Unable to find manual contract audit (e.g. Certik, PeckShield, Solidity...)
Reentrancy in Token._transfer(address,address,uint256) (#1232-1308):
External calls:
- swapAndLiquify(contractTokenBalance) (#1295)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1342-1348)
External calls sending eth:
- swapAndLiquify(contractTokenBalance) (#1295)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
State variables written after the call(s):
- _tokenTransfer(from,to,amount,takeFee) (#1307)
- _balances[address(this)] = _balances[address(this)].add(tLiquidity) (#1212)
- _balances[_burn] = _balances[_burn].add(tBurn) (#1216)
- _balances[_market] = _balances[_market].add(tMarket) (#1208)
- _balances[sender] = _balances[sender].sub(amount) (#1381)
- _balances[recipient] = _balances[recipient].add(tTransferAmount) (#1382)
Apply the check-effects-interactions pattern.
Additional information: link
Token.addLiquidity(uint256,uint256) (#1351-1364) ignores return value by uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
Ensure that all the return values of the function calls are used.
Additional information: link
Token.allowance(address,address).owner (#1003) shadows:
- Ownable.owner() (#487-489) (function)
Token._approve(address,address,uint256).owner (#1221) shadows:
- Ownable.owner() (#487-489) (function)
Rename the local variables that shadow another component.
Additional information: link
Token.setLiquidityFeePercent(uint256) (#1097-1100) should emit an event for:
- _liquidityFee = liquidityFee (#1098)
- _previousLiquidityFee = _liquidityFee (#1099)
Token.setMarketFeePercent(uint256) (#1102-1105) should emit an event for:
- _marketFee = marketFee (#1103)
- _previousMarketFee = _marketFee (#1104)
Token.setBurnFeePercent(uint256) (#1115-1118) should emit an event for:
- _burnFee = burnFee (#1116)
- _previousBurnFee = _burnFee (#1117)
Token.setMaxTxAmount(uint256) (#1120-1122) should emit an event for:
- _maxTxAmount = maxTxAmount (#1121)
Token.setMaxHavAmount(uint256) (#1124-1126) should emit an event for:
- _maxHavAmount = maxHavAmount (#1125)
Token.setNumTokensSellToAddToLiquidity(uint256) (#1133-1135) should emit an event for:
- numTokensSellToAddToLiquidity = num (#1134)
Emit an event for critical parameter changes.
Additional information: link
Token.setMarketAddress(address).market (#1107) lacks a zero-check on :
- _market = market (#1108)
Token.setLiquifyAddress(address).liquify (#1111) lacks a zero-check on :
- _liquify = liquify (#1112)
Check that the address is not zero.
Additional information: link
Token.swapTokensForEth(uint256) (#1333-1349) has external calls inside a loop: path[1] = uniswapV2Router.WETH() (#1337)
Token.swapTokensForEth(uint256) (#1333-1349) has external calls inside a loop: uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1342-1348)
Token.addLiquidity(uint256,uint256) (#1351-1364) has external calls inside a loop: uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
Favor pull over push strategy for external calls.
