v0.6.0 #129
Merged
v0.6.0 #129
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Create benchmark.yml
Cli error status
…-function-detectors-triggers-on-constructor Add check that the function is not a constructor
…ies-in-pess-call-forward-to-protected Exclude oz/uni/balancer FPs from pess-call-forward-to-protected
Submodule benchmark
Update benchmark.yml
Reduce the number of FPs on pess-ecrecover
…ulty-detector Arbitrum detectors
…variables are used. Do not detected setters that use parameters for external calls
…etter Reduce number of FPs of pess strange setter detector
…etter Reduce fps pess strange setter
…into submodule_benchmark
…io/slitherin into submodule_benchmark
Submodule benchmark
…etector Add arithmetic overflow detector and improve unprotected initializer detector
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Major Updates
Reworks and additions
--arbitrum) which includes 3 Arbitrum-specific security detectors. Thx @Yhtiyar and @olegggatttor.pess-arb-solidity-versiondetector: New Arbitrum-specific detector which spots usage ofblock.numberandblock.timestamp.pess-arb-prevrandao-difficultydetector: New Arbitrum-specific detector which spots usage of prevRandao/difficulty.pess-arb-solidity-versiondetector: New Arbitrum-specific detector which spots usage of solidity version>= 0.8.20.pess-potential-arithmetic-overflowdetector: New detector. The detector sees if there are assignments/returns that calculate some arithmetic expressions and if some intermediate calculations contain a type that is lower than the expected result. Thx @olegggatttor.pess-aave-flashloan-callbackdetector: Improvement. Now detector also spots the callback cases of Uniswap V3. Thx @Yhtiyar.Crucial Fixes
pess-ecrecoverdetector: Bug fix. Handles solidity types properly. Thx @olegggatttor.Minor Updates and Optimization
Minor Fixes
pess-strange-setterdetector. Optimization. Less FP. Thx @olegggatttor.pess-unprotected-initializedetector. Optimization. Less FP. Thx @olegggatttor.pess-call-forward-to-protecteddetector. Optimization. Less FP. Skips standard libraries (OZ/Uniswap/Balancer). Thx @olegggatttor.pess-public-vs-externaldetector. Optimization. Less FP. Skipsconstructorfunctions. Thx @olegggatttor.