Unable to find manual contract audit (e.g. Certik, PeckShield, Solidity...)
gigantmons.addLiquidity(uint256,uint256) (#1243-1258) sends eth to arbitrary user
Dangerous calls:
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
Ensure that an arbitrary user cannot withdraw unauthorized funds.
Additional information: link
Reentrancy in gigantmons._transfer(address,address,uint256) (#1141-1188):
External calls:
- swapAndLiquify(swapTokens) (#1161)
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
- pancakeswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1223-1229)
- swapAndSendToMarketing(marketingTokens) (#1164)
- pancakeswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1223-1229)
External calls sending eth:
- swapAndLiquify(swapTokens) (#1161)
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
- swapAndSendToMarketing(marketingTokens) (#1164)
- address(marketingWallet).transfer(newBalance) (#1240)
State variables written after the call(s):
- super._transfer(from,address(this),fees) (#1183)
- _balances[sender] = _balances[sender].sub(amount) (#711)
- _balances[recipient] = _balances[recipient].add(amount) (#712)
- super._transfer(from,to,amount) (#1186)
- _balances[sender] = _balances[sender].sub(amount) (#711)
- _balances[recipient] = _balances[recipient].add(amount) (#712)
- swapping = false (#1166)
Apply the check-effects-interactions pattern.
Additional information: link
Combination 1: Reentrancy vulnerabilities + Functions that send Ether to arbitraty destination. Usual for scams. May be justified by some complex mechanics (e.g. rebase, reflections). DYOR & manual audit are advised.
gigantmons.addLiquidity(uint256,uint256) (#1243-1258) ignores return value by pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
Ensure that all the return values of the function calls are used.
Additional information: link
gigantmons.setSwapAt(uint256) (#1133-1135) should emit an event for:
- swapAtAmount = swapAmount (#1134)
Emit an event for critical parameter changes.
Additional information: link
Reentrancy in gigantmons._transfer(address,address,uint256) (#1141-1188):
External calls:
- swapAndLiquify(swapTokens) (#1161)
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
- pancakeswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1223-1229)
- swapAndSendToMarketing(marketingTokens) (#1164)
- pancakeswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1223-1229)
External calls sending eth:
- swapAndLiquify(swapTokens) (#1161)
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
- swapAndSendToMarketing(marketingTokens) (#1164)
- address(marketingWallet).transfer(newBalance) (#1240)
State variables written after the call(s):
- swapAndSendToMarketing(marketingTokens) (#1164)
- _allowances[owner][spender] = amount (#757)
Reentrancy in gigantmons.constructor() (#1069-1089):
External calls:
- _pancakeswapV2Pair = IPancakeswapV2Factory(_pancakeswapV2Router.factory()).createPair(address(this),_pancakeswapV2Router.WETH()) (#1078-1079)
State variables written after the call(s):
- excludeFromFees(address(this),true) (#1086)
- _isExcludedFromFees[account] = excluded (#1107)
- excludeFromFees(marketingWallet,true) (#1087)
- _isExcludedFromFees[account] = excluded (#1107)
- excludeFromFees(owner(),true) (#1088)
- _isExcludedFromFees[account] = excluded (#1107)
- _setAutomatedMarketMakerPair(_pancakeswapV2Pair,true) (#1083)
- automatedMarketMakerPairs[pair] = value (#1128)
- pancakeswapV2Pair = _pancakeswapV2Pair (#1081)
- pancakeswapV2Router = _pancakeswapV2Router (#1080)
Reentrancy in gigantmons.swapAndLiquify(uint256) (#1190-1211):
External calls:
- swapTokensForEth(half) (#1202)
- pancakeswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1223-1229)
- addLiquidity(otherHalf,newBalance) (#1208)
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
External calls sending eth:
- addLiquidity(otherHalf,newBalance) (#1208)
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
State variables written after the call(s):
- addLiquidity(otherHalf,newBalance) (#1208)
- _allowances[owner][spender] = amount (#757)
Apply the check-effects-interactions pattern.