Additional information: link
Reentrancy in Token._transfer(address,address,uint256) (#1232-1308):
External calls:
- swapAndLiquify(contractTokenBalance) (#1295)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1342-1348)
External calls sending eth:
- swapAndLiquify(contractTokenBalance) (#1295)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
State variables written after the call(s):
- _tokenTransfer(from,to,amount,takeFee) (#1307)
- _burnFee = _previousBurnFee (#1177)
- _burnFee = 0 (#1171)
- _tokenTransfer(from,to,amount,takeFee) (#1307)
- _liquidityFee = _previousLiquidityFee (#1178)
- _liquidityFee = 0 (#1172)
- _tokenTransfer(from,to,amount,takeFee) (#1307)
- _marketFee = _previousMarketFee (#1176)
- _marketFee = 0 (#1170)
- _tokenTransfer(from,to,amount,takeFee) (#1307)
- _previousBurnFee = _burnFee (#1167)
- _tokenTransfer(from,to,amount,takeFee) (#1307)
- _previousLiquidityFee = _liquidityFee (#1168)
- _tokenTransfer(from,to,amount,takeFee) (#1307)
- _previousMarketFee = _marketFee (#1166)
Reentrancy in Token.constructor() (#945-972):
External calls:
- uniswapV2Pair = IUniswapV2Factory(_uniswapV2Router.factory()).createPair(address(this),_uniswapV2Router.WETH()) (#952-953)
State variables written after the call(s):
- _isExcludedFromFee[owner()] = true (#962)
- _isExcludedFromFee[address(this)] = true (#963)
- _isExcludedFromFee[_market] = true (#964)
- _isExcludedFromFee[_liquify] = true (#965)
- _liquify = owner() (#961)
- automatedMarketMakerPairs[uniswapV2Pair] = true (#958)
- uniswapV2Router = _uniswapV2Router (#956)
Reentrancy in Token.swapAndLiquify(uint256) (#1310-1331):
External calls:
- swapTokensForEth(half) (#1322)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1342-1348)
- addLiquidity(otherHalf,newBalance) (#1328)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
External calls sending eth:
- addLiquidity(otherHalf,newBalance) (#1328)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
State variables written after the call(s):
- addLiquidity(otherHalf,newBalance) (#1328)
- _allowances[owner][spender] = amount (#1228)
Reentrancy in Token.transferFrom(address,address,uint256) (#1021-1036):
External calls:
- _transfer(sender,recipient,amount) (#1026)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1342-1348)
External calls sending eth:
- _transfer(sender,recipient,amount) (#1026)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
State variables written after the call(s):
- _approve(sender,_msgSender(),_allowances[sender][_msgSender()].sub(amount,ERC20: transfer amount exceeds allowance)) (#1027-1034)
- _allowances[owner][spender] = amount (#1228)
Apply the check-effects-interactions pattern.
Additional information: link
Reentrancy in Token._transfer(address,address,uint256) (#1232-1308):
External calls:
- swapAndLiquify(contractTokenBalance) (#1295)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1342-1348)
External calls sending eth:
- swapAndLiquify(contractTokenBalance) (#1295)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
Event emitted after the call(s):
- Transfer(sender,_burn,tBurn) (#1217)
- _tokenTransfer(from,to,amount,takeFee) (#1307)
- Transfer(sender,recipient,tTransferAmount) (#1386)
- _tokenTransfer(from,to,amount,takeFee) (#1307)
Reentrancy in Token.constructor() (#945-972):
External calls:
- uniswapV2Pair = IUniswapV2Factory(_uniswapV2Router.factory()).createPair(address(this),_uniswapV2Router.WETH()) (#952-953)
Event emitted after the call(s):
- Transfer(address(0x80D6a83b33cF4F9E09f404A866219ed328D2278E),_msgSender(),_tTotal) (#967-971)
Reentrancy in Token.swapAndLiquify(uint256) (#1310-1331):
External calls:
- swapTokensForEth(half) (#1322)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1342-1348)
- addLiquidity(otherHalf,newBalance) (#1328)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
External calls sending eth:
- addLiquidity(otherHalf,newBalance) (#1328)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
Event emitted after the call(s):
- Approval(owner,spender,amount) (#1229)
- addLiquidity(otherHalf,newBalance) (#1328)
- SwapAndLiquify(half,newBalance,otherHalf) (#1330)
Reentrancy in Token.transferFrom(address,address,uint256) (#1021-1036):
External calls:
- _transfer(sender,recipient,amount) (#1026)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1342-1348)
External calls sending eth:
- _transfer(sender,recipient,amount) (#1026)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1356-1363)
Event emitted after the call(s):
- Approval(owner,spender,amount) (#1229)
- _approve(sender,_msgSender(),_allowances[sender][_msgSender()].sub(amount,ERC20: transfer amount exceeds allowance)) (#1027-1034)
Apply the check-effects-interactions pattern.
Additional information: link
Ownable.unlock() (#537-545) uses timestamp for comparisons
Dangerous comparisons:
- require(bool,string)(block.timestamp > _lockTime,Contract is locked until 7 days) (#542)
Token.setStartTimeForSwap() (#1137-1141) uses timestamp for comparisons
Dangerous comparisons:
- _startTimeForSwap == 0 (#1138)
Token._transfer(address,address,uint256) (#1232-1308) uses timestamp for comparisons
Dangerous comparisons:
- _startTimeForSwap == 0 && ! _isExcludedFromFee[from] && ! _isExcludedFromFee[to] (#1261-1263)
Avoid relying on block.timestamp.
