Auto Scroll Example Lorem ipsum dolor sit amet, consectetur adipiscing elit. Curabitur commodo nulla at erat commodo, nec sollicitudin lectus lobortis. Donec volutpat, nisl at congue auctor. Phasellus in ligula vehicula, mattis nulla eu, rutrum nunc. Sed aliquet justo a fermentum viverra. Integer in semper purus. Etiam at condimentum nunc. Morbi vestibulum felis vitae eros posuere, a fringilla sapien venenatis. Duis sed nisi vel sem placerat volutpat. Nam quis scelerisque orci, nec lacinia sem. Auto Scroll Lorem ipsum dolor sit amet, consectetur adipiscing elit. Nulla vestibulum posuere nisl, ac tempus velit malesuada sit amet. Fusce ac rutrum mi. Duis euismod. Mauris ac orci vel nunc condimentum rhoncus. Morbi nec augue vel nunc mollis varius. Pellentesque et libero lectus. Sed scelerisque vel odio eget rutrum. Quisque tincidunt lectus sed purus tincidunt ultricies. Aliquam scelerisque condimentum quam nec placerat. Nullam faucibus elit...
GMX Paid A Hefty Prize Because Of This Flaw
GMX, a decentralized exchange, awarded Collider Research a $1 million bug bounty in 2022. This payout was in recognition of their discovery of a critical bug in GMX’s smart contracts that directly affected how the protocol tracks outstanding debt.
The Bug Affecting GMX And GLP
GMX has not provided more information on how the bug was patched and when. However, the DEX operator said the bug negatively impacted GMX v1 liquidity providers (LPs) as the code led to inaccuracies in quotes related to “the fair value of tokens.” Specifically, the bug affected the Global Liquidity Pool (GLP), causing it to deviate from its fair value.
Since GMX supports up to 50X leverage, a system tracks debt borrowed by traders and how it is repaid. It is smart contract-driven, and the trader enters into debt for every leveraged position. If prices move against them, they are liquidated, and the margin securing the leveraged position is transferred to the protocol.
Any disruption to this mechanism can severely affect GMX, impacting revenue and disincentivizing liquidity providers from engaging.
In September 2022, a flaw affecting GLP and impacting the DEX’s “minimal fee” and “zero price impact” features saw an unidentified exploiter make way with over $570,000 from the AVAX/USD marketplace.
By deploying on Arbitrum, a layer-2, and Avalanche, a high throughput and low-fee blockchain, the protocol supports low-fee swapping powered by GLP, a liquidity pool holding all assets traded on GMX. From the GLP, liquidity providers who could have been significantly impacted can earn fees from swap fees, spreads from leverage trading, and whenever there is asset rebalancing.
Bounty Program Can Reward Up To $5 Million
Further details show that GMX’s bug bounty program focuses on ensuring their smart contracts and application function as designed without weakness, considering the trustless nature of swaps. The goal is to prevent theft of user funds through various means, including unauthorized transfers, price manipulation of GLP, freezing, and other threat vectors.
Whenever there is a flaw, and the white hacker identifies it, the GMX bug bounty program will distribute rewards depending on the flaw’s severity. However, any submission must accompany a report demonstrating how the code error impacts the protocol before being reviewed and the reward distributed.
Even so, in GMX, all critical smart contract vulnerabilities are subject to a 10% cap on the potential damage it would have caused. The maximum bounty paid to developers who pick out critical code flaws is $5 million.
Feature image from Canva, chart from TradingView
Popular posts from this blog
Huge Surges: Polygon (MATIC) Soars After Dragon Fruit Upgrade, Everlodge (ELDG) Continues to Deliver Impressive Returns and Uniswap (UNI) Hits 200M Transactions Milestone!
The cryptocurrency market is a dynamic landscape of innovation, achievements, and transformative projects. In recent developments, Polygon (MATIC) has been making waves after the Dragon Fruit upgrade, Uniswap (UNI) achieved a significant milestone, and Everlodge (ELDG) continues to impress investors with its performance. This article dives into the details of these exciting developments. Join the Everlodge presale and win a luxury holiday to the Maldives Polygon (MATIC): Soars with Dragon Fruit Polygon (MATIC), a popular L2 scaling solution for Ethereum, has experienced a surge in demand following its Dragon Fruit upgrade. The Polygon price soared from $0.52 to $0.54 after the upgrade went live. This enhancement has significantly improved the Polygon network’s overall user experience and scalability. Due to all these reasons, Polygon has gained recognition as a reliable platform for dApps, attracting developers and projects looking to build on its infrastructure. As a result, exp...
We must rethink purchasing power parity (PPP) in the cryptocurrency era
Cryptocurrencies are promising a novel avenue for stabilizing global purchasing power parity amidst traditional economic turbulence. This article delves deep into the transformative capabilities of digital assets, identifying both potential opportunities and hurdles that lie ahead. Nestled securely and transparently within the realms of blockchain technology, digital assets are scripting a new global financial tale, one that surpasses geographical borders and paves the way for a redefined understanding of purchasing power parity (PPP). Before delving further, it is crucial to comprehend the recent fluctuations in traditional economic measurements. A pertinent example is the notable decrease in the US dollar’s purchasing power, accentuating the necessity to adapt and evolve amidst changing economic landscapes. Through the lens of the Consumer Price Index (CPI) — a barometer gauging the alterations in the price of goods and services over time — it was observed that in 2022, the US ...
Here Are The Major Takeaways From The Ripple Victory Party
Although the legal battle between Ripple and the SEC isn’t officially over, the payments technology company has gone ahead to host a party to celebrate its partial win in court. After the court win, Ripple’s founder and CEO Brad Garlinghouse announced on social media a September 29 date for what was called a “Victory Party.” Now that the event has been held, it hasn’t gone without a mark for the XRP community. 🎉 Save the Date 🎉 We’re hosting a community celebration on September 29 in New York City! Stay tuned for more details to come later this week. pic.twitter.com/PlaqPoQcte — Ripple (@Ripple) August 28, 2023 A Sense Of Relief And Validation After years of battling it out against the SEC in court, Ripple finally got some reprieve. While Ripple’s legal troubles aren’t over, the company threw a party. As expected, the party was a lavish one, with many people even queuing to get into the event. Lenny Kravitz, a legendary figure in the world of rock music, gave a performance ...
Comments
Post a Comment