NEAR Checklist
Release: Version 2.0
# | Item | Description |
---|---|---|
1 | As-of-yet Near blockchain unknown classes of vulnerabilities | Checking for any other as-of-yet unknown classes of vulnerabilities arising from the structure of the Near blockchain. |
2 | Near contract standards violation | FT or NFT smart contracts meet to Near standards |
3 | Missing Initializer Attribute | Init function marked with init attribute does not exist or init attribute is missing on initializer function |
4 | Missing "private" macro in cross-contract callback | Usually when a contract has to have a callback for a remote cross-contract call this callback method should only be called by the contract itself. It's to avoid someone else calling it and messing the state. |
5 | Missing "paybable" macro on payable functions | We can allow methods to accept token transfer together with the function call. This is done so that contracts can define a fee in tokens that needs to be payed when they are used. By the default the methods are not payable and they will panic if someone will attempt to transfer tokens to them during the invocation. |
6 | Collection type is suitable for structure type | Check if a suitable collection is used for declared structure and contract logic. |
7 | Near-Sdk is up to date | Check is near-sdk is up to date |