Additional information: link
Address.isContract(address) (#296-307) uses assembly
- INLINE ASM (#303-305)
Address._functionCallWithValue(address,bytes,uint256,string) (#422-450) uses assembly
- INLINE ASM (#442-445)
Do not use evm assembly.
Additional information: link
Token.lockTheSwap() (#939-943) has costly operations inside a loop:
- inSwapAndLiquify = true (#940)
Token.lockTheSwap() (#939-943) has costly operations inside a loop:
- inSwapAndLiquify = false (#942)
Token.removeAllFee() (#1163-1173) has costly operations inside a loop:
- _previousMarketFee = _marketFee (#1166)
Token.removeAllFee() (#1163-1173) has costly operations inside a loop:
- _previousBurnFee = _burnFee (#1167)
Token.removeAllFee() (#1163-1173) has costly operations inside a loop:
- _previousLiquidityFee = _liquidityFee (#1168)
Token.removeAllFee() (#1163-1173) has costly operations inside a loop:
- _marketFee = 0 (#1170)
Token.removeAllFee() (#1163-1173) has costly operations inside a loop:
- _burnFee = 0 (#1171)
Token.removeAllFee() (#1163-1173) has costly operations inside a loop:
- _liquidityFee = 0 (#1172)
Token.restoreAllFee() (#1175-1179) has costly operations inside a loop:
- _marketFee = _previousMarketFee (#1176)
Token.restoreAllFee() (#1175-1179) has costly operations inside a loop:
- _burnFee = _previousBurnFee (#1177)
Token.restoreAllFee() (#1175-1179) has costly operations inside a loop:
- _liquidityFee = _previousLiquidityFee (#1178)
Use a local variable to hold the loop computation result.
Additional information: link
Address._functionCallWithValue(address,bytes,uint256,string) (#422-450) is never used and should be removed
Address.functionCall(address,bytes) (#357-362) is never used and should be removed
Address.functionCall(address,bytes,string) (#370-376) is never used and should be removed
Address.functionCallWithValue(address,bytes,uint256) (#389-401) is never used and should be removed
Address.functionCallWithValue(address,bytes,uint256,string) (#409-420) is never used and should be removed
Address.isContract(address) (#296-307) is never used and should be removed
Address.sendValue(address,uint256) (#325-337) is never used and should be removed
Context._msgData() (#269-272) is never used and should be removed
SafeMath.mod(uint256,uint256) (#238-240) is never used and should be removed
SafeMath.mod(uint256,uint256,string) (#254-261) is never used and should be removed
Remove unused functions.
Additional information: link
Token._previousMarketFee (#908) is set pre-construction with a non-constant function or state variable:
- _marketFee
Token._previousLiquidityFee (#911) is set pre-construction with a non-constant function or state variable:
- _liquidityFee
Token._previousBurnFee (#914) is set pre-construction with a non-constant function or state variable:
- _burnFee
Remove any initialization of state variables via non-constant state variables or function calls. If variables must be set upon contract deployment, locate initialization in the constructor instead.
Additional information: link
Low level call in Address.sendValue(address,uint256) (#325-337):
- (success) = recipient.call{value: amount}() (#332)
Low level call in Address._functionCallWithValue(address,bytes,uint256,string) (#422-450):
- (success,returndata) = target.call{value: weiValue}(data) (#431-433)
Avoid low-level calls. Check the call success. If the call is meant for a contract, check for code existence
Additional information: link
Function IUniswapV2Pair.DOMAIN_SEPARATOR() (#611) is not in mixedCase
Function IUniswapV2Pair.PERMIT_TYPEHASH() (#613) is not in mixedCase
Function IUniswapV2Pair.MINIMUM_LIQUIDITY() (#644) is not in mixedCase
Function IUniswapV2Router.WETH() (#690) is not in mixedCase
Parameter Token.setSwapAndLiquifyEnabled(bool)._enabled (#1128) is not in mixedCase
Parameter Token.calculateLiquidityFee(uint256)._amount (#1143) is not in mixedCase
Parameter Token.calculateMarketFee(uint256)._amount (#1151) is not in mixedCase
Parameter Token.calculateBurnFee(uint256)._amount (#1159) is not in mixedCase
Function Token._getValues(uint256) (#1188-1205) is not in mixedCase
Variable Token._marketFee (#907) is not in mixedCase
Variable Token._liquidityFee (#910) is not in mixedCase
Variable Token._burnFee (#913) is not in mixedCase
Variable Token._startTimeForSwap (#916) is not in mixedCase
Variable Token._maxTxAmount (#924) is not in mixedCase
Variable Token._maxHavAmount (#925) is not in mixedCase
Variable Token._burn (#928) is not in mixedCase
Variable Token._market (#929) is not in mixedCase
Variable Token._liquify (#930) is not in mixedCase
Follow the Solidity naming convention.
