Assessment reportsPublic findings
Back to Zellic site
Assessment reports>Chainflip Backend>Threat Model>Pallet: cf-swapping
GeneralOverview
Findings
Critical (1)
High (1)
Medium (1)
DiscussionLack of broker fee limitsERC-20 transfer reversions result in stuck fundsType conversion could lead to fund loss
Threat ModelWhat are threat models?1-cf-lp2-cf-pools
3-cf-swappingPallet: cf-swappingFunction: request_swap_deposit_addressFunction: withdrawFunction: schedule_swap_from_contractFunction: ccm_depositFunction: register_as_brokerFunction: set_minimum_swap_amount
4-cf-witnesser5-engine
Audit ResultsSummary

Pallet: cf-swapping

This pallet is responsible for managing swaps and cross-chain messages (CCMs).

Zellic © 2025Back to top ↑