Unable to find manual contract audit (e.g. Certik, PeckShield, Solidity...)
SquidKing.swapETHForRewards(address) (#1323-1339) sends eth to arbitrary user
Dangerous calls:
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
SquidKing.addLiquidity(uint256,uint256) (#1341-1355) sends eth to arbitrary user
Dangerous calls:
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
Ensure that an arbitrary user cannot withdraw unauthorized funds.
Additional information: link
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- swapTokensForEth(swapTokens) (#1223)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1314-1320)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
State variables written after the call(s):
- checkBiggestBuyTimer() (#1232)
- _sellDevFee = previousDevFee (#1156)
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- swapTokensForEth(swapTokens) (#1223)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1314-1320)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
- swapAndSendDividends(sellTokens) (#1252)
- success = IERC20(DividendsToken).transfer(address(dividendTracker),dividends) (#1360)
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
- swapAndSendDividends(sellTokens) (#1252)
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
State variables written after the call(s):
- super._transfer(from,address(this),SellFees) (#1272)
- _balances[sender] = _balances[sender].sub(amount,ERC20: transfer amount exceeds balance) (#511)
- _balances[recipient] = _balances[recipient].add(amount) (#512)
- super._transfer(from,to,amount) (#1273)
- _balances[sender] = _balances[sender].sub(amount,ERC20: transfer amount exceeds balance) (#511)
- _balances[recipient] = _balances[recipient].add(amount) (#512)
- super._transfer(from,address(this),BuyFees) (#1280)
- _balances[sender] = _balances[sender].sub(amount,ERC20: transfer amount exceeds balance) (#511)
- _balances[recipient] = _balances[recipient].add(amount) (#512)
- super._transfer(from,to,amount) (#1281)
- _balances[sender] = _balances[sender].sub(amount,ERC20: transfer amount exceeds balance) (#511)
- _balances[recipient] = _balances[recipient].add(amount) (#512)
- super._transfer(from,to,amount) (#1288)
- _balances[sender] = _balances[sender].sub(amount,ERC20: transfer amount exceeds balance) (#511)
- _balances[recipient] = _balances[recipient].add(amount) (#512)
- swapping = false (#1255)
Apply the check-effects-interactions pattern.
Additional information: link
SquidKing.TeamReleaseLiquidity() (#1015-1034) ignores return value by liquidityToken.transfer(liquidityWallet,amount) (#1026)
SquidKing.TeamReleaseLiquidity() (#1015-1034) ignores return value by liquidityToken.transfer(liquidityWallet,amount) (#1032)
SquidKing.withdrawRemainingBEP20Token(address,address) (#1433-1437) ignores return value by BEP20.transfer(account,balance) (#1436)
SquidKingDividendTracker.withdrawRemainingBEP20Token(address,address) (#1683-1686) ignores return value by IERC20(token).transfer(address(account),IERC20(token).balanceOf(address(this))) (#1685)
Use SafeERC20, or ensure that the transfer/transferFrom return value is checked.
Additional information: link
Contract locking ether found:
Contract SquidKingDividendTracker (#1449-1688) has payable functions:
- DividendPayingToken.receive() (#646-647)
- DividendPayingToken.distributeDividends() (#653-664)
- IDividendPayingToken.distributeDividends() (#378)
But does not have a function to withdraw the ether
Remove the payable attribute or add a withdraw function.
Additional information: link
SquidKingDividendTracker.updateClaimWait(uint256) (#1505-1510) contains a tautology or contradiction:
- require(bool,string)(newClaimWait >= 0 && newClaimWait <= 86400,Escrow_Dividend_Tracker: claimWait must be updated to between 1 and 24 hours) (#1506)
Fix the incorrect comparison by changing the value type or the comparison.
Additional information: link
Combination 1: Reentrancy vulnerabilities + Functions that send Ether to arbitraty destination. Usual for scams. May be justified by some complex mechanics (e.g. rebase, reflections). DYOR & manual audit are advised.
Combination 2: Unchecked transfer + Functions that send Ether to arbitraty destination. Usual for scams. May be justified by some complex mechanics (e.g. rebase, reflections). DYOR & manual audit are advised.
Combination 3: Reentrancy vulnerabilities + Unchecked transfer vulnerability. Usual for scams. May be justified by some complex mechanics (e.g. rebase, reflections). DYOR & manual audit are advised.
Reentrancy in DividendPayingToken._withdrawDividendOfUser(address) (#683-699):
External calls:
- success = IERC20(DividendsToken).transfer(user,_withdrawableDividend) (#688)
State variables written after the call(s):
- withdrawnDividends[user] = withdrawnDividends[user].sub(_withdrawableDividend) (#691)
Reentrancy in SquidKing.updateDividendTracker(address) (#918-932):
External calls:
- newDividendTracker.excludeFromDividends(address(newDividendTracker)) (#925)
- newDividendTracker.excludeFromDividends(address(this)) (#926)
- newDividendTracker.excludeFromDividends(address(uniswapV2Router)) (#927)
State variables written after the call(s):
- dividendTracker = newDividendTracker (#931)
Apply the check-effects-interactions pattern.
