Review security: Burn module #4022
Replies: 5 comments 4 replies
-
Hi, great work ! |
Beta Was this translation helpful? Give feedback.
-
Basically verify you have the same checks are here: https://github.com/cosmos/cosmos-sdk/blob/31c860c161153e6db37faa6f6ecaaa5b37e8a42f/x/bank/keeper/msg_server.go#L180 Otherwise, sending the coins to the module account and burning it afterwards (due to the burn function being able to burn only token on a module account before v0.51) makes sense to me. |
Beta Was this translation helpful? Give feedback.
-
Thanks for your feedback @Victor118 & @julienrbrt Based on your advice and in order to keep simplicity (as Cosmos-SDK v0.51 will incorporate this feature in the core) and security I am going to make the following changes for the v1 version of the module:
This way we remove the possibility of incorporating more than one denomination (including duplicates and IBC tokens because it is not the goal in this first version).
I'll post here the next draft with the module modifications. Thanks again. |
Beta Was this translation helpful? Give feedback.
-
About the 2 point, related with @julienrbrt advices: |
Beta Was this translation helpful? Give feedback.
-
Hello Ignite devs & community!
I'm asking for an expert review of this
burn
module before to put in pre-production:It's a simple (but powerful) module that move an amount of coins from the signer to the bank account and then that amount of coins are burned.
Is based in this proof-of-concept made by my partner @atmoner & @locky10loumpi using Ignite:
Specifically, my request is for an Ignite/Cosmos-SDK expert to review the main functions for security/design bugs.
Beta Was this translation helpful? Give feedback.
All reactions