Audit

OmniTensor enlisted Ether Authority to conduct a security audit of its smart contract, aiming for a secure and smooth deployment. The audit reviewed the Solidity code for the OmniTensor token (OMNIT) on September 18, 2024, using both manual analysis and automated tools like Slither and Solhint.

Key Features of OMNIT ERC20 Token

  • ERC20 Standard

    OmniTensor follows the ERC20 token standard, supporting token transfers, approvals and balance management.

  • Ownership Control

    The contract allows for ownership transfer and renunciation, giving the owner the power to adjust taxes, manage excluded accounts and enable trading.

  • Uniswap Integration

    The contract is connected to Uniswap V2 to handle token swaps and liquidity management.

  • Taxation Mechanism

    A transaction tax (initially 30%) is applied on Uniswap trades, adjustable by the owner.

  • Limits

    The contract sets maximum transaction and wallet holding limits, which can be disabled by the owner.

Audit Scope

The audit reviewed several key areas, including:

  • Verifying the smart contract’s functionality.

  • Identifying potential security issues.

  • Reviewing code quality and adherence to best practices.

  • Assessing business risks tied to ownership control.

Summary of Findings

The audit yielded a favorable assessment of the OmniTensor smart contract, with no critical vulnerabilities found. Some minor issues were highlighted. Below is a summary of the key findings:

No Critical or High-Severity Issues

No vulnerabilities were identified that posed immediate risks.

Low Severity Issues:

  • Centralization Risk

    The owner controls trading and liquidity management, raising a potential risk if the owner's wallet is compromised. Securing the owner's private keys is crucial.

  • Lack of Event Logging

    Some functions, such as withdrawEth, recoverTokens and adjustTaxRates, lack event logs, making it harder to track changes. Adding logs is recommended for better traceability.

  • Manual Token and Coin Transfers

    Before trading begins, the owner must manually transfer tokens and coins. Automating this process or ensuring careful execution is advised.

Informational:

  • Unused Gas in withdrawEth Function

    Adding checks for the contract balance before executing transfers would improve gas efficiency.

  • Immutable Variables

    Declaring certain variables, such as wallet addresses, as immutable can help improve gas efficiency and make third-party reviews easier.

Business Risk Analysis

  • Transaction and Wallet Limits

    These limits can help prevent large transactions, but once disabled, they cannot be re-enabled, which may pose a risk.

  • Ownership Control

    The owner retains significant control over trading, taxes and withdrawing funds. While this offers flexibility, it reduces decentralization. Renouncing ownership when no longer needed is suggested to mitigate risk.

The OmniTensor smart contract successfully passed the audit without critical issues. Minor recommendations focused on ownership management and key security practices. Investors and users are encouraged to do their own research, as a technical audit does not ensure ethical conduct from the project team.

Audit Report

The full audit report is publicly available and can be accessed at: https://etherauthority.io/omnitensor-smart-contract-audit

Last updated