Unable to find manual contract audit (e.g. Certik, PeckShield, Solidity...)
Reentrancy in PolarBear._transfer(address,address,uint256) (#1165-1195):
External calls:
- swapAndLiquify(contractTokenBalance) (#1190)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1229-1235)
External calls sending eth:
- swapAndLiquify(contractTokenBalance) (#1190)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
State variables written after the call(s):
- _tokenTransfer(from,to,amount) (#1194)
- _rOwned[address(this)] = _rOwned[address(this)].add(rLiquidity) (#1108)
- _rOwned[sender] = _rOwned[sender].sub(vs.rAmount) (#1283)
- _rOwned[sender] = _rOwned[sender].sub(vs.rAmount) (#1290)
- _rOwned[recipient] = _rOwned[recipient].add(vs.rTransferAmount) (#1284)
- _rOwned[sender] = _rOwned[sender].sub(vs.rAmount) (#1299)
- _rOwned[sender] = _rOwned[sender].sub(vs.rAmount) (#1307)
- _rOwned[recipient] = _rOwned[recipient].add(vs.rTransferAmount) (#1292)
- _rOwned[recipient] = _rOwned[recipient].add(vs.rTransferAmount) (#1300)
- _rOwned[charityWallet] = _rOwned[charityWallet].add(rCharity) (#1046)
- _rOwned[recipient] = _rOwned[recipient].add(vs.rTransferAmount) (#1309)
- _tokenTransfer(from,to,amount) (#1194)
- _rTotal = _rTotal.sub(rFee).sub(rBurn) (#1041)
- _tokenTransfer(from,to,amount) (#1194)
- _tOwned[sender] = _tOwned[sender].sub(tAmount) (#1298)
- _tOwned[sender] = _tOwned[sender].sub(tAmount) (#1306)
- _tOwned[recipient] = _tOwned[recipient].add(vs.tTransferAmount) (#1291)
- _tOwned[address(this)] = _tOwned[address(this)].add(tLiquidity) (#1110)
- _tOwned[recipient] = _tOwned[recipient].add(vs.tTransferAmount) (#1308)
- _tOwned[charityWallet] = _tOwned[charityWallet].add(tCharity) (#1048)
- _tokenTransfer(from,to,amount) (#1194)
- _tTotal = _tTotal.sub(tBurn) (#1043)
Apply the check-effects-interactions pattern.
Additional information: link
Contract ticker (Polar Bear) contains non-alphanumeric characters.
Not a direct threat, but may indicate unreliable intentions of developer. Non-alphanumeric chars (,.;!#*&") are extremely rare among low risk tokens.
PolarBear.addLiquidity(uint256,uint256) (#1238-1251) ignores return value by uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
Ensure that all the return values of the function calls are used.
Additional information: link
PolarBear.allowance(address,address).owner (#945) shadows:
- Ownable.owner() (#521-523) (function)
PolarBear._approve(address,address,uint256).owner (#1156) shadows:
- Ownable.owner() (#521-523) (function)
Rename the local variables that shadow another component.
Additional information: link
PolarBear.mintToken(address,uint256) (#938-943) should emit an event for:
- _tTotal += amount (#941)
PolarBear.setMaxTxPercent(uint256) (#1350-1355) should emit an event for:
- _maxTxAmount = _tTotal.mul(maxTxPercent).div(10 ** 2) (#1352-1354)
Emit an event for critical parameter changes.
Additional information: link
PolarBear.setBoxerCharityWallet(address).newWallet (#1346) lacks a zero-check on :
- charityWallet = newWallet (#1347)
Check that the address is not zero.
