Azuki co-founder: Vulnerability in OpenSea whitelist contract

time:2022-02-05 09:00 source:Internet

On February 5th, the co-founder of NFT project Azuki, 2PMFLOW.ETH, said on Twitter that he noticed a problem on OpenSea recently, namely: someone can use a variable proxyRegistryAddress to become a whitelist of NFT contracts. For those of you who are minting NFTs, you need to understand the risks involved, as anyone with the contract owner's key can transfer your tokens to whatever they want without your approval in any wallet address. 2PMFLOW.ETH revealed that they noticed this issue with some upcoming NFT projects. A more secure alternative to support OpenSea whitelisting is actually quite simple, just set the Opensea proxyRegistryAddress in the constructor and make it immutable, and the operation takes as little as 2 minutes to deploy.

Blockchain Quotes
  • {{items}}
Stock