Additional information: link
SquidKing._transfer(address,address,uint256).iterations (#1298) is a local variable never initialized
SquidKing._transfer(address,address,uint256).claims (#1298) is a local variable never initialized
SquidKing._transfer(address,address,uint256).lastProcessedIndex (#1298) is a local variable never initialized
Initialize all the variables. If a variable is meant to be initialized to zero, explicitly set it to zero to improve code readability.
Additional information: link
SquidKing._transfer(address,address,uint256) (#1162-1303) ignores return value by dividendTracker.process(gas) (#1298-1301)
SquidKing.addLiquidity(uint256,uint256) (#1341-1355) ignores return value by uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
Ensure that all the return values of the function calls are used.
Additional information: link
DividendPayingToken.constructor(string,string)._name (#642) shadows:
- ERC20._name (#445) (state variable)
DividendPayingToken.constructor(string,string)._symbol (#642) shadows:
- ERC20._symbol (#446) (state variable)
DividendPayingToken.dividendOf(address)._owner (#701) shadows:
- Ownable._owner (#334) (state variable)
DividendPayingToken.withdrawableDividendOf(address)._owner (#705) shadows:
- Ownable._owner (#334) (state variable)
DividendPayingToken.withdrawnDividendOf(address)._owner (#709) shadows:
- Ownable._owner (#334) (state variable)
DividendPayingToken.accumulativeDividendOf(address)._owner (#713) shadows:
- Ownable._owner (#334) (state variable)
Rename the local variables that shadow another component.
Additional information: link
SquidKing.updateSwapAmount(uint256) (#913-916) should emit an event for:
- contractTokenBalanceAmount = amount * (10 ** 18) (#914)
- swapTokensAtAmount = amount * (10 ** 18) (#915)
SquidKing.updateBiggestBuy(uint256,address) (#1135-1143) should emit an event for:
- biggestBuyReward = block.timestamp.add(biggestBuyTimer) (#1139)
SquidKing.updateBuyFees(uint8,uint8,uint8,uint8) (#1396-1403) should emit an event for:
- _buyLiquidityFee = newBuyLiquidityFee (#1397)
- _buyMarketingFee = newBuyMarketingFee (#1398)
- _buyRewardsFee = newBuyRewardsFee (#1399)
- _buyDevFee = newBuyDevFee (#1400)
SquidKing.updateSellFees(uint8,uint8,uint8,uint8) (#1405-1412) should emit an event for:
- _sellLiquidityFee = newSellLiquidityFee (#1406)
- _sellMarketingFee = newSellMarketingFee (#1407)
- _sellRewardsFee = newSellRewardsFee (#1408)
- _sellDevFee = newSellDevFee (#1409)
SquidKing.updateMaxWallet(uint256) (#1414-1416) should emit an event for:
- _maxWallet = newMaxWallet * (10 ** 18) (#1415)
SquidKing.updateMaxBuySell(uint256,uint256) (#1418-1421) should emit an event for:
- _maxBuy = newMaxBuy * (10 ** 18) (#1419)
- _maxSell = newMaxSell * (10 ** 18) (#1420)
Emit an event for critical parameter changes.
Additional information: link
SquidKing.SetupLiquidityTokenAddress(address).liquidityTokenAddress (#987) lacks a zero-check on :
- _liquidityTokenAddress = liquidityTokenAddress (#988)
DividendPayingToken.updateDividendToken(address)._DividendsToken (#649) lacks a zero-check on :
- DividendsToken = _DividendsToken (#650)
Check that the address is not zero.
Additional information: link
DividendPayingToken._withdrawDividendOfUser(address) (#683-699) has external calls inside a loop: success = IERC20(DividendsToken).transfer(user,_withdrawableDividend) (#688)
Favor pull over push strategy for external calls.
Additional information: link
Variable 'SquidKing._transfer(address,address,uint256).iterations (#1298)' in SquidKing._transfer(address,address,uint256) (#1162-1303) potentially used before declaration: ProcessedDividendTracker(iterations,claims,lastProcessedIndex,true,gas,tx.origin) (#1299)
Variable 'SquidKing._transfer(address,address,uint256).lastProcessedIndex (#1298)' in SquidKing._transfer(address,address,uint256) (#1162-1303) potentially used before declaration: ProcessedDividendTracker(iterations,claims,lastProcessedIndex,true,gas,tx.origin) (#1299)
Variable 'SquidKing._transfer(address,address,uint256).claims (#1298)' in SquidKing._transfer(address,address,uint256) (#1162-1303) potentially used before declaration: ProcessedDividendTracker(iterations,claims,lastProcessedIndex,true,gas,tx.origin) (#1299)
Move all variable declarations prior to any usage of the variable, and ensure that reaching a variable declaration does not depend on some conditional if it is used unconditionally.
