Smart contract code should strive to be strict.
Strict code behaves predictably, is easier to maintain, and increases a system's ability to handle nonideal conditions.
Our assessment of Growth DeFi found that many of its states, roles, and permissions are loosely defined.
Document the use of administrator permissions.
Monitor the usage of administrator permissions.
Specify strict operation requirements for each contract.
- ConsenSys Audit Growth DeFi Finding 4.3
- Access Control
- Least Privilege Mechanism
- Loosely Defined Roles/Permissions
- Document & Monitor Roles & Permissions