The Progress Of CubFinance On CertiK Security Leaderboard
In case you want to keep tabs on how the CertiK audits are coming along, you can check this webpage out:
https://www.certik.org/projects/cubfinance
All the security audit reports can be found there.
This is from the CertiK website concerning CubFinance.
You can also read an audit report published on March 30 there is a link to on the webpage.
What I didn't know about smart contracts on Ethereum or Binance Smart Chain is that they're not necessarily immutable once committed. Instead they can have an "owner".
It says this in the report:
Does that mean that the owner of the Masterchef contract is now another smart contract?
I don't know much about smart contracts except that they're supposed to be immutable. Once sent to an address, the chain's virtual machine executes them instruction by instruction like any transactions with no possibility of changing them.
How do you fix bugs, if that is the case? What exactly does owning a contract mean? That if a change is published to a contract by its owner, the chain will then take the changes in to account when executing it?
Why not always work with an auditing firm prior to launching any contracts so as to eliminate vulnerabilities and bugs as early as possible?
Posted Using LeoFinance Beta
I think what it means is that the contract that CubFinance used to establish the platform.
Smart Contracts are open source so they can be copied. Masterchef is probably the name of the one that was forked.
Just a guess though.
Posted Using LeoFinance Beta
Yes, the entire platform is a fork of PancakeSwap.
Posted Using LeoFinance Beta
So I guess this means that the "safety assessment" is the reason that the audit isn't "completed"...since there are "0" safety and hazard evaluations? I'm just guessing. Obviously, if there was nothing left to do here the Cubs Docs would be updated, right? It's nice to see that it's being actively looked at. Just wish it would become "complete" so we could put it in the rearview and also use it as a positive talking point. That said, the fact that it is obviously not a walk in the park to obtain one of these DOES potentially give it more value when it is done.
Posted Using LeoFinance Beta
These were the findings of the report. There was one "critical" issue that hadn't been resolved, yet, when the report was published a week ago.
It doesn't look too complicated to fix as per their recommendation. They just recommend that each address have a truth value attached to it that tells whether it has been used before.
I have no idea what is being worked on right now as there hasn't been any communication from the team for a while.
Posted Using LeoFinance Beta
Good find! We'll have to see what the devs say when they finally update us on everything.
Posted Using LeoFinance Beta