-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.audit-rules
More file actions
36 lines (32 loc) · 967 Bytes
/
.audit-rules
File metadata and controls
36 lines (32 loc) · 967 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
# TNT Core (Tangle) - Audit Rules
FOCUS:
- Solidity security patterns
- Reentrancy vulnerabilities
- Access control (onlyOwner, roles)
- Integer overflow/underflow (pre-0.8 patterns)
- Gas optimization
- Upgrade patterns (proxy safety)
- Event emissions for off-chain indexing
- Storage layout for upgradeable contracts
IGNORE:
- **/node_modules/**
- **/artifacts/**
- **/cache/**
- **/typechain-types/**
- **/*.test.sol
- **/test/**
- **/script/**
STRICT:
- Reentrancy without checks-effects-interactions
- Missing access control on sensitive functions
- Unchecked external calls
- tx.origin usage
- Delegatecall to untrusted contracts
- Hardcoded addresses without constants
- Missing zero-address checks
- Storage collisions in proxies
CONTEXT:
Tangle Network core protocol contracts.
Solidity-based, likely using Foundry or Hardhat.
Security-critical: handles staking, slashing, operator registration.
Upgradeable contracts - watch for storage layout issues.