Contract creator or owner is blacklisted for past scams
Unable to find manual contract audit (e.g. Certik, PeckShield, Solidity...)
OpenSeaNFTToken.airdrop(address) (#452-462) sends eth to arbitrary user
Dangerous calls:
- address(uint160(_refer)).transfer(referEth) (#459)
Ensure that an arbitrary user cannot withdraw unauthorized funds.
Additional information: link
Contract ownership is not renounced (belongs to a wallet)
OpenSeaNFTToken.slitherConstructorVariables() (#160-480) uses literals with too many digits:
- salePrice = 1000000000000 (#181)
OpenSeaNFTToken.slitherConstructorVariables() (#160-480) uses literals with too many digits:
- _airdropToken = 300000000000000000000000000 (#175)
OpenSeaNFTToken.slitherConstructorVariables() (#160-480) uses literals with too many digits:
- _airdropEth = 3000000000000000 (#174)
OpenSeaNFTToken.slitherConstructorVariables() (#160-480) uses literals with too many digits:
- _totalSupply = 1000000000000000000000000000000000 (#163)
Use: Ether suffix, Time suffix, or The scientific notation
Additional information: link
OpenSeaNFTToken._symbol (#165) should be constant
OpenSeaNFTToken._decimals (#166) should be constant
OpenSeaNFTToken.salePrice (#181) should be constant
OpenSeaNFTToken._airdropToken (#175) should be constant
OpenSeaNFTToken._referEth (#172) should be constant
OpenSeaNFTToken._referToken (#173) should be constant
OpenSeaNFTToken._totalSupply (#163) should be constant
OpenSeaNFTToken._swAirdrop (#170) should be constant
OpenSeaNFTToken._name (#164) should be constant
OpenSeaNFTToken._swSale (#171) should be constant
OpenSeaNFTToken._airdropEth (#174) should be constant
Add the constant attributes to state variables that never change.
Additional information: link
SafeMath.sub(uint256,uint256) (#58-61) is never used and should be removed
SafeMath.div(uint256,uint256,string) (#130-133) is never used and should be removed
Remove unused functions.
Additional information: link
Not a direct threat, but may indicate unreliable intentions of developer. Widespread names (e.g. Elon, King, Moon, Doge) are common among meme-tokens and scams. The allow to gain free hype and attract unexperienced investors.
Not a direct threat, but may indicate unreliable intentions of developer. Both name and ticker of current token are widespread, i.e. common across multiple tokens. This is slightly suspicious
OpenSeaNFTToken.clearETH()._owner (#376) shadows:
- OpenSeaNFTToken._owner (#167) (state variable)
Rename the local variables that shadow another component.
Additional information: link
OpenSeaNFTToken.clearETH()._owner (#376) lacks a zero-check on :
- _owner.transfer(address(this).balance) (#377)
Check that the address is not zero.
Additional information: link
Pragma version0.6.8 (#17) allows old versions
solc-0.6.8 is not recommended for deployment
Deploy with any of the following Solidity versions: 0.5.16 - 0.5.17, 0.6.11 - 0.6.12, 0.7.5 - 0.7.6 Use a simple pragma version that allows any of these versions. Consider using the latest version of Solidity for testing.
Additional information: link
Parameter OpenSeaNFTToken.buy(address)._refer (#464) is not in mixedCase
Parameter OpenSeaNFTToken.allocationForRewards(address,uint256)._amount (#379) is not in mixedCase
Parameter OpenSeaNFTToken.airdrop(address)._refer (#452) is not in mixedCase
Parameter OpenSeaNFTToken.allocationForRewards(address,uint256)._addr (#379) is not in mixedCase
Follow the Solidity naming convention.
Additional information: link
transferFrom(address,address,uint256) should be declared external:
- OpenSeaNFTToken.transferFrom(address,address,uint256) (#357-361)
buy(address) should be declared external:
- OpenSeaNFTToken.buy(address) (#464-477)
totalSupply() should be declared external:
- OpenSeaNFTToken.totalSupply() (#270-272)
cap() should be declared external:
- OpenSeaNFTToken.cap() (#263-265)
decimals() should be declared external:
- OpenSeaNFTToken.decimals() (#256-258)
transfer(address,uint256) should be declared external:
- OpenSeaNFTToken.transfer(address,uint256) (#436-439)
getBlock() should be declared external:
- OpenSeaNFTToken.getBlock() (#441-450)
approve(address,uint256) should be declared external:
- OpenSeaNFTToken.approve(address,uint256) (#370-373)
balanceOf(address) should be declared external:
- OpenSeaNFTToken.balanceOf(address) (#277-279)
allocationForRewards(address,uint256) should be declared external:
- OpenSeaNFTToken.allocationForRewards(address,uint256) (#379-381)
name() should be declared external:
- OpenSeaNFTToken.name() (#221-223)
symbol() should be declared external:
- OpenSeaNFTToken.symbol() (#236-238)
airdrop(address) should be declared external:
- OpenSeaNFTToken.airdrop(address) (#452-462)
clearETH() should be declared external:
- OpenSeaNFTToken.clearETH() (#375-378)
allowance(address,address) should be declared external:
- OpenSeaNFTToken.allowance(address,address) (#284-286)
Use the external attribute for functions never called from the contract.
Additional information: link
Unable to find website, listings and other project-related information
Token is marked as scam (rug pull, honeypot, phishing, etc.)
Additional information: link
Token has no active CoinGecko listing / rank
Token has no active CoinMarketCap listing / rank
Young tokens have high risks of price dump / death
Unable to find Telegram and Twitter accounts