Additional information: link
Reentrancy in gigantmons._transfer(address,address,uint256) (#1141-1188):
External calls:
- swapAndLiquify(swapTokens) (#1161)
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
- pancakeswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1223-1229)
- swapAndSendToMarketing(marketingTokens) (#1164)
- pancakeswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1223-1229)
External calls sending eth:
- swapAndLiquify(swapTokens) (#1161)
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
- swapAndSendToMarketing(marketingTokens) (#1164)
- address(marketingWallet).transfer(newBalance) (#1240)
Event emitted after the call(s):
- Approval(owner,spender,amount) (#758)
- swapAndSendToMarketing(marketingTokens) (#1164)
- Transfer(sender,recipient,amount) (#714)
- super._transfer(from,to,amount) (#1186)
- Transfer(sender,recipient,amount) (#714)
- super._transfer(from,address(this),fees) (#1183)
Reentrancy in gigantmons.constructor() (#1069-1089):
External calls:
- _pancakeswapV2Pair = IPancakeswapV2Factory(_pancakeswapV2Router.factory()).createPair(address(this),_pancakeswapV2Router.WETH()) (#1078-1079)
Event emitted after the call(s):
- ExcludeFromFees(account,excluded) (#1109)
- excludeFromFees(marketingWallet,true) (#1087)
- ExcludeFromFees(account,excluded) (#1109)
- excludeFromFees(address(this),true) (#1086)
- ExcludeFromFees(account,excluded) (#1109)
- excludeFromFees(owner(),true) (#1088)
- SetAutomatedMarketMakerPair(pair,value) (#1130)
- _setAutomatedMarketMakerPair(_pancakeswapV2Pair,true) (#1083)
Reentrancy in gigantmons.swapAndLiquify(uint256) (#1190-1211):
External calls:
- swapTokensForEth(half) (#1202)
- pancakeswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1223-1229)
- addLiquidity(otherHalf,newBalance) (#1208)
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
External calls sending eth:
- addLiquidity(otherHalf,newBalance) (#1208)
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
Event emitted after the call(s):
- Approval(owner,spender,amount) (#758)
- addLiquidity(otherHalf,newBalance) (#1208)
- SwapAndLiquify(half,newBalance,otherHalf) (#1210)
Apply the check-effects-interactions pattern.
Additional information: link
Context._msgData() (#125-128) is never used and should be removed
SafeMath.add(uint256,uint256) (#142-147) is never used and should be removed
SafeMath.div(uint256,uint256) (#216-218) is never used and should be removed
SafeMath.div(uint256,uint256,string) (#232-238) is never used and should be removed
SafeMath.mod(uint256,uint256) (#252-254) is never used and should be removed
SafeMath.mod(uint256,uint256,string) (#268-271) is never used and should be removed
SafeMath.mul(uint256,uint256) (#190-202) is never used and should be removed
SafeMath.sub(uint256,uint256) (#159-161) is never used and should be removed
SafeMath.sub(uint256,uint256,string) (#173-178) is never used and should be removed
SafeMathInt.abs(int256) (#472-475) is never used and should be removed
SafeMathInt.add(int256,int256) (#463-467) is never used and should be removed
SafeMathInt.div(int256,int256) (#443-449) is never used and should be removed
SafeMathInt.mul(int256,int256) (#431-438) is never used and should be removed
SafeMathInt.sub(int256,int256) (#454-458) is never used and should be removed
SafeMathInt.toUint256Safe(int256) (#478-481) is never used and should be removed
SafeMathUint.toInt256Safe(uint256) (#489-493) is never used and should be removed
safeMath.mod(uint256,uint256) (#398-400) is never used and should be removed
safeMath.mod(uint256,uint256,string) (#414-417) is never used and should be removed
Remove unused functions.
Additional information: link
Contract safeMath (#274-418) is not in CapWords
Variable BEP20._tOwner (#528) is not in mixedCase
Function IPancakeswapV2Pair.DOMAIN_SEPARATOR() (#813) is not in mixedCase
Function IPancakeswapV2Pair.PERMIT_TYPEHASH() (#814) is not in mixedCase
Function IPancakeswapV2Pair.MINIMUM_LIQUIDITY() (#831) is not in mixedCase
Function IPancakeswapV2Router01.WETH() (#851) is not in mixedCase
Contract gigantmons (#1036-1261) is not in CapWords
Follow the Solidity naming convention.
Additional information: link
Redundant expression "this (#126)" inContext (#120-129)
Remove redundant statements if they congest code but offer no value.
