TW
Tripwire
Find contracts. Test them. Review real vulns.

Analysis Run

019b3836-46d1-7246-b667-72df5653d1c4

complete
Chain ID
1
Address
0xee71c654973f10ca0dbd8b10555a5126740cf8cd
Block Number
Created
Fri, Dec 19, 2025 8:03 PM
Review Summary

What survived the funnel

Open this run to answer one question: is this real attacker-relevant behavior with real impact, or just normal contract plumbing?

back to vulns open contract
Confirmed
2
Validated
2
Source
Bytecode only
Review Backing
Not yet
Best current signal
ETH value transfer possible
crit 0 high 2 direct contract
Review Checklist
1. Read the findings table first. Ignore raw jobs until the result looks real.
2. Confirm attacker control, not just the existence of a sink.
3. Confirm money or privilege impact.
4. Keep it if the behavior is real. Kill it if this is normal proxy, admin, or upgrade plumbing.

Processing Jobs

Status & attempts
ID Type Status Attempts Heartbeat
6207 artifact.fetch complete 1 / 3 3 months ago
6208 tool.cast_disasm complete 1 / 3 3 months ago
81191 analysis.bundle complete 1 / 3 1 week ago
81192 capability.graph complete 1 / 3 1 week ago
81193 detector.run complete 1 / 3 1 week ago
81194 validation.fork complete 1 / 3 1 week ago
113629 report.consolidate complete 1 / 6 1 week ago

Artifact

Runtime bytecode: available
Creation TX:
Deployer:
Proxy: no
Implementation:
Verified Source: no

Slither

tool.slither

No slither job recorded yet.

Codex

report.consolidate
Job Status
complete
Attempts
1 / 6
Findings
0
No findings?
View stderr 
OpenAI Codex v0.118.0 (research preview)
--------
workdir: /tmp/codex-oh24fpgn
model: gpt-5.4
provider: openai
approval: never
sandbox: read-only
reasoning effort: high
reasoning summaries: none
session id: 019d5c99-a767-7f72-84fe-d7214c7e12de
--------
user
You are a security auditor. You ONLY have runtime bytecode + analysis artifacts.
You MUST read `BYTECODE_BUNDLE.json` before concluding; it contains the bytecode summary,
evidence bundle, callsites, storage slots, and detector findings.

Special cases when reasoning from bytecode (be explicit about uncertainty):
- Selector inference is best-effort; missing selectors are common.
- Fallback/receive paths may be the only entrypoints.
- CALL vs DELEGATECALL semantics differ; DELEGATECALL executes in caller storage.
- Proxy patterns (EIP-1967, minimal proxies, beacon) change which storage is authoritative.
- Storage slots are raw; mappings/arrays appear via keccak patterns, names are unknown.
- Guard detection is heuristic; absence of guards does NOT mean unguarded.
- Returndata checking is unknown unless explicitly shown in evidence.
- Precompiles (0x1..0x9) and common ERC20 transfer selectors may appear; do not over-claim.

Output MUST be valid JSON matching the provided schema.
- If you find nothing meaningful: set no_findings=true and findings=[].
- Otherwise: set no_findings=false and include findings with severity/category/title.
- Locations can be pc references like "pc:0x123" or selectors like "selector:0xa9059cbb".

Focus on: reentrancy, access control, upgradeability/proxy issues, signature validation,
accounting/invariant breaks, dangerous delegatecall, and untrusted external calls.
Be conservative: if evidence is weak, mark severity low/medium and explain why.
warning: Codex could not find system bubblewrap on PATH. Please install bubblewrap with your package manager. Codex will use the vendored bubblewrap in the meantime.
ERROR: You've hit your usage limit. Visit https://chatgpt.com/codex/settings/usage to purchase more credits or try again at Apr 8th, 2026 9:11 AM.
ERROR: You've hit your usage limit. Visit https://chatgpt.com/codex/settings/usage to purchase more credits or try again at Apr 8th, 2026 9:11 AM.
Metadata 
{
    "codex": {
        "ran_at": "2026-04-05T07:44:28.536994+00:00",
        "returncode": 1
    },
    "project": {
        "mode": "bytecode",
        "bytecode_length": 4078,
        "bytecode_truncated": false,
        "capability_graph_present": true,
        "analysis_artifact_present": true
    },
    "summary": null,
    "no_findings": null,
    "schema_version": 1
}

