Trust Wallet (TWT)
Trust Wallet Token smart contract security audit, conducted by the Callisto Network Security Department during December 2021.
Trust Wallet Token Security Audit Report
Are Your Funds Safe?
Summary
Trust Wallet Token (TWT) smart contract security audit report performed by Callisto Security Audit Department.
Platform
Binance Smart Chain.
1. In scope
https://bscscan.com/address/0x4b0f1812e5df2a09796481ff14017e6005508003#code
2. Findings
In total, 1 issues were reported including:
0 high severity issues.
0 medium severity issue.
1 low severity issue.
In total, 0 notes were reported, including:
0 notes.
0 owner privileges.
No critical security issues were found.
2.1 Known vulnerabilities of ERC-20 token
Severity: low.
Description:
Lack of transaction handling mechanism issue. WARNING! This is a very common issue, and it already caused millions of dollars in losses for lots of token users! More details here.
Recommendation:
Add the following code to the transfer(_to address, ...) function:
3. Security practices
โ๏ธ Open-source contact.
๐๏ธ The contract should pass a bug bounty after the completion of the security audit.
โ๏ธ Public testing.
๐๏ธ Multisig owner account.
๐ Standard ERC20-related issues. โ NOT IMPLEMENTED. It is known that every contract can potentially receive an unintended ERC20-token deposit without the ability to reject it even if the contract is not intended to receive or hold tokens. As a result, it is recommended to implement a function that will allow extracting any arbitrary number of tokens from the contract.
4. Conclusion
The audited smart contract can be deployed. Only low severity issues were found during the audit.
It is recommended to adhere to the security practices described in pt. 4 of this report to ensure the contractโs operability and prevent any issues that are not directly related to the code of this smart contract.
๐ Read this report on the Callisto Network Blog.
Last updated