Additional information: link
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- swapTokensForEth(swapTokens) (#1223)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1314-1320)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
State variables written after the call(s):
- checkBiggestBuyTimer() (#1232)
- devWallet = _devWallet (#1155)
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- swapTokensForEth(swapTokens) (#1223)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1314-1320)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
State variables written after the call(s):
- addLiquidity(half,newBalance) (#1244)
- _allowances[owner][spender] = amount (#540)
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- swapTokensForEth(swapTokens) (#1223)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1314-1320)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
- swapAndSendDividends(sellTokens) (#1252)
- success = IERC20(DividendsToken).transfer(address(dividendTracker),dividends) (#1360)
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
- swapAndSendDividends(sellTokens) (#1252)
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
State variables written after the call(s):
- swapAndSendDividends(sellTokens) (#1252)
- _allowances[owner][spender] = amount (#540)
Reentrancy in SquidKing.constructor() (#845-903):
External calls:
- _uniswapV2Pair = IUniswapV2Factory(_uniswapV2Router.factory()).createPair(address(this),_uniswapV2Router.WETH()) (#879-880)
State variables written after the call(s):
- uniswapV2Pair = _uniswapV2Pair (#883)
- uniswapV2Router = _uniswapV2Router (#882)
Reentrancy in SquidKing.constructor() (#845-903):
External calls:
- _uniswapV2Pair = IUniswapV2Factory(_uniswapV2Router.factory()).createPair(address(this),_uniswapV2Router.WETH()) (#879-880)
- _setAutomatedMarketMakerPair(_uniswapV2Pair,true) (#885)
- dividendTracker.excludeFromDividends(pair) (#980)
- dividendTracker.excludeFromDividends(address(dividendTracker)) (#888)
- dividendTracker.excludeFromDividends(address(this)) (#889)
- dividendTracker.excludeFromDividends(address(_uniswapV2Router)) (#890)
- dividendTracker.excludeFromDividends(address(0x000000000000000000000000000000000000dEaD)) (#891)
State variables written after the call(s):
- _mint(owner(),10000000 * (10 ** 18)) (#902)
- _balances[account] = _balances[account].add(amount) (#522)
- excludeFromFees(liquidityWallet,true) (#894)
- _isExcludedFromFees[account] = excluded (#949)
- excludeFromFees(marketingWallet,true) (#895)
- _isExcludedFromFees[account] = excluded (#949)
- excludeFromFees(address(this),true) (#896)
- _isExcludedFromFees[account] = excluded (#949)
- _mint(owner(),10000000 * (10 ** 18)) (#902)
- _totalSupply = _totalSupply.add(amount) (#521)
Reentrancy in SquidKingDividendTracker.processAccount(address,bool) (#1671-1681):
External calls:
- amount = _withdrawDividendOfUser(account) (#1672)
- success = IERC20(DividendsToken).transfer(user,_withdrawableDividend) (#688)
State variables written after the call(s):
- lastClaimTimes[account] = block.timestamp (#1675)
Apply the check-effects-interactions pattern.
Additional information: link
Reentrancy in SquidKing._setAutomatedMarketMakerPair(address,bool) (#975-984):
External calls:
- dividendTracker.excludeFromDividends(pair) (#980)
Event emitted after the call(s):
- SetAutomatedMarketMakerPair(pair,value) (#983)
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- swapTokensForEth(swapTokens) (#1223)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1314-1320)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
Event emitted after the call(s):
- Transfer(address(this),marketingWallet,address(this).balance.mul(_sellMarketingFee).div(swapAmount)) (#1227)
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- swapTokensForEth(swapTokens) (#1223)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1314-1320)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
Event emitted after the call(s):
- Transfer(address(this),devWallet,devAmount) (#1236)
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- swapTokensForEth(swapTokens) (#1223)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1314-1320)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
Event emitted after the call(s):
- Approval(owner,spender,amount) (#541)
- addLiquidity(half,newBalance) (#1244)
- SwapAndLiquify(otherHalf,newBalance,half) (#1246)
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- swapTokensForEth(swapTokens) (#1223)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1314-1320)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
- swapAndSendDividends(sellTokens) (#1252)
- success = IERC20(DividendsToken).transfer(address(dividendTracker),dividends) (#1360)
