Skip to content

Review New Level:Switch#2 #555

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 8 commits into
base: master
Choose a base branch
from
Open

Review New Level:Switch#2 #555

wants to merge 8 commits into from

Conversation

@CeliktepeMurat
Copy link
Contributor

@CeliktepeMurat CeliktepeMurat commented Jan 13, 2023

@CeliktepeMurat CeliktepeMurat changed the title Review switch#2 Review New Level:Switch#2 Jan 13, 2023
@xaler5
Copy link
Collaborator

xaler5 commented Jan 13, 2023

Hey @staa99

We moved your PR to this one because of rebasing and update to newer solidity version.

I wanted to propose you the following:

We already have a level named Switch, so this would more like a Switch 2. I loved your level so I thought you might be interested in adding it a little twist to make it harder.

What if the switches were two instead of one ? The first one being the one you already created, while the second one might be a recent vulnerability OZ had in the ECDSA library. Notice that the vulnerability is present at a specific version so the level should change to:

  • Use ECDSA OZ library instead of plain ecrecover
  • Use the specific version of ECDSA with the vulnerability

You can read about the vulnerability here
GHSA-4h98-2769-gh6h

And here
OpenZeppelin/openzeppelin-contracts@d693d89

Wdyt ?

@xaler5 xaler5 marked this pull request as ready for review April 3, 2023 15:31
@GianfrancoBazzani GianfrancoBazzani mentioned this pull request Apr 26, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

new level proposal

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@CeliktepeMurat @xaler5 @GianfrancoBazzani @staa99