Opcode Heuristics

tool.cast_disasm
Delegatecall
0
Selfdestruct
0
CREATE2
0
CALL-family (heavy)
1
EXT*/BALANCE
0
Total opcodes
1226
Flags
No heuristic flags raised.
View cast disassembly output 
00000000: PUSH1 0x60
00000002: PUSH1 0x40
00000004: MSTORE
00000005: CALLDATASIZE
00000006: ISZERO
00000007: PUSH2 0x0077
0000000a: JUMPI
0000000b: PUSH1 0xe0
0000000d: PUSH1 0x02
0000000f: EXP
00000010: PUSH1 0x00
00000012: CALLDATALOAD
00000013: DIV
00000014: PUSH4 0x06fdde03
00000019: DUP2
0000001a: EQ
0000001b: PUSH2 0x0079
0000001e: JUMPI
0000001f: DUP1
00000020: PUSH4 0x231f23bb
00000025: EQ
00000026: PUSH2 0x00d7
00000029: JUMPI
0000002a: DUP1
0000002b: PUSH4 0x313ce567
00000030: EQ
00000031: PUSH2 0x017d
00000034: JUMPI
00000035: DUP1
00000036: PUSH4 0x349ca600
0000003b: EQ
0000003c: PUSH2 0x0189
0000003f: JUMPI
00000040: DUP1
00000041: PUSH4 0x8052474d
00000046: EQ
00000047: PUSH2 0x01e4
0000004a: JUMPI
0000004b: DUP1
0000004c: PUSH4 0x8191745f
00000051: EQ
00000052: PUSH2 0x0242
00000055: JUMPI
00000056: DUP1
00000057: PUSH4 0x95d89b41
0000005c: EQ
0000005d: PUSH2 0x02a0
00000060: JUMPI
00000061: DUP1
00000062: PUSH4 0xaa6d7de4
00000067: EQ
00000068: PUSH2 0x02fe
0000006b: JUMPI
0000006c: DUP1
0000006d: PUSH4 0xbb0602cd
00000072: EQ
00000073: PUSH2 0x035b
00000076: JUMPI
00000077: JUMPDEST
00000078: STOP
00000079: JUMPDEST
0000007a: PUSH2 0x03bb
0000007d: PUSH1 0x05
0000007f: DUP1
00000080: SLOAD
00000081: PUSH1 0x40
00000083: DUP1
00000084: MLOAD
00000085: PUSH1 0x20
00000087: PUSH1 0x02
00000089: PUSH1 0x01
0000008b: DUP6
0000008c: AND
0000008d: ISZERO
0000008e: PUSH2 0x0100
00000091: MUL
00000092: PUSH1 0x00
00000094: NOT
00000095: ADD
00000096: SWAP1
00000097: SWAP5
00000098: AND
00000099: SWAP4
0000009a: SWAP1
0000009b: SWAP4
0000009c: DIV
0000009d: PUSH1 0x1f
0000009f: DUP2
000000a0: ADD
000000a1: DUP5
000000a2: SWAP1
000000a3: DIV
000000a4: DUP5
000000a5: MUL
000000a6: DUP3
000000a7: ADD
000000a8: DUP5
000000a9: ADD
000000aa: SWAP1
000000ab: SWAP3
000000ac: MSTORE
000000ad: DUP2
000000ae: DUP2
000000af: MSTORE
000000b0: SWAP3
000000b1: SWAP2
000000b2: DUP4
000000b3: ADD
000000b4: DUP3
000000b5: DUP3
000000b6: DUP1
000000b7: ISZERO
000000b8: PUSH2 0x046b
000000bb: JUMPI
000000bc: DUP1
000000bd: PUSH1 0x1f
000000bf: LT
000000c0: PUSH2 0x0440
000000c3: JUMPI
000000c4: PUSH2 0x0100
000000c7: DUP1
000000c8: DUP4
000000c9: SLOAD
000000ca: DIV
000000cb: MUL
000000cc: DUP4
000000cd: MSTORE
000000ce: SWAP2
000000cf: PUSH1 0x20
000000d1: ADD
000000d2: SWAP2
000000d3: PUSH2 0x046b
000000d6: JUMP
000000d7: JUMPDEST
000000d8: PUSH1 0x40
000000da: DUP1
000000db: MLOAD
000000dc: DUP1
000000dd: DUP3
000000de: ADD
000000df: SWAP1
000000e0: SWAP2
000000e1: MSTORE
000000e2: PUSH1 0x0a
000000e4: DUP2
000000e5: MSTORE
000000e6: PUSH32 0x506174656e744e616d6500000000000000000000000000000000000000000000
00000107: PUSH1 0x20
00000109: SWAP2
0000010a: DUP3
0000010b: ADD
0000010c: SWAP1
0000010d: DUP2
0000010e: MSTORE
0000010f: PUSH1 0x00
00000111: DUP1
00000112: SLOAD
00000113: DUP2
00000114: DUP1
00000115: MSTORE
00000116: SWAP2
00000117: MLOAD
00000118: PUSH1 0xff
0000011a: NOT
0000011b: AND
0000011c: PUSH1 0x14
0000011e: OR
0000011f: DUP2
00000120: SSTORE
00000121: PUSH2 0x0077
00000124: SWAP3
00000125: SWAP1
00000126: SWAP2
00000127: PUSH2 0x0473
0000012a: SWAP2
0000012b: PUSH32 0x290decd9548b62a8d60345a988386fc84ba6bc95484008f6362f93160ef3e563
0000014c: PUSH1 0x02
0000014e: PUSH1 0x01
00000150: DUP5
00000151: AND
00000152: ISZERO
00000153: PUSH2 0x0100
00000156: MUL
00000157: PUSH1 0x00
00000159: NOT
0000015a: ADD
0000015b: SWAP1
0000015c: SWAP4
0000015d: AND
0000015e: SWAP3
