Assessment reportsPublic findings
Back to Zellic site
Assessment reports>Origami Finance>Threat Model>_maxUserReserves
GeneralOverview
Findings
Low (3)
DiscussionPossible share-price inflationLack of validationExemplary codebasePotential price arbitrage
Threat ModelWhat are threat models?LinearWithKinkInterestRateModel.solMintableToken.solOrigamiAaveV3IdleStrategy.solOrigamiAbstractLovTokenManager.solOrigamiCircuitBreakerAllUsersPerPeriod.solOrigamiCircuitBreakerProxy.solOrigamiCrossRateOracle.solOrigamiDebtToken.solOrigamiElevatedAccessBase.solOrigamiIdleStrategyManager.solOrigamiInvestmentVault.solOrigamiLendingClerk.solOrigamiLendingRewardsMinter.solOrigamiLendingSupplyManager.solOrigamiLovToken.sol
OrigamiLovTokenErc4626Manager.sol_depositIntoReserves_maxUserReserves_rebalanceDown_rebalanceUp_redeemFromReserves
OrigamiOToken.solRepricingToken.solTokenPrices.sol
Audit ResultsSummary

Function: _maxUserReserves()

The internal view function which calculate the max amount of reserves which can be added. The function is used by extrernal view function maxInvest.

Branches and code coverage

Intended branches

  • Scales and rounds correctly depending on the oracle config.

  • Returns maxTokenAmount if debt is zero.

Zellic © 2025Back to top ↑