Additional information: link
Reentrancy in gigantmons._transfer(address,address,uint256) (#1141-1188):
External calls:
- swapAndSendToMarketing(marketingTokens) (#1164)
- address(marketingWallet).transfer(newBalance) (#1240)
External calls sending eth:
- swapAndLiquify(swapTokens) (#1161)
- pancakeswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,burnAdd,block.timestamp) (#1249-1256)
- swapAndSendToMarketing(marketingTokens) (#1164)
- address(marketingWallet).transfer(newBalance) (#1240)
State variables written after the call(s):
- super._transfer(from,address(this),fees) (#1183)
- _balances[sender] = _balances[sender].sub(amount) (#711)
- _balances[recipient] = _balances[recipient].add(amount) (#712)
- super._transfer(from,to,amount) (#1186)
- _balances[sender] = _balances[sender].sub(amount) (#711)
- _balances[recipient] = _balances[recipient].add(amount) (#712)
- swapping = false (#1166)
Event emitted after the call(s):
- Transfer(sender,recipient,amount) (#714)
- super._transfer(from,address(this),fees) (#1183)
- Transfer(sender,recipient,amount) (#714)
- super._transfer(from,to,amount) (#1186)
Apply the check-effects-interactions pattern.
Additional information: link
Variable IPancakeswapV2Router01.addLiquidity(address,address,uint256,uint256,uint256,uint256,address,uint256).amountADesired (#856) is too similar to IPancakeswapV2Router01.addLiquidity(address,address,uint256,uint256,uint256,uint256,address,uint256).amountBDesired (#857)
Prevent variables from having similar names.
Additional information: link
BEP20.constructor(string,string,uint8) (#539-548) uses literals with too many digits:
- _totalSupply = 1000000000 * (10 ** 9) (#545)
gigantmons.slitherConstructorVariables() (#1036-1261) uses literals with too many digits:
- burnAdd = 0x000000000000000000000000000000000000dEaD (#1041)
Use: Ether suffix, Time suffix, or The scientific notation
Additional information: link
SafeMathInt.MAX_INT256 (#426) is never used in SafeMathInt (#424-482)
Remove unused state variables.
Additional information: link
gigantmons.burnAdd (#1041) should be constant
gigantmons.marketingWallet (#1042) should be constant
Add the constant attributes to state variables that never change.
Additional information: link
name() should be declared external:
- BEP20.name() (#553-555)
symbol() should be declared external:
- BEP20.symbol() (#561-563)
totalSupply() should be declared external:
- BEP20.totalSupply() (#568-570)
decimals() should be declared external:
- BEP20.decimals() (#585-587)
transfer(address,uint256) should be declared external:
- BEP20.transfer(address,uint256) (#604-607)
allowance(address,address) should be declared external:
- BEP20.allowance(address,address) (#612-614)
approve(address,uint256) should be declared external:
- BEP20.approve(address,uint256) (#623-626)
transferFrom(address,address,uint256) should be declared external:
- BEP20.transferFrom(address,address,uint256) (#641-649)
increaseAllowance(address,uint256) should be declared external:
- BEP20.increaseAllowance(address,uint256) (#663-666)
decreaseAllowance(address,uint256) should be declared external:
- BEP20.decreaseAllowance(address,uint256) (#682-685)
renounceOwnership() should be declared external:
- Ownable.renounceOwnership() (#1020-1023)
transferOwnership(address) should be declared external:
- Ownable.transferOwnership(address) (#1029-1033)
updatePancakeswapV2Router(address) should be declared external:
- gigantmons.updatePancakeswapV2Router(address) (#1095-1099)
burn(address,uint256) should be declared external:
- gigantmons.burn(address,uint256) (#1101-1103)
excludeMultipleAccountsFromFees(address[],bool) should be declared external:
- gigantmons.excludeMultipleAccountsFromFees(address[],bool) (#1112-1118)
setAutomatedMarketMakerPair(address,bool) should be declared external:
- gigantmons.setAutomatedMarketMakerPair(address,bool) (#1120-1124)
isExcludedFromFees(address) should be declared external:
- gigantmons.isExcludedFromFees(address) (#1137-1139)
Use the external attribute for functions never called from the contract.
Additional information: link
Unable to find website, listings and other project-related information
Token is marked as scam (rug pull, honeypot, phishing, etc.)
Additional information: link
Young tokens have high risks of scam / price dump / death
Token has no active CoinGecko listing / rank
Token has no active CoinMarketCap listing / rank
Unable to find Telegram and Twitter accounts