).to.be.revertedWith("ZNSCurvePricer: feePercentage cannot be greater than PERCENTAGE_BASIS");
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same as other comment regarding storing errors as constants for referencing

@openzeppelin-code OpenZeppelin Code
Copy link

fix: [audit] ZNS-12 Missing input validation

Generated at commit: 8390856a5fac2f503e4c4e544a666f00acacf915

🚨 Vulnerabilities Summary

Process Issues Results
Contract Inspector note
low
Total		 21
4
25
Dependency Checker Total 0

For more details view the full report in OpenZeppelin Code

@Whytecrowe Whytecrowe merged commit e2c258b into development Oct 31, 2023
2 checks passed
@zero-devops
Copy link
Collaborator

🎉 This PR is included in version 0.6.4 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@JamesEarle JamesEarle JamesEarle approved these changes

Assignees
No one assigned
Labels
released
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@Whytecrowe @zero-devops @JamesEarle