Additional information: link
Reentrancy in PolarBear._transfer(address,address,uint256) (#1165-1195):
External calls:
- swapAndLiquify(contractTokenBalance) (#1190)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1229-1235)
External calls sending eth:
- swapAndLiquify(contractTokenBalance) (#1190)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
State variables written after the call(s):
- _tokenTransfer(from,to,amount) (#1194)
- _burnFee = 0 (#1140)
- _burnFee = 1 (#1148)
- _tokenTransfer(from,to,amount) (#1194)
- _charityFee = 1 (#1147)
- _charityFee = 0 (#1141)
- _tokenTransfer(from,to,amount) (#1194)
- _liquidityFee = 1 (#1146)
- _liquidityFee = 0 (#1139)
- _tokenTransfer(from,to,amount) (#1194)
- _tBurnTotal = _tBurnTotal.add(tBurn) (#1044)
- _tokenTransfer(from,to,amount) (#1194)
- _tFeeTotal = _tFeeTotal.add(tFee) (#1042)
- _tokenTransfer(from,to,amount) (#1194)
- _taxFee = 1 (#1145)
- _taxFee = 0 (#1138)
Reentrancy in PolarBear.constructor() (#888-904):
External calls:
- uniswapV2Pair = IUniswapV2Factory(_uniswapV2Router.factory()).createPair(address(this),_uniswapV2Router.WETH()) (#893-894)
State variables written after the call(s):
- _isExcludedFromFee[owner()] = true (#900)
- _isExcludedFromFee[address(this)] = true (#901)
- uniswapV2Router = _uniswapV2Router (#897)
Reentrancy in PolarBear.swapAndLiquify(uint256) (#1197-1218):
External calls:
- swapTokensForEth(half) (#1209)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1229-1235)
- addLiquidity(otherHalf,newBalance) (#1215)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
External calls sending eth:
- addLiquidity(otherHalf,newBalance) (#1215)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
State variables written after the call(s):
- addLiquidity(otherHalf,newBalance) (#1215)
- _allowances[owner][spender] = amount (#1161)
Reentrancy in PolarBear.transferFrom(address,address,uint256) (#955-961):
External calls:
- _transfer(sender,recipient,amount) (#958)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1229-1235)
External calls sending eth:
- _transfer(sender,recipient,amount) (#958)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
State variables written after the call(s):
- _approve(sender,_msgSender(),_allowances[sender][_msgSender()].sub(amount,ERC20: transfer amount exceeds allowance)) (#959)
- _allowances[owner][spender] = amount (#1161)
Apply the check-effects-interactions pattern.
Additional information: link
Reentrancy in PolarBear._transfer(address,address,uint256) (#1165-1195):
External calls:
- swapAndLiquify(contractTokenBalance) (#1190)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1229-1235)
External calls sending eth:
- swapAndLiquify(contractTokenBalance) (#1190)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
Event emitted after the call(s):
- Transfer(sender,recipient,vs.tTransferAmount) (#1285)
- _tokenTransfer(from,to,amount) (#1194)
- Transfer(sender,recipient,vs.tTransferAmount) (#1301)
- _tokenTransfer(from,to,amount) (#1194)
- Transfer(sender,recipient,vs.tTransferAmount) (#1293)
- _tokenTransfer(from,to,amount) (#1194)
- Transfer(sender,recipient,vs.tTransferAmount) (#1310)
- _tokenTransfer(from,to,amount) (#1194)
Reentrancy in PolarBear.constructor() (#888-904):
External calls:
- uniswapV2Pair = IUniswapV2Factory(_uniswapV2Router.factory()).createPair(address(this),_uniswapV2Router.WETH()) (#893-894)
Event emitted after the call(s):
- Transfer(address(0),_msgSender(),_tTotal) (#903)
Reentrancy in PolarBear.swapAndLiquify(uint256) (#1197-1218):
External calls:
- swapTokensForEth(half) (#1209)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1229-1235)
- addLiquidity(otherHalf,newBalance) (#1215)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
External calls sending eth:
- addLiquidity(otherHalf,newBalance) (#1215)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
Event emitted after the call(s):
- Approval(owner,spender,amount) (#1162)
- addLiquidity(otherHalf,newBalance) (#1215)
- SwapAndLiquify(half,newBalance,otherHalf) (#1217)
Reentrancy in PolarBear.transferFrom(address,address,uint256) (#955-961):
External calls:
- _transfer(sender,recipient,amount) (#958)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1229-1235)
External calls sending eth:
- _transfer(sender,recipient,amount) (#958)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,owner(),block.timestamp) (#1243-1250)
Event emitted after the call(s):
- Approval(owner,spender,amount) (#1162)
- _approve(sender,_msgSender(),_allowances[sender][_msgSender()].sub(amount,ERC20: transfer amount exceeds allowance)) (#959)
Apply the check-effects-interactions pattern.