0000015f: SWAP1
00000160: SWAP3
00000161: DIV
00000162: PUSH1 0x1f
00000164: ADD
00000165: DIV
00000166: DUP2
00000167: ADD
00000168: SWAP1
00000169: JUMPDEST
0000016a: DUP1
0000016b: DUP3
0000016c: GT
0000016d: ISZERO
0000016e: PUSH2 0x0506
00000171: JUMPI
00000172: PUSH1 0x00
00000174: DUP2
00000175: SSTORE
00000176: PUSH1 0x01
00000178: ADD
00000179: PUSH2 0x0169
0000017c: JUMP
0000017d: JUMPDEST
0000017e: PUSH2 0x0429
00000181: PUSH1 0x07
00000183: SLOAD
00000184: PUSH1 0xff
00000186: AND
00000187: DUP2
00000188: JUMP
00000189: JUMPDEST
0000018a: PUSH2 0x03bb
0000018d: PUSH1 0x02
0000018f: DUP1
00000190: SLOAD
00000191: PUSH1 0x40
00000193: DUP1
00000194: MLOAD
00000195: PUSH1 0x20
00000197: PUSH1 0x01
00000199: DUP5
0000019a: AND
0000019b: ISZERO
0000019c: PUSH2 0x0100
0000019f: MUL
000001a0: PUSH1 0x00
000001a2: NOT
000001a3: ADD
000001a4: SWAP1
000001a5: SWAP4
000001a6: AND
000001a7: DUP5
000001a8: SWAP1
000001a9: DIV
000001aa: PUSH1 0x1f
000001ac: DUP2
000001ad: ADD
000001ae: DUP5
000001af: SWAP1
000001b0: DIV
000001b1: DUP5
000001b2: MUL
000001b3: DUP3
000001b4: ADD
000001b5: DUP5
000001b6: ADD
000001b7: SWAP1
000001b8: SWAP3
000001b9: MSTORE
000001ba: DUP2
000001bb: DUP2
000001bc: MSTORE
000001bd: SWAP3
000001be: SWAP2
000001bf: DUP4
000001c0: ADD
000001c1: DUP3
000001c2: DUP3
000001c3: DUP1
000001c4: ISZERO
000001c5: PUSH2 0x046b
000001c8: JUMPI
000001c9: DUP1
000001ca: PUSH1 0x1f
000001cc: LT
000001cd: PUSH2 0x0440
000001d0: JUMPI
000001d1: PUSH2 0x0100
000001d4: DUP1
000001d5: DUP4
000001d6: SLOAD
000001d7: DIV
000001d8: MUL
000001d9: DUP4
000001da: MSTORE
000001db: SWAP2
000001dc: PUSH1 0x20
000001de: ADD
000001df: SWAP2
000001e0: PUSH2 0x046b
000001e3: JUMP
000001e4: JUMPDEST
000001e5: PUSH2 0x03bb
000001e8: PUSH1 0x00
000001ea: DUP1
000001eb: SLOAD
000001ec: PUSH1 0x40
000001ee: DUP1
000001ef: MLOAD
000001f0: PUSH1 0x20
000001f2: PUSH1 0x02
000001f4: PUSH1 0x01
000001f6: DUP6
000001f7: AND
000001f8: ISZERO
000001f9: PUSH2 0x0100
000001fc: MUL
000001fd: PUSH1 0x00
000001ff: NOT
00000200: ADD
00000201: SWAP1
00000202: SWAP5
00000203: AND
00000204: SWAP4
00000205: SWAP1
00000206: SWAP4
00000207: DIV
00000208: PUSH1 0x1f
0000020a: DUP2
0000020b: ADD
0000020c: DUP5
0000020d: SWAP1
0000020e: DIV
0000020f: DUP5
00000210: MUL
00000211: DUP3
00000212: ADD
00000213: DUP5
00000214: ADD
00000215: SWAP1
00000216: SWAP3
00000217: MSTORE
00000218: DUP2
00000219: DUP2
0000021a: MSTORE
0000021b: SWAP3
0000021c: SWAP2
0000021d: DUP4
0000021e: ADD
0000021f: DUP3
00000220: DUP3
00000221: DUP1
00000222: ISZERO
00000223: PUSH2 0x046b
00000226: JUMPI
00000227: DUP1
00000228: PUSH1 0x1f
0000022a: LT
0000022b: PUSH2 0x0440
0000022e: JUMPI
0000022f: PUSH2 0x0100
00000232: DUP1
00000233: DUP4
00000234: SLOAD
00000235: DIV
00000236: MUL
00000237: DUP4
00000238: MSTORE
00000239: SWAP2
0000023a: PUSH1 0x20
0000023c: ADD
0000023d: SWAP2
0000023e: PUSH2 0x046b
00000241: JUMP
00000242: JUMPDEST
00000243: PUSH2 0x03bb
00000246: PUSH1 0x03
00000248: DUP1
00000249: SLOAD
0000024a: PUSH1 0x40
0000024c: DUP1
0000024d: MLOAD
0000024e: PUSH1 0x20
00000250: PUSH1 0x02
00000252: PUSH1 0x01
00000254: DUP6
00000255: AND
00000256: ISZERO
00000257: PUSH2 0x0100
0000025a: MUL
0000025b: PUSH1 0x00
0000025d: NOT
0000025e: ADD
0000025f: SWAP1
00000260: SWAP5
00000261: AND
00000262: SWAP4
00000263: SWAP1
00000264: SWAP4
00000265: DIV
00000266: PUSH1 0x1f
00000268: DUP2
00000269: ADD
0000026a: DUP5
0000026b: SWAP1
0000026c: DIV
0000026d: DUP5
0000026e: MUL
0000026f: DUP3
00000270: ADD
00000271: DUP5
00000272: ADD
00000273: SWAP1
00000274: SWAP3
00000275: MSTORE
00000276: DUP2
00000277: DUP2
