Report Date
March 13, 2024
Status
Closed
Payout
shift function allows 1000 bean to be traded for 999 eth . all funds can be stolen
‣
BIC Response
This is not a valid bug report because it describes expected behavior of the shift function. The shift function accepts a minAmountOut parameter, which indicates the minimum amount of the output token that should be sent back to the user in order for the function call to succeed. At some point the input token must be sent to the Well before the shift function is called in order to be able to get any tokens out as a result of the shift function call.
Due to these reasons, we are closing the submission and no reward will be issued.