Additional information: link
Ownable.unlock() (#568-573) uses timestamp for comparisons
Dangerous comparisons:
- require(bool,string)(now > _lockTime,Contract is locked until 7 days) (#570)
Avoid relying on block.timestamp.
Additional information: link
Address.isContract(address) (#373-382) uses assembly
- INLINE ASM (#380)
Address._functionCallWithValue(address,bytes,uint256,string) (#466-487) uses assembly
- INLINE ASM (#479-482)
Do not use evm assembly.
Additional information: link
PolarBear.includeInReward(address) (#1024-1035) has costly operations inside a loop:
- _excluded.pop() (#1031)
Use a local variable to hold the loop computation result.
Additional information: link
Address._functionCallWithValue(address,bytes,uint256,string) (#466-487) is never used and should be removed
Address.functionCall(address,bytes) (#426-428) is never used and should be removed
Address.functionCall(address,bytes,string) (#436-438) is never used and should be removed
Address.functionCallWithValue(address,bytes,uint256) (#451-453) is never used and should be removed
Address.functionCallWithValue(address,bytes,uint256,string) (#461-464) is never used and should be removed
Address.isContract(address) (#373-382) is never used and should be removed
Address.sendValue(address,uint256) (#400-406) is never used and should be removed
Context._msgData() (#345-348) is never used and should be removed
SafeMath.mod(uint256,uint256) (#318-320) is never used and should be removed
SafeMath.mod(uint256,uint256,string) (#334-337) is never used and should be removed
Remove unused functions.
Additional information: link
PolarBear._rTotal (#843) is set pre-construction with a non-constant function or state variable:
- (MAX - (MAX % _tTotal))
PolarBear._previousTaxFee (#852) is set pre-construction with a non-constant function or state variable:
- _taxFee
PolarBear._previousBurnFee (#855) is set pre-construction with a non-constant function or state variable:
- _burnFee
PolarBear._previousCharityFee (#858) is set pre-construction with a non-constant function or state variable:
- _charityFee
PolarBear._previousLiquidityFee (#861) is set pre-construction with a non-constant function or state variable:
- _liquidityFee
Remove any initialization of state variables via non-constant state variables or function calls. If variables must be set upon contract deployment, locate initialization in the constructor instead.
Additional information: link
Low level call in Address.sendValue(address,uint256) (#400-406):
- (success) = recipient.call{value: amount}() (#404)
Low level call in Address._functionCallWithValue(address,bytes,uint256,string) (#466-487):
- (success,returndata) = target.call{value: weiValue}(data) (#470)
Avoid low-level calls. Check the call success. If the call is meant for a contract, check for code existence
Additional information: link
Function IUniswapV2Pair.DOMAIN_SEPARATOR() (#612) is not in mixedCase
Function IUniswapV2Pair.PERMIT_TYPEHASH() (#613) is not in mixedCase
Function IUniswapV2Pair.MINIMUM_LIQUIDITY() (#630) is not in mixedCase
Function IUniswapV2Router01.WETH() (#652) is not in mixedCase
Parameter PolarBear.calculateTaxFee(uint256)._amount (#1113) is not in mixedCase
Parameter PolarBear.calculateBurnFee(uint256)._amount (#1119) is not in mixedCase
Parameter PolarBear.calculateCharityFee(uint256)._amount (#1125) is not in mixedCase
Parameter PolarBear.calculateLiquidityFee(uint256)._amount (#1131) is not in mixedCase
Parameter PolarBear.setSwapAndLiquifyEnabled(bool)._enabled (#1357) is not in mixedCase
Variable PolarBear.Additional_issuance_record (#834) is not in mixedCase
Variable PolarBear._taxFee (#851) is not in mixedCase
Variable PolarBear._burnFee (#854) is not in mixedCase
Variable PolarBear._charityFee (#857) is not in mixedCase
Variable PolarBear._liquidityFee (#860) is not in mixedCase
Variable PolarBear._maxTxAmount (#871) is not in mixedCase
Follow the Solidity naming convention.
