The Challenge contract is designed to test the player's ability to interact with the PendleIntern token and PendleRouter contract. The challenge is considered solved if the player's address holds at least 337 ether of the PendleIntern token.
The solution script Solution.s.sol aims to solve the challenge by interacting with the Challenge contract and performing token swaps. However, the solution has some critical flaws:
- SY Token Address Validation: The solution does not validate the address of the SY token, which could lead to potential security risks.
- Swap Balance Delta Check: During the swap operation, the solution does not check the balance delta of the token out before and after the swap. Instead, it directly uses the balance, which can be exploited to withdraw funds from the router.
- run(): The main function that executes the solution. It performs the following steps:
- Initializes the
Challengecontract. - Creates a new
SYTokeninstance. - Calls the
redeemSyToTokenfunction on theIPendleinterface to perform the token swap.
- Initializes the