00000278: MSTORE
00000279: SWAP3
0000027a: SWAP2
0000027b: DUP4
0000027c: ADD
0000027d: DUP3
0000027e: DUP3
0000027f: DUP1
00000280: ISZERO
00000281: PUSH2 0x046b
00000284: JUMPI
00000285: DUP1
00000286: PUSH1 0x1f
00000288: LT
00000289: PUSH2 0x0440
0000028c: JUMPI
0000028d: PUSH2 0x0100
00000290: DUP1
00000291: DUP4
00000292: SLOAD
00000293: DIV
00000294: MUL
00000295: DUP4
00000296: MSTORE
00000297: SWAP2
00000298: PUSH1 0x20
0000029a: ADD
0000029b: SWAP2
0000029c: PUSH2 0x046b
0000029f: JUMP
000002a0: JUMPDEST
000002a1: PUSH2 0x03bb
000002a4: PUSH1 0x06
000002a6: DUP1
000002a7: SLOAD
000002a8: PUSH1 0x40
000002aa: DUP1
000002ab: MLOAD
000002ac: PUSH1 0x20
000002ae: PUSH1 0x02
000002b0: PUSH1 0x01
000002b2: DUP6
000002b3: AND
000002b4: ISZERO
000002b5: PUSH2 0x0100
000002b8: MUL
000002b9: PUSH1 0x00
000002bb: NOT
000002bc: ADD
000002bd: SWAP1
000002be: SWAP5
000002bf: AND
000002c0: SWAP4
000002c1: SWAP1
000002c2: SWAP4
000002c3: DIV
000002c4: PUSH1 0x1f
000002c6: DUP2
000002c7: ADD
000002c8: DUP5
000002c9: SWAP1
000002ca: DIV
000002cb: DUP5
000002cc: MUL
000002cd: DUP3
000002ce: ADD
000002cf: DUP5
000002d0: ADD
000002d1: SWAP1
000002d2: SWAP3
000002d3: MSTORE
000002d4: DUP2
000002d5: DUP2
000002d6: MSTORE
000002d7: SWAP3
000002d8: SWAP2
000002d9: DUP4
000002da: ADD
000002db: DUP3
000002dc: DUP3
000002dd: DUP1
000002de: ISZERO
000002df: PUSH2 0x046b
000002e2: JUMPI
000002e3: DUP1
000002e4: PUSH1 0x1f
000002e6: LT
000002e7: PUSH2 0x0440
000002ea: JUMPI
000002eb: PUSH2 0x0100
000002ee: DUP1
000002ef: DUP4
000002f0: SLOAD
000002f1: DIV
000002f2: MUL
000002f3: DUP4
000002f4: MSTORE
000002f5: SWAP2
000002f6: PUSH1 0x20
000002f8: ADD
000002f9: SWAP2
000002fa: PUSH2 0x046b
000002fd: JUMP
000002fe: JUMPDEST
000002ff: PUSH2 0x03bb
00000302: PUSH1 0x01
00000304: DUP1
00000305: SLOAD
00000306: PUSH1 0x40
00000308: DUP1
00000309: MLOAD
0000030a: PUSH1 0x20
0000030c: PUSH1 0x02
0000030e: DUP5
0000030f: DUP7
00000310: AND
00000311: ISZERO
00000312: PUSH2 0x0100
00000315: MUL
00000316: PUSH1 0x00
00000318: NOT
00000319: ADD
0000031a: SWAP1
0000031b: SWAP5
0000031c: AND
0000031d: SWAP4
0000031e: SWAP1
0000031f: SWAP4
00000320: DIV
00000321: PUSH1 0x1f
00000323: DUP2
00000324: ADD
00000325: DUP5
00000326: SWAP1
00000327: DIV
00000328: DUP5
00000329: MUL
0000032a: DUP3
0000032b: ADD
0000032c: DUP5
0000032d: ADD
0000032e: SWAP1
0000032f: SWAP3
00000330: MSTORE
00000331: DUP2
00000332: DUP2
00000333: MSTORE
00000334: SWAP3
00000335: SWAP2
00000336: DUP4
00000337: ADD
00000338: DUP3
00000339: DUP3
0000033a: DUP1
0000033b: ISZERO
0000033c: PUSH2 0x046b
0000033f: JUMPI
00000340: DUP1
00000341: PUSH1 0x1f
00000343: LT
00000344: PUSH2 0x0440
00000347: JUMPI
00000348: PUSH2 0x0100
0000034b: DUP1
0000034c: DUP4
0000034d: SLOAD
0000034e: DIV
0000034f: MUL
00000350: DUP4
00000351: MSTORE
00000352: SWAP2
00000353: PUSH1 0x20
00000355: ADD
00000356: SWAP2
00000357: PUSH2 0x046b
0000035a: JUMP
0000035b: JUMPDEST
0000035c: PUSH2 0x03bb
0000035f: PUSH1 0x04
00000361: DUP1
00000362: SLOAD
00000363: PUSH1 0x40
00000365: DUP1
00000366: MLOAD
00000367: PUSH1 0x20
00000369: PUSH1 0x1f
0000036b: PUSH1 0x02
0000036d: PUSH1 0x00
0000036f: NOT
00000370: PUSH2 0x0100
00000373: PUSH1 0x01
00000375: DUP9
00000376: AND
00000377: ISZERO
00000378: MUL
00000379: ADD
0000037a: SWAP1
0000037b: SWAP6
0000037c: AND
0000037d: SWAP5
0000037e: SWAP1
0000037f: SWAP5
00000380: DIV
00000381: SWAP4
00000382: DUP5
00000383: ADD
00000384: DUP2
00000385: SWAP1
00000386: DIV
00000387: DUP2
00000388: MUL
00000389: DUP3
0000038a: ADD
0000038b: DUP2
0000038c: ADD
0000038d: SWAP1
0000038e: SWAP3
0000038f: MSTORE
00000390: DUP3
