Releases: Ackee-Blockchain/wake
Releases · Ackee-Blockchain/wake
v1.2.1
v1.2.0
- added new Head Overflow Calldata Tuple ABI-Reencoding Bug detector
- added
detectors.excludeanddetectors.onlyconfig options to exclude some detectors from the analysis / to only run certain detectors - added new Axelar
contractIddetector - added LSP code lens with click-to-copy selectors above each (public/external) function / variable / error / event declaration
- LSP diagnostics originating from the solc compiler run are now marked with the
Woke(solc)label - added
woke.lsp.force_rerun_detectorsLSP command - improved detection of
ownablepattern
v1.1.0: LSP graphs
- implemented LSP commands to generate:
- function control flow graphs
- contract inheritance graph
- contract C3 linearized inheritance graph
- inheritance graph of a whole project
- improved re-entrancy and ownable detectors
- LSP code lens no longer disappear when editing a file
- enabled LSP code lens by default
- fixed a compilation bug when a project contains multiple files with the same content
- other small fixes
v1.0.2
v1.0.1
v1.0.0: First public release
Features
- First vulnerability detectors:
- function-call-options-not-called
Function with call options actually is not called, e.g.this.externalFunction{value: targetValue}. - old-gas-value-not-called
Function with gas or value set actually is not called, e.g.this.externalFunction.value(targetValue). - reentrancy
Detects re-entrancy vulnerabilities. - unchecked-function-return-value
Return value of a function call is ignored. - unsafe-address-balance-use
Address.balance is either written to a state variable or used in a strict comparison (== or !=). - unsafe-delegatecall
Delegatecall to an untrusted contract. - unsafe-selfdestruct
Selfdestruct call is not protected.
- function-call-options-not-called
- LSP server
- Fuzzer
- A property-based fuzzer for Solidity smart contracts that allows testers to write their fuzz tests in Python.