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
- swapAndSendDividends(sellTokens) (#1252)
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
Event emitted after the call(s):
- Approval(owner,spender,amount) (#541)
- swapAndSendDividends(sellTokens) (#1252)
- SendDividends(tokens,dividends) (#1363)
- swapAndSendDividends(sellTokens) (#1252)
- Transfer(sender,recipient,amount) (#513)
- super._transfer(from,to,amount) (#1273)
- Transfer(sender,recipient,amount) (#513)
- super._transfer(from,address(this),SellFees) (#1272)
- Transfer(sender,recipient,amount) (#513)
- super._transfer(from,to,amount) (#1288)
- Transfer(sender,recipient,amount) (#513)
- super._transfer(from,address(this),BuyFees) (#1280)
- Transfer(sender,recipient,amount) (#513)
- super._transfer(from,to,amount) (#1281)
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- swapTokensForEth(swapTokens) (#1223)
- uniswapV2Router.swapExactTokensForETHSupportingFeeOnTransferTokens(tokenAmount,0,path,address(this),block.timestamp) (#1314-1320)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
- swapAndSendDividends(sellTokens) (#1252)
- success = IERC20(DividendsToken).transfer(address(dividendTracker),dividends) (#1360)
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
- dividendTracker.setBalance(address(from),balanceOf(from)) (#1292)
- dividendTracker.setBalance(address(to),balanceOf(to)) (#1293)
- dividendTracker.process(gas) (#1298-1301)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
- swapAndSendDividends(sellTokens) (#1252)
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
Event emitted after the call(s):
- ProcessedDividendTracker(iterations,claims,lastProcessedIndex,true,gas,tx.origin) (#1299)
Reentrancy in SquidKing.constructor() (#845-903):
External calls:
- _uniswapV2Pair = IUniswapV2Factory(_uniswapV2Router.factory()).createPair(address(this),_uniswapV2Router.WETH()) (#879-880)
- _setAutomatedMarketMakerPair(_uniswapV2Pair,true) (#885)
- dividendTracker.excludeFromDividends(pair) (#980)
Event emitted after the call(s):
- SetAutomatedMarketMakerPair(pair,value) (#983)
- _setAutomatedMarketMakerPair(_uniswapV2Pair,true) (#885)
Reentrancy in SquidKing.constructor() (#845-903):
External calls:
- _uniswapV2Pair = IUniswapV2Factory(_uniswapV2Router.factory()).createPair(address(this),_uniswapV2Router.WETH()) (#879-880)
- _setAutomatedMarketMakerPair(_uniswapV2Pair,true) (#885)
- dividendTracker.excludeFromDividends(pair) (#980)
- dividendTracker.excludeFromDividends(address(dividendTracker)) (#888)
- dividendTracker.excludeFromDividends(address(this)) (#889)
- dividendTracker.excludeFromDividends(address(_uniswapV2Router)) (#890)
- dividendTracker.excludeFromDividends(address(0x000000000000000000000000000000000000dEaD)) (#891)
Event emitted after the call(s):
- ExcludeFromFees(account,excluded) (#951)
- excludeFromFees(marketingWallet,true) (#895)
- ExcludeFromFees(account,excluded) (#951)
- excludeFromFees(liquidityWallet,true) (#894)
- ExcludeFromFees(account,excluded) (#951)
- excludeFromFees(address(this),true) (#896)
- Transfer(address(0),account,amount) (#523)
- _mint(owner(),10000000 * (10 ** 18)) (#902)
Reentrancy in SquidKingDividendTracker.processAccount(address,bool) (#1671-1681):
External calls:
- amount = _withdrawDividendOfUser(account) (#1672)
- success = IERC20(DividendsToken).transfer(user,_withdrawableDividend) (#688)
Event emitted after the call(s):
- Claim(account,amount,automatic) (#1676)
Reentrancy in SquidKing.processDividendTracker(uint256) (#1122-1125):
External calls:
- (iterations,claims,lastProcessedIndex) = dividendTracker.process(gas) (#1123)
Event emitted after the call(s):
- ProcessedDividendTracker(iterations,claims,lastProcessedIndex,false,gas,tx.origin) (#1124)
Reentrancy in SquidKing.swapAndSendDividends(uint256) (#1357-1365):
External calls:
- swapETHForRewards(address(this)) (#1358)
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
- success = IERC20(DividendsToken).transfer(address(dividendTracker),dividends) (#1360)
External calls sending eth:
- swapETHForRewards(address(this)) (#1358)
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
Event emitted after the call(s):
- SendDividends(tokens,dividends) (#1363)
Reentrancy in SquidKing.updateDividendTracker(address) (#918-932):
External calls:
- newDividendTracker.excludeFromDividends(address(newDividendTracker)) (#925)
- newDividendTracker.excludeFromDividends(address(this)) (#926)
- newDividendTracker.excludeFromDividends(address(uniswapV2Router)) (#927)
Event emitted after the call(s):
- UpdateDividendTracker(newAddress,address(dividendTracker)) (#929)
Apply the check-effects-interactions pattern.
