Tripwire

Find contracts. Test them. Review real vulns.

Contract

0xa0cfe8af2ab5c9232714647702dbacf862ea4798 checked chain 1

Latest run: 0fb93155-944c-4ca8-9339-4f05dc1ba13c complete

Dedaub

Queue = batch runner. Audit = immediate run. Audit + LLM forces codex.

Value & Balances

$0.00

last balance 3 months ago

ETH

0.0000

WETH

0.0000

USDC

0.00

USDT

0.00

Findings Signal

confirmed findings

crit 0 high 0 unconfirmed 5 total 5

Latest run

0fb93155-944c-4ca8-9339-4f05dc1ba13c complete

validated = confirmed for call sinks; sink observed for others

Proxy & Workflow

linkage

Proxy status

non-proxy

Implementation address

—

Proxies pointing here

View top proxies

0x3980c9ed79d2c191a89e02fa3529c60ed6e9c04b $22,928,345.70

Workflow

checked

attempts 0

checked 1 week ago

Latest Findings

validated = confirmed for call sinks; sink observed for others

No confirmed findings yet.

Show unconfirmed findings

Severity	Tool	Title	Validated	Confirmed
critical	codex	Unprotected initialize lets an attacker set a fake messenger and drain the bridge	no	—
high	detector	Untrusted CALL target/value reachable	no	no
high	detector	ETH value transfer possible	no	no
info	cast	Heavy EXTCODE*/BALANCE usage	no	—
info	cast	Heavy CALL-family usage	no	—

From run 0fb93155-944c-4ca8-9339-4f05dc1ba13c

Codex

latest run

complete findings

Unprotected initializer enables full bridge takeover and arbitrary ETH/ERC20 withdrawals if the proxy is not initialized in the deployment transaction.

Top findings

critical Unprotected initialize lets an attacker set a fake messenger and drain the bridge

View run

Code Metadata

fingerprint

Created block

—

Code size

11527

Codehash

0x368e45dfc5afd1d2e448c2fb053d8864d66368d377a92a3713aaac513e723d57

Priority score

0.000000

Latest run id

—

Recent Runs

last 20

Run ID	Status	Validated	Total findings	Created
0fb93155-944c-4ca8-9339-4f05dc1ba13c	complete	crit 0 high 0	5	3 months ago