00000391: DUP2
00000392: MSTORE
00000393: SWAP3
00000394: SWAP2
00000395: SWAP1
00000396: DUP4
00000397: ADD
00000398: DUP3
00000399: DUP3
0000039a: DUP1
0000039b: ISZERO
0000039c: PUSH2 0x046b
0000039f: JUMPI
000003a0: DUP1
000003a1: PUSH1 0x1f
000003a3: LT
000003a4: PUSH2 0x0440
000003a7: JUMPI
000003a8: PUSH2 0x0100
000003ab: DUP1
000003ac: DUP4
000003ad: SLOAD
000003ae: DIV
000003af: MUL
000003b0: DUP4
000003b1: MSTORE
000003b2: SWAP2
000003b3: PUSH1 0x20
000003b5: ADD
000003b6: SWAP2
000003b7: PUSH2 0x046b
000003ba: JUMP
000003bb: JUMPDEST
000003bc: PUSH1 0x40
000003be: MLOAD
000003bf: DUP1
000003c0: DUP1
000003c1: PUSH1 0x20
000003c3: ADD
000003c4: DUP3
000003c5: DUP2
000003c6: SUB
000003c7: DUP3
000003c8: MSTORE
000003c9: DUP4
000003ca: DUP2
000003cb: DUP2
000003cc: MLOAD
000003cd: DUP2
000003ce: MSTORE
000003cf: PUSH1 0x20
000003d1: ADD
000003d2: SWAP2
000003d3: POP
000003d4: DUP1
000003d5: MLOAD
000003d6: SWAP1
000003d7: PUSH1 0x20
000003d9: ADD
000003da: SWAP1
000003db: DUP1
000003dc: DUP4
000003dd: DUP4
000003de: DUP3
000003df: SWAP1
000003e0: PUSH1 0x00
000003e2: PUSH1 0x04
000003e4: PUSH1 0x20
000003e6: DUP5
000003e7: PUSH1 0x1f
000003e9: ADD
000003ea: DIV
000003eb: PUSH1 0x0f
000003ed: MUL
000003ee: PUSH1 0x03
000003f0: ADD
000003f1: CALL
000003f2: POP
000003f3: SWAP1
000003f4: POP
000003f5: SWAP1
000003f6: DUP2
000003f7: ADD
000003f8: SWAP1
000003f9: PUSH1 0x1f
000003fb: AND
000003fc: DUP1
000003fd: ISZERO
000003fe: PUSH2 0x041b
00000401: JUMPI
00000402: DUP1
00000403: DUP3
00000404: SUB
00000405: DUP1
00000406: MLOAD
00000407: PUSH1 0x01
00000409: DUP4
0000040a: PUSH1 0x20
0000040c: SUB
0000040d: PUSH2 0x0100
00000410: EXP
00000411: SUB
00000412: NOT
00000413: AND
00000414: DUP2
00000415: MSTORE
00000416: PUSH1 0x20
00000418: ADD
00000419: SWAP2
0000041a: POP
0000041b: JUMPDEST
0000041c: POP
0000041d: SWAP3
0000041e: POP
0000041f: POP
00000420: POP
00000421: PUSH1 0x40
00000423: MLOAD
00000424: DUP1
00000425: SWAP2
00000426: SUB
00000427: SWAP1
00000428: RETURN
00000429: JUMPDEST
0000042a: PUSH1 0x40
0000042c: DUP1
0000042d: MLOAD
0000042e: PUSH1 0xff
00000430: SWAP3
00000431: SWAP1
00000432: SWAP3
00000433: AND
00000434: DUP3
00000435: MSTORE
00000436: MLOAD
00000437: SWAP1
00000438: DUP2
00000439: SWAP1
0000043a: SUB
0000043b: PUSH1 0x20
0000043d: ADD
0000043e: SWAP1
0000043f: RETURN
00000440: JUMPDEST
00000441: DUP3
00000442: ADD
00000443: SWAP2
00000444: SWAP1
00000445: PUSH1 0x00
00000447: MSTORE
00000448: PUSH1 0x20
0000044a: PUSH1 0x00
0000044c: KECCAK256
0000044d: SWAP1
0000044e: JUMPDEST
0000044f: DUP2
00000450: SLOAD
00000451: DUP2
00000452: MSTORE
00000453: SWAP1
00000454: PUSH1 0x01
00000456: ADD
00000457: SWAP1
00000458: PUSH1 0x20
0000045a: ADD
0000045b: DUP1
0000045c: DUP4
0000045d: GT
0000045e: PUSH2 0x044e
00000461: JUMPI
00000462: DUP3
00000463: SWAP1
00000464: SUB
00000465: PUSH1 0x1f
00000467: AND
00000468: DUP3
00000469: ADD
0000046a: SWAP2
0000046b: JUMPDEST
0000046c: POP
0000046d: POP
0000046e: POP
0000046f: POP
00000470: POP
00000471: DUP2
00000472: JUMP
00000473: JUMPDEST
00000474: POP
00000475: POP
00000476: PUSH1 0x40
00000478: DUP1
00000479: MLOAD
0000047a: DUP1
0000047b: DUP3
0000047c: ADD
0000047d: SWAP1
0000047e: SWAP2
0000047f: MSTORE
00000480: PUSH1 0x04
00000482: DUP2
00000483: MSTORE
00000484: PUSH32 0x6e616d6500000000000000000000000000000000000000000000000000000000
000004a5: PUSH1 0x20
000004a7: SWAP2
000004a8: DUP3
000004a9: ADD
000004aa: SWAP1
000004ab: DUP2
000004ac: MSTORE
000004ad: PUSH1 0x05
000004af: DUP1
000004b0: SLOAD
000004b1: PUSH1 0x00
000004b3: DUP3
000004b4: SWAP1
000004b5: MSTORE
000004b6: SWAP2
