Unable to find manual contract audit (e.g. Certik, PeckShield, Solidity...)
BYE.dayZero() (#534-536) uses a weak PRNG: "block.timestamp - (block.timestamp % (24 * 3600)) (#535)"
Do not use block.timestamp, now or blockhash as a source of randomness
Additional information: link
BYE.updatePrice() (#488-500) uses a dangerous strict equality:
- nowTime == zero (#491)
Don't use strict equality to determine if an account has enough Ether or tokens.
Additional information: link
Ownable.constructor(address)._addr (#182) lacks a zero-check on :
- _owner = _addr (#183)
Check that the address is not zero.
Additional information: link
Reentrancy in BYE.constructor() (#379-397):
External calls:
- uniswapV2Pair = IUniswapV2Factory(_uniswapV2Router.factory()).createPair(address(this),USDT) (#384-385)
State variables written after the call(s):
- _mint(msg.sender,50000000000 * 10 ** 18) (#394)
- _balances[account] = _balances[account] + amount (#310)
- _mint(msg.sender,50000000000 * 10 ** 18) (#394)
- _totalSupply = _totalSupply + amount (#309)
- isFree[msg.sender] = true (#396)
- lastTime = dayZero() (#392)
- nowTime = dayZero() (#391)
- pair_USDT = Ipair(uniswapV2Pair) (#386)
- uniswapV2Router = _uniswapV2Router (#389)
Apply the check-effects-interactions pattern.
Additional information: link
Reentrancy in BYE.constructor() (#379-397):
External calls:
- uniswapV2Pair = IUniswapV2Factory(_uniswapV2Router.factory()).createPair(address(this),USDT) (#384-385)
Event emitted after the call(s):
- Transfer(address(0),account,amount) (#311)
- _mint(msg.sender,50000000000 * 10 ** 18) (#394)
Apply the check-effects-interactions pattern.
Additional information: link
BYE.updatePrice() (#488-500) uses timestamp for comparisons
Dangerous comparisons:
- nowTime == zero (#491)
Avoid relying on block.timestamp.
Additional information: link
ERC20._beforeTokenTransfer(address,address,uint256) (#322) is never used and should be removed
SafeMath.mod(uint256,uint256) (#149-151) is never used and should be removed
SafeMath.mod(uint256,uint256,string) (#165-172) is never used and should be removed
Remove unused functions.
Additional information: link
Pragma version0.8.1 (#6) allows old versions
solc-0.8.1 is not recommended for deployment
Deploy with any of the following Solidity versions: 0.5.16 - 0.5.17, 0.6.11 - 0.6.12, 0.7.5 - 0.7.6 Use a simple pragma version that allows any of these versions. Consider using the latest version of Solidity for testing.
Additional information: link
Contract relationship (#7-14) is not in CapWords
Variable ERC20._balances (#226) is not in mixedCase
Parameter BYE.setFree(address,bool)._addr (#539) is not in mixedCase
Parameter BYE.setFree(address,bool)._bool (#540) is not in mixedCase
Parameter BYE.setBlack(address,bool)._addr (#546) is not in mixedCase
Parameter BYE.setBlack(address,bool)._bool (#547) is not in mixedCase
Variable BYE.pair_USDT (#350) is not in mixedCase
Variable BYE.USDT (#352) is not in mixedCase
Follow the Solidity naming convention.
Additional information: link
BYE.constructor() (#379-397) uses literals with too many digits:
- _mint(msg.sender,50000000000 * 10 ** 18) (#394)
BYE.slitherConstructorVariables() (#345-553) uses literals with too many digits:
- holdAddr = 0x0000000000000000000000000000000000000000 (#377)
Use: Ether suffix, Time suffix, or The scientific notation
Additional information: link
BYE.USDT (#352) should be constant
BYE.devAddr2 (#375) should be constant
BYE.devAddr3 (#376) should be constant
BYE.holdAddr (#377) should be constant
BYE.rate1 (#370) should be constant
BYE.rate2 (#371) should be constant
BYE.rate3 (#372) should be constant
BYE.rate4 (#373) should be constant
Add the constant attributes to state variables that never change.
Additional information: link
renounceOwnership() should be declared external:
- Ownable.renounceOwnership() (#209-212)
transferOwnership(address) should be declared external:
- Ownable.transferOwnership(address) (#218-222)
name() should be declared external:
- ERC20.name() (#245-247)
symbol() should be declared external:
- ERC20.symbol() (#249-251)
decimals() should be declared external:
- ERC20.decimals() (#253-255)
totalSupply() should be declared external:
- ERC20.totalSupply() (#257-259)
transfer(address,uint256) should be declared external:
- ERC20.transfer(address,uint256) (#265-268)
allowance(address,address) should be declared external:
- ERC20.allowance(address,address) (#270-272)
approve(address,uint256) should be declared external:
- ERC20.approve(address,uint256) (#274-277)
transferFrom(address,address,uint256) should be declared external:
- ERC20.transferFrom(address,address,uint256) (#279-283)
increaseAllowance(address,uint256) should be declared external:
- ERC20.increaseAllowance(address,uint256) (#285-288)
decreaseAllowance(address,uint256) should be declared external:
- ERC20.decreaseAllowance(address,uint256) (#290-293)
Use the external attribute for functions never called from the contract.
Additional information: link
Unable to find website, listings and other project-related information
Token is marked as scam (rug pull, honeypot, phishing, etc.)
Additional information: link
Young tokens have high risks of scam / price dump / death
Token has no active CoinGecko listing / rank
Token has no active CoinMarketCap listing / rank
Unable to find Telegram and Twitter accounts