Assessment reports>Biconomy Batched Session Router Module>Low findings>Missing test suite code coverage
Category: Code Maturity

Missing test suite code coverage

Low Severity
Low Impact
Low Likelihood


In our assessment of Biconomy Batched Session Router Module's test suite, we observed that while it provides adequate coverage for many aspects of the codebase, there are specific branches and codepaths that appear to be under-tested or not covered at all.

Some functions in the smart contract are not covered by any unit or integration tests, to the best of our knowledge. The following functions do not have full test coverage:

BatchedSessionRouter.sol: validateUserOp.

ERC20SessionValidationModule.sol: validateSessionParams.

SessionKeyManagerModule.sol: validateSessionKey.


Because correctness is so critical when developing smart contracts, we always recommend that projects strive for 100% code coverage. Testing is an essential part of the software development life cycle. No matter how simple a function may be, untested code is always prone to bugs.


Expand the test suite so that all functions are covered by unit or integration tests.


This issue has been acknowledged by Biconomy Labs, and a fix was implemented in commit 12037aff.

Zellic © 2023Back to top ↑