000004b7: MLOAD
000004b8: PUSH1 0xff
000004ba: NOT
000004bb: AND
000004bc: PUSH1 0x08
000004be: OR
000004bf: DUP2
000004c0: SSTORE
000004c1: SWAP2
000004c2: PUSH2 0x050a
000004c5: SWAP2
000004c6: PUSH1 0x02
000004c8: PUSH1 0x01
000004ca: DUP3
000004cb: AND
000004cc: ISZERO
000004cd: PUSH2 0x0100
000004d0: MUL
000004d1: PUSH1 0x00
000004d3: NOT
000004d4: ADD
000004d5: SWAP1
000004d6: SWAP2
000004d7: AND
000004d8: DIV
000004d9: PUSH1 0x1f
000004db: ADD
000004dc: DIV
000004dd: PUSH32 0x036b6384b5eca791c62761152d0c79bb0604c104a5fb6f4eb0703f3154bb3db0
000004fe: SWAP1
000004ff: DUP2
00000500: ADD
00000501: SWAP1
00000502: PUSH2 0x0169
00000505: JUMP
00000506: JUMPDEST
00000507: POP
00000508: SWAP1
00000509: JUMP
0000050a: JUMPDEST
0000050b: POP
0000050c: POP
0000050d: PUSH1 0x40
0000050f: DUP1
00000510: MLOAD
00000511: DUP1
00000512: DUP3
00000513: ADD
00000514: SWAP1
00000515: SWAP2
00000516: MSTORE
00000517: PUSH1 0x07
00000519: DUP2
0000051a: MSTORE
0000051b: PUSH32 0x4d44354841534800000000000000000000000000000000000000000000000000
0000053c: PUSH1 0x20
0000053e: SWAP2
0000053f: DUP3
00000540: ADD
00000541: SWAP1
00000542: DUP2
00000543: MSTORE
00000544: PUSH1 0x01
00000546: DUP1
00000547: SLOAD
00000548: PUSH1 0x00
0000054a: DUP3
0000054b: SWAP1
0000054c: MSTORE
0000054d: SWAP2
0000054e: MLOAD
0000054f: PUSH1 0xff
00000551: NOT
00000552: AND
00000553: PUSH1 0x0e
00000555: OR
00000556: DUP2
00000557: SSTORE
00000558: SWAP2
00000559: PUSH2 0x059c
0000055c: SWAP2
0000055d: PUSH1 0x02
0000055f: DUP2
00000560: DUP6
00000561: AND
00000562: ISZERO
00000563: PUSH2 0x0100
00000566: MUL
00000567: PUSH1 0x00
00000569: NOT
0000056a: ADD
0000056b: SWAP1
0000056c: SWAP2
0000056d: AND
0000056e: DIV
0000056f: PUSH1 0x1f
00000571: ADD
00000572: DIV
00000573: PUSH32 0xb10e2d527612073b26eecdfd717e6a320cf44b4afac2b0732d9fcbe2b7fa0cf6
00000594: SWAP1
00000595: DUP2
00000596: ADD
00000597: SWAP1
00000598: PUSH2 0x0169
0000059b: JUMP
0000059c: JUMPDEST
0000059d: POP
0000059e: POP
0000059f: PUSH1 0x40
000005a1: DUP1
000005a2: MLOAD
000005a3: DUP1
000005a4: DUP3
000005a5: ADD
000005a6: SWAP1
000005a7: SWAP2
000005a8: MSTORE
000005a9: PUSH1 0x03
000005ab: DUP2
000005ac: MSTORE
000005ad: PUSH32 0x5441470000000000000000000000000000000000000000000000000000000000
000005ce: PUSH1 0x20
000005d0: SWAP2
000005d1: DUP3
000005d2: ADD
000005d3: SWAP1
000005d4: DUP2
000005d5: MSTORE
000005d6: PUSH1 0x02
000005d8: DUP1
000005d9: SLOAD
000005da: PUSH1 0x00
000005dc: DUP3
000005dd: SWAP1
000005de: MSTORE
000005df: SWAP2
000005e0: MLOAD
000005e1: PUSH1 0xff
000005e3: NOT
000005e4: AND
000005e5: PUSH1 0x06
000005e7: OR
000005e8: DUP2
000005e9: SSTORE
000005ea: SWAP2
000005eb: PUSH2 0x062d
000005ee: SWAP2
000005ef: PUSH1 0x01
000005f1: DUP2
000005f2: AND
000005f3: ISZERO
000005f4: PUSH2 0x0100
000005f7: MUL
000005f8: PUSH1 0x00
000005fa: NOT
000005fb: ADD
000005fc: AND
000005fd: DUP4
000005fe: SWAP1
000005ff: DIV
00000600: PUSH1 0x1f
00000602: ADD
00000603: DIV
00000604: PUSH32 0x405787fa12a823e0f2b7631cc41b3ba8828b3321ca811111fa75cd3aa3bb5ace
00000625: SWAP1
00000626: DUP2
00000627: ADD
00000628: SWAP1
00000629: PUSH2 0x0169
0000062c: JUMP
0000062d: JUMPDEST
0000062e: POP
0000062f: POP
00000630: PUSH1 0x40
00000632: DUP1
00000633: MLOAD
00000634: DUP1
00000635: DUP3
00000636: ADD
00000637: SWAP1
00000638: SWAP2
00000639: MSTORE
0000063a: PUSH1 0x13
0000063c: DUP2
0000063d: MSTORE
0000063e: PUSH32 0x436f6e74656e74204465736372697074696f6e00000000000000000000000000
0000065f: PUSH1 0x20
00000661: SWAP2
00000662: DUP3
00000663: ADD
00000664: SWAP1
00000665: DUP2
00000666: MSTORE
00000667: PUSH1 0x03
00000669: DUP1