Additional information: link
SquidKing._prolongLiquidityLock(uint256) (#1008-1012) uses timestamp for comparisons
Dangerous comparisons:
- require(bool)(newUnlockTime > _liquidityUnlockTime) (#1010)
SquidKing.TeamReleaseLiquidity() (#1015-1034) uses timestamp for comparisons
Dangerous comparisons:
- require(bool,string)(block.timestamp >= _liquidityUnlockTime,Not yet unlocked) (#1017)
SquidKing.getLiquidityReleaseTimeInSeconds() (#1050-1055) uses timestamp for comparisons
Dangerous comparisons:
- block.timestamp < _liquidityUnlockTime (#1051)
SquidKing.checkBiggestBuyTimer() (#1151-1160) uses timestamp for comparisons
Dangerous comparisons:
- block.timestamp <= biggestBuyReward (#1152)
SquidKingDividendTracker.getAccount(address) (#1525-1568) uses timestamp for comparisons
Dangerous comparisons:
- nextClaimTime > block.timestamp (#1565-1567)
SquidKingDividendTracker.canAutoClaim(uint256) (#1589-1595) uses timestamp for comparisons
Dangerous comparisons:
- lastClaimTime > block.timestamp (#1590)
- block.timestamp.sub(lastClaimTime) >= claimWait (#1594)
Avoid relying on block.timestamp.
Additional information: link
SquidKingDividendTracker.addToAuth(address) (#1477-1482) compares to a boolean constant:
-require(bool)(isAuth[newAuth] != true) (#1479)
Remove the equality to the boolean constant.
Additional information: link
Context._msgData() (#64-67) is never used and should be removed
ERC20._setupDecimals(uint8) (#544-546) is never used and should be removed
SafeMath.div(uint256,uint256,string) (#614-617) is never used and should be removed
SafeMath.mod(uint256,uint256) (#604-607) is never used and should be removed
SafeMath.mod(uint256,uint256,string) (#619-622) is never used and should be removed
SafeMath.tryAdd(uint256,uint256) (#553-557) is never used and should be removed
SafeMath.tryDiv(uint256,uint256) (#571-574) is never used and should be removed
SafeMath.tryMod(uint256,uint256) (#576-579) is never used and should be removed
SafeMath.tryMul(uint256,uint256) (#564-569) is never used and should be removed
SafeMath.trySub(uint256,uint256) (#559-562) is never used and should be removed
SafeMathInt.div(int256,int256) (#403-408) is never used and should be removed
SafeMathInt.mul(int256,int256) (#394-401) is never used and should be removed
Remove unused functions.
Additional information: link
Pragma version^0.8.10 (#37) necessitates a version too recent to be trusted. Consider deploying with 0.6.12/0.7.6/0.8.7
solc-0.8.10 is not recommended for deployment
Deploy with any of the following Solidity versions: 0.5.16 - 0.5.17, 0.6.11 - 0.6.12, 0.7.5 - 0.7.6 Use a simple pragma version that allows any of these versions. Consider using the latest version of Solidity for testing.
Additional information: link
Function IUniswapV2Router01.WETH() (#72) is not in mixedCase
Function IUniswapV2Pair.DOMAIN_SEPARATOR() (#236) is not in mixedCase
Function IUniswapV2Pair.PERMIT_TYPEHASH() (#237) is not in mixedCase
Function IUniswapV2Pair.MINIMUM_LIQUIDITY() (#254) is not in mixedCase
Parameter DividendPayingToken.updateDividendToken(address)._DividendsToken (#649) is not in mixedCase
Parameter DividendPayingToken.dividendOf(address)._owner (#701) is not in mixedCase
Parameter DividendPayingToken.withdrawableDividendOf(address)._owner (#705) is not in mixedCase
Parameter DividendPayingToken.withdrawnDividendOf(address)._owner (#709) is not in mixedCase
Parameter DividendPayingToken.accumulativeDividendOf(address)._owner (#713) is not in mixedCase
Constant DividendPayingToken.magnitude (#630) is not in UPPER_CASE_WITH_UNDERSCORES
Variable DividendPayingToken.DividendsToken (#635) is not in mixedCase
Event SquidKingblacklist(address,bool) (#813) is not in CapWords
Event SquidKingburningUpdated(bool) (#816) is not in CapWords
Parameter SquidKing.excludeFromDividends(address)._toExclude (#909) is not in mixedCase
Function SquidKing.SetupLiquidityTokenAddress(address) (#987-990) is not in mixedCase
Function SquidKing.TeamlimitLiquidityReleaseTo20Percent() (#1001-1003) is not in mixedCase
Function SquidKing.TeamUnlockLiquidityInSeconds(uint256) (#1005-1007) is not in mixedCase
Function SquidKing.TeamReleaseLiquidity() (#1015-1034) is not in mixedCase
Parameter SquidKing.burningEnabled(bool)._enabled (#1145) is not in mixedCase
Variable SquidKing.DividendsToken (#759) is not in mixedCase
Variable SquidKing._maxWallet (#783) is not in mixedCase
Variable SquidKing._maxBuy (#784) is not in mixedCase
Variable SquidKing._maxSell (#785) is not in mixedCase
Constant SquidKing.DefaultTime (#800) is not in UPPER_CASE_WITH_UNDERSCORES
Variable SquidKing._isBlacklisted (#805) is not in mixedCase
Parameter SquidKingDividendTracker.getAccount(address)._account (#1525) is not in mixedCase
Follow the Solidity naming convention.
