Missing test suite code coverage
Description
Some functions in the smart contract are not covered by any unit or integration tests, to the best of our knowledge. The following functions do not have full test coverage:
DebtManager.sol: zkAllocation, sortLendersWithAPR, setZKVerifier, setWhitelistedGateway, setPairToLender, setAprOracle, requestLiquidity, and manualAllocation.
SiloGateway.sol: setUtilizationLimit and borrowAsset.
Impact
Because correctness is so critically important when developing smart contracts, we recommend that all projects strive for 100% code coverage. Testing should be an essential part of the software development life cycle. No matter how simple a function may be, untested code is always prone to bugs.
Recommendations
Expand the test suite so that all functions and their branches are covered by unit or integration tests.
Remediation
This issue has been acknowledged by Sturdy, and a fix was implemented in commit dc16e5a8↗.
This finding reflects the project's test coverage at commit 6ee0b326↗. During the remediation process Sturdy implemented additional test coverage as outlined in Section 5.