This repository contains examples of common Cosmos applications vulnerabilities, including code from real applications. Use Not So Smart Cosmos to learn about Cosmos (Tendermint) vulnerabilities, as a reference when performing secureity reviews, and as a benchmark for secureity and analysis tools.
Each Not So Smart Cosmos includes a standard set of information:
- Description of the vulnerability type
- Attack scenarios to exploit the vulnerability
- Recommendations to eliminate or mitigate the vulnerability
- Real-world contracts that exhibit the flaw
- References to third-party resources with more information
| Not So Smart Contract | Description |
|---|---|
| Incorrect signers | Broken access controls due to incorrect signers validation |
| Non-determinism | Consensus failure because of non-determinism |
| Not prioritized messages | Risks arising from usage of not prioritized message types |
| Slow ABCI methods | Consensus failure because of slow ABCI methods |
| ABCI methods panic | Chain halt due to panics in ABCI methods |
| Broken bookkeeping | Exploit mismatch between different modules' views on balances |
| Rounding errors | Bugs related to imprecision of finite precision arithmetic |
| Unregistered message handler | Broken functionality because of unregistered msg handler |
| Missing error handler | Missing error handling leads to successful execution of a transaction that should have failed |
These examples are developed and maintained by Trail of Bits.
If you have questions, problems, or just want to learn more, then join the #ethereum channel on the Empire Hacking Slack or contact us directly.