Additional information: link
Redundant expression "this (#65)" inContext (#59-68)
Remove redundant statements if they congest code but offer no value.
Additional information: link
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
State variables written after the call(s):
- checkBiggestBuyTimer() (#1232)
- _sellDevFee = previousDevFee (#1156)
- checkBiggestBuyTimer() (#1232)
- devWallet = _devWallet (#1155)
Event emitted after the call(s):
- Transfer(address(this),marketingWallet,address(this).balance.mul(_sellMarketingFee).div(swapAmount)) (#1227)
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
Event emitted after the call(s):
- Transfer(address(this),devWallet,devAmount) (#1236)
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
State variables written after the call(s):
- addLiquidity(half,newBalance) (#1244)
- _allowances[owner][spender] = amount (#540)
Event emitted after the call(s):
- Approval(owner,spender,amount) (#541)
- addLiquidity(half,newBalance) (#1244)
- SwapAndLiquify(otherHalf,newBalance,half) (#1246)
Reentrancy in SquidKing._transfer(address,address,uint256) (#1162-1303):
External calls:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
External calls sending eth:
- transferToWallet(address(marketingWallet),marketingAmount) (#1225)
- recipient.transfer(amount) (#1445)
- transferToWallet(address(devWallet),devAmount) (#1234)
- recipient.transfer(amount) (#1445)
- addLiquidity(half,newBalance) (#1244)
- uniswapV2Router.addLiquidityETH{value: ethAmount}(address(this),tokenAmount,0,0,address(this),block.timestamp) (#1347-1354)
- swapAndSendDividends(sellTokens) (#1252)
- uniswapV2Router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: address(this).balance}(0,path,recipient,block.timestamp.add(300)) (#1333-1338)
State variables written after the call(s):
- swapAndSendDividends(sellTokens) (#1252)
- _allowances[owner][spender] = amount (#540)
- super._transfer(from,address(this),SellFees) (#1272)
- _balances[sender] = _balances[sender].sub(amount,ERC20: transfer amount exceeds balance) (#511)
- _balances[recipient] = _balances[recipient].add(amount) (#512)
- super._transfer(from,to,amount) (#1273)
- _balances[sender] = _balances[sender].sub(amount,ERC20: transfer amount exceeds balance) (#511)
- _balances[recipient] = _balances[recipient].add(amount) (#512)
- super._transfer(from,address(this),BuyFees) (#1280)
- _balances[sender] = _balances[sender].sub(amount,ERC20: transfer amount exceeds balance) (#511)
- _balances[recipient] = _balances[recipient].add(amount) (#512)
- super._transfer(from,to,amount) (#1281)
- _balances[sender] = _balances[sender].sub(amount,ERC20: transfer amount exceeds balance) (#511)
- _balances[recipient] = _balances[recipient].add(amount) (#512)
- super._transfer(from,to,amount) (#1288)
- _balances[sender] = _balances[sender].sub(amount,ERC20: transfer amount exceeds balance) (#511)
- _balances[recipient] = _balances[recipient].add(amount) (#512)
- swapping = false (#1255)
Event emitted after the call(s):
- Approval(owner,spender,amount) (#541)
- swapAndSendDividends(sellTokens) (#1252)
- ProcessedDividendTracker(iterations,claims,lastProcessedIndex,true,gas,tx.origin) (#1299)
- SendDividends(tokens,dividends) (#1363)
- swapAndSendDividends(sellTokens) (#1252)
- Transfer(sender,recipient,amount) (#513)
- super._transfer(from,to,amount) (#1288)
- Transfer(sender,recipient,amount) (#513)
- super._transfer(from,to,amount) (#1273)
- Transfer(sender,recipient,amount) (#513)
- super._transfer(from,address(this),SellFees) (#1272)
- Transfer(sender,recipient,amount) (#513)
- super._transfer(from,address(this),BuyFees) (#1280)
- Transfer(sender,recipient,amount) (#513)
- super._transfer(from,to,amount) (#1281)
Apply the check-effects-interactions pattern.
Additional information: link
Variable IUniswapV2Router01.addLiquidity(address,address,uint256,uint256,uint256,uint256,address,uint256).amountADesired (#77) is too similar to IUniswapV2Router01.addLiquidity(address,address,uint256,uint256,uint256,uint256,address,uint256).amountBDesired (#78)
Variable DividendPayingToken._withdrawDividendOfUser(address)._withdrawableDividend (#684) is too similar to SquidKingDividendTracker.getAccount(address).withdrawableDividends (#1530)
Prevent variables from having similar names.