0000066a: SLOAD
0000066b: PUSH1 0x00
0000066d: DUP3
0000066e: SWAP1
0000066f: MSTORE
00000670: SWAP2
00000671: MLOAD
00000672: PUSH1 0xff
00000674: NOT
00000675: AND
00000676: PUSH1 0x26
00000678: OR
00000679: DUP2
0000067a: SSTORE
0000067b: SWAP2
0000067c: PUSH2 0x06c0
0000067f: SWAP2
00000680: PUSH1 0x02
00000682: PUSH1 0x01
00000684: DUP3
00000685: AND
00000686: ISZERO
00000687: PUSH2 0x0100
0000068a: MUL
0000068b: PUSH1 0x00
0000068d: NOT
0000068e: ADD
0000068f: SWAP1
00000690: SWAP2
00000691: AND
00000692: DIV
00000693: PUSH1 0x1f
00000695: ADD
00000696: DIV
00000697: PUSH32 0xc2575a0e9e593c00f959f8c92f12db2869c3395a3b0502d05e2516446f71f85b
000006b8: SWAP1
000006b9: DUP2
000006ba: ADD
000006bb: SWAP1
000006bc: PUSH2 0x0169
000006bf: JUMP
000006c0: JUMPDEST
000006c1: POP
000006c2: POP
000006c3: PUSH1 0x40
000006c5: DUP1
000006c6: MLOAD
000006c7: DUP1
000006c8: DUP3
000006c9: ADD
000006ca: SWAP1
000006cb: SWAP2
000006cc: MSTORE
000006cd: PUSH1 0x1a
000006cf: DUP2
000006d0: MSTORE
000006d1: PUSH32 0x68747470733a2f2f657468657265756d2e6769746875622e696f000000000000
000006f2: PUSH1 0x20
000006f4: SWAP2
000006f5: DUP3
000006f6: ADD
000006f7: SWAP1
000006f8: DUP2
000006f9: MSTORE
000006fa: PUSH1 0x04
000006fc: DUP1
000006fd: SLOAD
000006fe: PUSH1 0x00
00000700: DUP3
00000701: SWAP1
00000702: MSTORE
00000703: SWAP2
00000704: MLOAD
00000705: PUSH1 0xff
00000707: NOT
00000708: AND
00000709: PUSH1 0x34
0000070b: OR
0000070c: DUP2
0000070d: SSTORE
0000070e: SWAP2
0000070f: PUSH2 0x0753
00000712: SWAP2
00000713: PUSH1 0x02
00000715: PUSH1 0x01
00000717: DUP3
00000718: AND
00000719: ISZERO
0000071a: PUSH2 0x0100
0000071d: MUL
0000071e: PUSH1 0x00
00000720: NOT
00000721: ADD
00000722: SWAP1
00000723: SWAP2
00000724: AND
00000725: DIV
00000726: PUSH1 0x1f
00000728: ADD
00000729: DIV
0000072a: PUSH32 0x8a35acfbc15ff81a39ae7d344fd709f28e8600b4aa8c65c6b64bfe7fe36bd19b
0000074b: SWAP1
0000074c: DUP2
0000074d: ADD
0000074e: SWAP1
0000074f: PUSH2 0x0169
00000752: JUMP
00000753: JUMPDEST
00000754: POP
00000755: POP
00000756: PUSH1 0x40
00000758: DUP1
00000759: MLOAD
0000075a: DUP1
0000075b: DUP3
0000075c: ADD
0000075d: SWAP1
0000075e: SWAP2
0000075f: MSTORE
00000760: PUSH1 0x03
00000762: DUP2
00000763: MSTORE
00000764: PUSH32 0x50746e0000000000000000000000000000000000000000000000000000000000
00000785: PUSH1 0x20
00000787: SWAP2
00000788: DUP3
00000789: ADD
0000078a: SWAP1
0000078b: DUP2
0000078c: MSTORE
0000078d: PUSH1 0x06
0000078f: DUP1
00000790: SLOAD
00000791: PUSH1 0x00
00000793: DUP3
00000794: SWAP1
00000795: MSTORE
00000796: SWAP2
00000797: MLOAD
00000798: PUSH1 0xff
0000079a: NOT
0000079b: AND
0000079c: DUP2
0000079d: OR
0000079e: DUP2
0000079f: SSTORE
000007a0: SWAP2
000007a1: PUSH2 0x07e5
000007a4: SWAP2
000007a5: PUSH1 0x02
000007a7: PUSH1 0x01
000007a9: DUP3
000007aa: AND
000007ab: ISZERO
000007ac: PUSH2 0x0100
000007af: MUL
000007b0: PUSH1 0x00
000007b2: NOT
000007b3: ADD
000007b4: SWAP1
000007b5: SWAP2
000007b6: AND
000007b7: DIV
000007b8: PUSH1 0x1f
000007ba: ADD
000007bb: DIV
000007bc: PUSH32 0xf652222313e28459528d920b65115c16c04f3efc82aaedc97be59f3f377c0d3f
000007dd: SWAP1
000007de: DUP2
000007df: ADD
000007e0: SWAP1
000007e1: PUSH2 0x0169
000007e4: JUMP
000007e5: JUMPDEST
000007e6: POP
000007e7: POP
000007e8: PUSH1 0x07
000007ea: DUP1
000007eb: SLOAD
000007ec: PUSH1 0xff
000007ee: NOT
000007ef: AND
000007f0: PUSH1 0x03
000007f2: OR
000007f3: SWAP1
000007f4: SSTORE
000007f5: JUMP
View stderr 
Warning: This is a nightly build of Foundry. It is recommended to use the latest stable version. To mute this warning set `FOUNDRY_DISABLE_NIGHTLY_WARNING` in your environment.