Additional information: link
Redundant expression "this (#346)" inContext (#340-349)
Remove redundant statements if they congest code but offer no value.
Additional information: link
Variable IUniswapV2Router01.addLiquidity(address,address,uint256,uint256,uint256,uint256,address,uint256).amountADesired (#657) is too similar to IUniswapV2Router01.addLiquidity(address,address,uint256,uint256,uint256,uint256,address,uint256).amountBDesired (#658)
Variable PolarBear._getRValues(uint256,uint256,uint256,uint256,uint256,uint256).rTransferAmount (#1086) is too similar to PolarBear._getTValues(uint256).tTransferAmount (#1076)
Variable PolarBear.reflectionFromToken(uint256,bool).rTransferAmount (#1001) is too similar to PolarBear._getTValues(uint256).tTransferAmount (#1076)
Prevent variables from having similar names.
Additional information: link
PolarBear._decimals (#849) should be constant
PolarBear._name (#847) should be constant
PolarBear._symbol (#848) should be constant
PolarBear.numTokensSellToAddToLiquidity (#872) should be constant
Add the constant attributes to state variables that never change.
Additional information: link
renounceOwnership() should be declared external:
- Ownable.renounceOwnership() (#540-543)
transferOwnership(address) should be declared external:
- Ownable.transferOwnership(address) (#549-553)
geUnlockTime() should be declared external:
- Ownable.geUnlockTime() (#555-557)
lock(uint256) should be declared external:
- Ownable.lock(uint256) (#560-565)
unlock() should be declared external:
- Ownable.unlock() (#568-573)
name() should be declared external:
- PolarBear.name() (#906-908)
symbol() should be declared external:
- PolarBear.symbol() (#910-912)
decimals() should be declared external:
- PolarBear.decimals() (#914-916)
totalSupply() should be declared external:
- PolarBear.totalSupply() (#918-920)
transfer(address,uint256) should be declared external:
- PolarBear.transfer(address,uint256) (#927-931)
freezeAccount(address,bool) should be declared external:
- PolarBear.freezeAccount(address,bool) (#933-936)
allowance(address,address) should be declared external:
- PolarBear.allowance(address,address) (#945-947)
approve(address,uint256) should be declared external:
- PolarBear.approve(address,uint256) (#949-953)
transferFrom(address,address,uint256) should be declared external:
- PolarBear.transferFrom(address,address,uint256) (#955-961)
increaseAllowance(address,uint256) should be declared external:
- PolarBear.increaseAllowance(address,uint256) (#963-966)
decreaseAllowance(address,uint256) should be declared external:
- PolarBear.decreaseAllowance(address,uint256) (#968-971)
isExcludedFromReward(address) should be declared external:
- PolarBear.isExcludedFromReward(address) (#973-975)
totalFees() should be declared external:
- PolarBear.totalFees() (#977-979)
totalBurn() should be declared external:
- PolarBear.totalBurn() (#981-983)
deliver(uint256) should be declared external:
- PolarBear.deliver(uint256) (#985-993)
reflectionFromToken(uint256,bool) should be declared external:
- PolarBear.reflectionFromToken(uint256,bool) (#995-1004)
excludeFromReward(address) should be declared external:
- PolarBear.excludeFromReward(address) (#1012-1022)
isExcludedFromFee(address) should be declared external:
- PolarBear.isExcludedFromFee(address) (#1152-1154)
excludeFromFee(address) should be declared external:
- PolarBear.excludeFromFee(address) (#1313-1315)
includeInFee(address) should be declared external:
- PolarBear.includeInFee(address) (#1317-1319)
Use the external attribute for functions never called from the contract.
Additional information: link
Unable to find website, listings and other project-related information
Young tokens have high risks of scam / price dump / death
Token has no active CoinGecko listing / rank
Token has no active CoinMarketCap listing / rank
Unable to find Telegram and Twitter accounts