Additional information: link
SquidKing.constructor() (#845-903) uses literals with too many digits:
- _maxWallet = 100000 * (10 ** 18) (#859)
SquidKing.constructor() (#845-903) uses literals with too many digits:
- dividendTracker.excludeFromDividends(address(0x000000000000000000000000000000000000dEaD)) (#891)
SquidKing.constructor() (#845-903) uses literals with too many digits:
- _mint(owner(),10000000 * (10 ** 18)) (#902)
SquidKing.updateGasForProcessing(uint256) (#1057-1062) uses literals with too many digits:
- require(bool,string)(newValue >= 200000 && newValue <= 500000,SQKG: gasForProcessing must be between 200,000 and 500,000) (#1058)
SquidKing._transfer(address,address,uint256) (#1162-1303) uses literals with too many digits:
- super._transfer(address(this),0x000000000000000000000000000000000000dEaD,burningAmount) (#1202)
SquidKing._transfer(address,address,uint256) (#1162-1303) uses literals with too many digits:
- Transfer(address(this),0x000000000000000000000000000000000000dEaD,burningAmount) (#1204)
SquidKing._transfer(address,address,uint256) (#1162-1303) uses literals with too many digits:
- super._transfer(address(this),0x000000000000000000000000000000000000dEaD,burningAmount_scope_0) (#1207)
SquidKing._transfer(address,address,uint256) (#1162-1303) uses literals with too many digits:
- Transfer(address(this),0x000000000000000000000000000000000000dEaD,burningAmount_scope_0) (#1209)
SquidKing.addLP() (#1367-1374) uses literals with too many digits:
- updateMaxWallet(100000000) (#1372)
SquidKing.addLP() (#1367-1374) uses literals with too many digits:
- updateMaxBuySell((100000000),(100000000)) (#1373)
SquidKing.letsGoLive() (#1376-1384) uses literals with too many digits:
- updateMaxWallet(1000000) (#1380)
SquidKing.letsGoLive() (#1376-1384) uses literals with too many digits:
- updateMaxBuySell(1000000,1000000) (#1381)
SquidKing.letsGetStarted() (#1386-1394) uses literals with too many digits:
- updateMaxWallet(1000000) (#1390)
SquidKing.letsGetStarted() (#1386-1394) uses literals with too many digits:
- updateMaxBuySell(1000000,1000000) (#1391)
SquidKing.burnRemainingToken() (#1439-1442) uses literals with too many digits:
- super._transfer(address(this),0x000000000000000000000000000000000000dEaD,balance) (#1441)
SquidKing.slitherConstructorVariables() (#753-1447) uses literals with too many digits:
- gasForProcessing = 500000 (#796)
SquidKingDividendTracker.getAccountAtIndex(uint256) (#1570-1587) uses literals with too many digits:
- (0x0000000000000000000000000000000000000000,- 1,- 1,0,0,0,0,0) (#1581)
Use: Ether suffix, Time suffix, or The scientific notation
Additional information: link
SquidKing._previousMaxWallet (#786) is never used in SquidKing (#753-1447)
SquidKing._previousMaxSell (#787) is never used in SquidKing (#753-1447)
SquidKing._previousMaxBuy (#788) is never used in SquidKing (#753-1447)
DividendPayingToken.lastAmount (#633) is never used in SquidKingDividendTracker (#1449-1688)
Remove unused state variables.
Additional information: link
DividendPayingToken.lastAmount (#633) should be constant
SquidKing._previousMaxBuy (#788) should be constant
SquidKing._previousMaxSell (#787) should be constant
SquidKing._previousMaxWallet (#786) should be constant
Add the constant attributes to state variables that never change.
Additional information: link
get(IterableMapping.Map,address) should be declared external:
- IterableMapping.get(IterableMapping.Map,address) (#281-283)
getIndexOfKey(IterableMapping.Map,address) should be declared external:
- IterableMapping.getIndexOfKey(IterableMapping.Map,address) (#285-290)
getKeyAtIndex(IterableMapping.Map,uint256) should be declared external:
- IterableMapping.getKeyAtIndex(IterableMapping.Map,uint256) (#292-294)
size(IterableMapping.Map) should be declared external:
- IterableMapping.size(IterableMapping.Map) (#298-300)
renounceOwnership() should be declared external:
- Ownable.renounceOwnership() (#353-356)
transferOwnership(address) should be declared external:
- Ownable.transferOwnership(address) (#358-362)
name() should be declared external:
- ERC20.name() (#455-457)
symbol() should be declared external:
- ERC20.symbol() (#459-461)
decimals() should be declared external:
- ERC20.decimals() (#463-465)
transfer(address,uint256) should be declared external:
- ERC20.transfer(address,uint256) (#475-478)
- SquidKingDividendTracker.transfer(address,uint256) (#1484-1489)
allowance(address,address) should be declared external:
- ERC20.allowance(address,address) (#480-482)
approve(address,uint256) should be declared external:
- ERC20.approve(address,uint256) (#484-487)
transferFrom(address,address,uint256) should be declared external:
- ERC20.transferFrom(address,address,uint256) (#489-493)
