WatchPug
function mint(address _to, uint256 _amount)
external
override
onlyRole(MINTER_ROLE)
{
_mint(_to, _amount);
emit Mint(_to, _amount);
}
Using the mint() function of L2LivepeerToken, an address with MINTER_ROLE can burn an arbitrary amount of tokens.
If the private key of the deployer or an address with the MINTER_ROLE is compromised, the attacker will be able to mint an unlimited amount of LPT tokens.
We believe this is unnecessary and poses a serious centralization risk.
Consider removing the MINTER_ROLE, make the L2LivepeerToken only mintable by the owner, and make the L2Minter contract to be the owner and therefore the only minter.
The text was updated successfully, but these errors were encountered:
All reactions