Findings

validated = confirmed for call sinks; sink observed for others
Severity Category Tool Title Confidence Validated Confirmed Details
high other detector ETH value transfer possible 55 yes yes
view
trace_id: 0xd84d0086460d9a66856ac9730f7bcaaad0053db9257d73a48fd019f73adbf237
call_targets: 0x0000000000000000000000000000000000000004, 0xee71c654973f10ca0dbd8b10555a5126740cf8cd
target_varies: yes
classification: target_varies
validation_json 
{
    "sink": "CALL",
    "errors": 0,
    "status": "confirmed",
    "attempts": 1,
    "trace_id": "0xd84d0086460d9a66856ac9730f7bcaaad0053db9257d73a48fd019f73adbf237",
    "confirmed": true,
    "trace_mode": "callTracer",
    "call_targets": [
        "0x0000000000000000000000000000000000000004",
        "0xee71c654973f10ca0dbd8b10555a5126740cf8cd"
    ],
    "matched_probe": null,
    "target_varies": true,
    "classification": "target_varies"
}
witness_json 
{
    "notes": "heuristic witness; entrypoints are best-effort selectors with zeroed calldata",
    "constraints": [],
    "entrypoints": [
        {
            "calldata": "0x06fdde03",
            "selector": "0x06fdde03",
            "calldata_variants": [
                "0x06fdde03",
                "0x06fdde030000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x231f23bb",
            "selector": "0x231f23bb",
            "calldata_variants": [
                "0x231f23bb",
                "0x231f23bb0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x313ce567",
            "selector": "0x313ce567",
            "calldata_variants": [
                "0x313ce567",
                "0x313ce5670000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x349ca600",
            "selector": "0x349ca600",
            "calldata_variants": [
                "0x349ca600",
                "0x349ca6000000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x8052474d",
            "selector": "0x8052474d",
            "calldata_variants": [
                "0x8052474d",
                "0x8052474d0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x8191745f",
            "selector": "0x8191745f",
            "calldata_variants": [
                "0x8191745f",
                "0x8191745f0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x95d89b41",
            "selector": "0x95d89b41",
            "calldata_variants": [
                "0x95d89b41",
                "0x95d89b410000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0xaa6d7de4",
            "selector": "0xaa6d7de4",
            "calldata_variants": [
                "0xaa6d7de4",
                "0xaa6d7de40000000000000000000000000000000000000000000000000000000000000000"
            ]
        }
    ]
}
evidence_json 
{
    "examples": [
        {
            "pc": 1009,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        }
    ],
    "eth_value_calls": 1,
    "guards_detected": []
}
high other detector Untrusted CALL target/value reachable 60 yes yes
view
trace_id: 0xd84d0086460d9a66856ac9730f7bcaaad0053db9257d73a48fd019f73adbf237
call_targets: 0x0000000000000000000000000000000000000004, 0xee71c654973f10ca0dbd8b10555a5126740cf8cd
target_varies: yes
classification: target_varies
validation_json 
{
    "sink": "CALL",
    "errors": 0,
    "status": "confirmed",
    "attempts": 1,
    "trace_id": "0xd84d0086460d9a66856ac9730f7bcaaad0053db9257d73a48fd019f73adbf237",
    "confirmed": true,
    "trace_mode": "callTracer",
    "call_targets": [
        "0x0000000000000000000000000000000000000004",
        "0xee71c654973f10ca0dbd8b10555a5126740cf8cd"
    ],
    "matched_probe": null,
    "target_varies": true,
    "classification": "target_varies"
}
witness_json 
{
    "notes": "heuristic witness; entrypoints are best-effort selectors with zeroed calldata",
    "constraints": [],
    "entrypoints": [
        {
            "calldata": "0x06fdde03",
            "selector": "0x06fdde03",
            "calldata_variants": [
                "0x06fdde03",
                "0x06fdde030000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x231f23bb",
            "selector": "0x231f23bb",
            "calldata_variants": [
                "0x231f23bb",
                "0x231f23bb0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x313ce567",
            "selector": "0x313ce567",
            "calldata_variants": [
                "0x313ce567",
                "0x313ce5670000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x349ca600",
            "selector": "0x349ca600",
            "calldata_variants": [
                "0x349ca600",
                "0x349ca6000000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x8052474d",
            "selector": "0x8052474d",
            "calldata_variants": [
                "0x8052474d",
                "0x8052474d0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x8191745f",
            "selector": "0x8191745f",
            "calldata_variants": [
                "0x8191745f",
                "0x8191745f0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x95d89b41",
            "selector": "0x95d89b41",
            "calldata_variants": [
                "0x95d89b41",
                "0x95d89b410000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0xaa6d7de4",
            "selector": "0xaa6d7de4",
            "calldata_variants": [
                "0xaa6d7de4",
                "0xaa6d7de40000000000000000000000000000000000000000000000000000000000000000"
            ]
        }
    ]
}
evidence_json 
{
    "examples": [
        {
            "pc": 1009,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        }
    ],
    "call_count": 1,
    "guards_detected": [],
    "untrusted_call_count": 1
}