Report #19211

Missing payable modifiers for important functions

BIC Response

The bug bounty program notes that: "All vulnerabilities noted in any audit report in the Beanstalk Audits repository (or otherwise known by the BIC, BCM, or Root DAO Multisig) are not eligible for a reward."

The BIC is already aware that a payable modifier is not on the transferOwnership and claimOwnership functions. More notably, it is not clear why this would be a vulnerability and the report does not state why this would be the case.

For these reasons, we are closing the submission and a reward will not be issued.