Additional information: link
Redundant expression "this (#270)" inContext (#264-273)
Remove redundant statements if they congest code but offer no value.
Additional information: link
Variable IUniswapV2Router.addLiquidity(address,address,uint256,uint256,uint256,uint256,address,uint256).amountADesired (#695) is too similar to IUniswapV2Router.addLiquidity(address,address,uint256,uint256,uint256,uint256,address,uint256).amountBDesired (#696)
Prevent variables from having similar names.
Additional information: link
Token.slitherConstructorVariables() (#891-1391) uses literals with too many digits:
- _burn = 0x000000000000000000000000000000000000dEaD (#928)
Use: Ether suffix, Time suffix, or The scientific notation
Additional information: link
Token.MAX (#900) is never used in Token (#891-1391)
Remove unused state variables.
Additional information: link
Token._burn (#928) should be constant
Token._decimals (#905) should be constant
Token._name (#903) should be constant
Token._symbol (#904) should be constant
Token._tTotal (#901) should be constant
Add the constant attributes to state variables that never change.
Additional information: link
renounceOwnership() should be declared external:
- Ownable.renounceOwnership() (#506-509)
transferOwnership(address) should be declared external:
- Ownable.transferOwnership(address) (#515-522)
geUnlockTime() should be declared external:
- Ownable.geUnlockTime() (#524-526)
lock(uint256) should be declared external:
- Ownable.lock(uint256) (#529-534)
unlock() should be declared external:
- Ownable.unlock() (#537-545)
name() should be declared external:
- Token.name() (#974-976)
symbol() should be declared external:
- Token.symbol() (#978-980)
decimals() should be declared external:
- Token.decimals() (#982-984)
totalSupply() should be declared external:
- Token.totalSupply() (#986-988)
transfer(address,uint256) should be declared external:
- Token.transfer(address,uint256) (#994-1001)
allowance(address,address) should be declared external:
- Token.allowance(address,address) (#1003-1010)
approve(address,uint256) should be declared external:
- Token.approve(address,uint256) (#1012-1019)
transferFrom(address,address,uint256) should be declared external:
- Token.transferFrom(address,address,uint256) (#1021-1036)
increaseAllowance(address,uint256) should be declared external:
- Token.increaseAllowance(address,uint256) (#1038-1049)
decreaseAllowance(address,uint256) should be declared external:
- Token.decreaseAllowance(address,uint256) (#1051-1065)
excludeFromFee(address) should be declared external:
- Token.excludeFromFee(address) (#1067-1069)
includeInFee(address) should be declared external:
- Token.includeInFee(address) (#1071-1073)
excludeMultiFromFee(address[],bool) should be declared external:
- Token.excludeMultiFromFee(address[],bool) (#1075-1082)
setMarketAddress(address) should be declared external:
- Token.setMarketAddress(address) (#1107-1109)
setLiquifyAddress(address) should be declared external:
- Token.setLiquifyAddress(address) (#1111-1113)
setSwapAndLiquifyEnabled(bool) should be declared external:
- Token.setSwapAndLiquifyEnabled(bool) (#1128-1131)
setNumTokensSellToAddToLiquidity(uint256) should be declared external:
- Token.setNumTokensSellToAddToLiquidity(uint256) (#1133-1135)
isExcludedFromFee(address) should be declared external:
- Token.isExcludedFromFee(address) (#1181-1183)
Use the external attribute for functions never called from the contract.
Additional information: link
Unable to find website, listings and other project-related information
Young tokens have high risks of scam / price dump / death
Token has no active CoinGecko listing / rank
Token has no active CoinMarketCap listing / rank
Unable to find Telegram and Twitter accounts