increaseAllowance(address,uint256) should be declared external:
- ERC20.increaseAllowance(address,uint256) (#495-498)
decreaseAllowance(address,uint256) should be declared external:
- ERC20.decreaseAllowance(address,uint256) (#500-503)
updateDividendToken(address) should be declared external:
- DividendPayingToken.updateDividendToken(address) (#649-651)
distributeDividends() should be declared external:
- DividendPayingToken.distributeDividends() (#653-664)
withdrawDividend() should be declared external:
- DividendPayingToken.withdrawDividend() (#679-681)
- SquidKingDividendTracker.withdrawDividend() (#1491-1493)
dividendOf(address) should be declared external:
- DividendPayingToken.dividendOf(address) (#701-703)
withdrawnDividendOf(address) should be declared external:
- DividendPayingToken.withdrawnDividendOf(address) (#709-711)
excludeFromDividends(address) should be declared external:
- SquidKing.excludeFromDividends(address) (#909-911)
updateSwapAmount(uint256) should be declared external:
- SquidKing.updateSwapAmount(uint256) (#913-916)
updateDividendTracker(address) should be declared external:
- SquidKing.updateDividendTracker(address) (#918-932)
updateDividendToken(address) should be declared external:
- SquidKing.updateDividendToken(address) (#934-939)
updateUniswapV2Router(address) should be declared external:
- SquidKing.updateUniswapV2Router(address) (#941-945)
addToBlacklist(address,bool) should be declared external:
- SquidKing.addToBlacklist(address,bool) (#954-959)
excludeMultipleAccountsFromFees(address[],bool) should be declared external:
- SquidKing.excludeMultipleAccountsFromFees(address[],bool) (#961-967)
setAutomatedMarketMakerPair(address,bool) should be declared external:
- SquidKing.setAutomatedMarketMakerPair(address,bool) (#969-973)
SetupLiquidityTokenAddress(address) should be declared external:
- SquidKing.SetupLiquidityTokenAddress(address) (#987-990)
TeamlimitLiquidityReleaseTo20Percent() should be declared external:
- SquidKing.TeamlimitLiquidityReleaseTo20Percent() (#1001-1003)
TeamUnlockLiquidityInSeconds(uint256) should be declared external:
- SquidKing.TeamUnlockLiquidityInSeconds(uint256) (#1005-1007)
TeamReleaseLiquidity() should be declared external:
- SquidKing.TeamReleaseLiquidity() (#1015-1034)
updateLiquidityWallet(address) should be declared external:
- SquidKing.updateLiquidityWallet(address) (#1036-1041)
updateMarketingWallet(address) should be declared external:
- SquidKing.updateMarketingWallet(address) (#1043-1048)
getLiquidityReleaseTimeInSeconds() should be declared external:
- SquidKing.getLiquidityReleaseTimeInSeconds() (#1050-1055)
updateGasForProcessing(uint256) should be declared external:
- SquidKing.updateGasForProcessing(uint256) (#1057-1062)
isExcludedFromFees(address) should be declared external:
- SquidKing.isExcludedFromFees(address) (#1080-1082)
isBlacklisted(address) should be declared external:
- SquidKing.isBlacklisted(address) (#1084-1086)
withdrawableDividendOf(address) should be declared external:
- SquidKing.withdrawableDividendOf(address) (#1088-1090)
dividendTokenBalanceOf(address) should be declared external:
- SquidKing.dividendTokenBalanceOf(address) (#1092-1094)
updateBiggestBuy(uint256,address) should be declared external:
- SquidKing.updateBiggestBuy(uint256,address) (#1135-1143)
burningEnabled(bool) should be declared external:
- SquidKing.burningEnabled(bool) (#1145-1149)
withdrawRemainingToken(address) should be declared external:
- SquidKing.withdrawRemainingToken(address) (#1428-1431)
withdrawRemainingBEP20Token(address,address) should be declared external:
- SquidKing.withdrawRemainingBEP20Token(address,address) (#1433-1437)
burnRemainingToken() should be declared external:
- SquidKing.burnRemainingToken() (#1439-1442)
addToAuth(address) should be declared external:
- SquidKingDividendTracker.addToAuth(address) (#1477-1482)
getAccountAtIndex(uint256) should be declared external:
- SquidKingDividendTracker.getAccountAtIndex(uint256) (#1570-1587)
process(uint256) should be declared external:
- SquidKingDividendTracker.process(uint256) (#1614-1669)
withdrawRemainingBEP20Token(address,address) should be declared external:
- SquidKingDividendTracker.withdrawRemainingBEP20Token(address,address) (#1683-1686)
Use the external attribute for functions never called from the contract.
Additional information: link
Unable to find website, listings and other project-related information
Token is marked as scam (rug pull, honeypot, phishing, etc.)
Additional information: link
Young tokens have high risks of scam / price dump / death
Token has no active CoinGecko listing / rank
Token has no active CoinMarketCap listing / rank
Unable to find Telegram and Twitter accounts