Class UnprotectedCall

A detector that identifies unprotected calls or state modifications.

Why is it bad?

Without conditions or permission checks, some calls can be exploited to disrupt the contract's intended behavior or allow malicious actors to perform unauthorized actions. For example, a publicly accessible set function in a mapping or an unguarded send call can enable draining contract's funds, denial-of-service (DoS) attacks or other malicious activities.

Example

receive(msg: Insert) {
    // Bad: No protection for the mapping update
    m.set(msg.key, msg.val);
}

Use instead:

receive(msg: Insert) {
    // OK: Permission check ensures only the owner can modify the state
    require(ctx.sender == this.owner, "Invalid sender");
    m.set(msg.key, msg.val);
}

Hierarchy (view full)

DataflowDetector
- UnprotectedCall

Index

Constructors

constructor

new UnprotectedCall(ctx): UnprotectedCall
Parameters
- ctx: MistiContext
Returns UnprotectedCall
Inherited from DataflowDetector.constructor
- Defined in src/detectors/detector.ts:51

Properties

`Readonly`ctx

ctx: MistiContext

severity

severity: Severity = Severity.HIGH

Accessors

id

get id(): string
Gets the short identifier of the detector, used in analyzer warnings.

Returns string
The unique identifier of the detector.
Inherited from DataflowDetector.id
- Defined in src/detectors/detector.ts:57

kind

get kind(): DetectorKind
Gets the kind of the detector.

Returns DetectorKind
Inherited from DataflowDetector.kind
- Defined in src/detectors/detector.ts:184

shareImportedWarnings

get shareImportedWarnings(): WarningsBehavior
Defines the behavior of warnings generated by this detector when working with multiple projects within a single Tact configuration.

Here are the available options:
1. "union" Leave this value if you don't care about warnings generated in other projects.
2. "intersect" If the warning is generated for some source location of the imported file, it should be generated by each of the projects. Example: Constants from an imported file should not be reported iff they are unused in all the projects, so you need "intersect".
Returns WarningsBehavior
Inherited from DataflowDetector.shareImportedWarnings
- Defined in src/detectors/detector.ts:96

usesSouffle

get usesSouffle(): boolean
Checks whether this detector needs the Soufflé binary to be executed.

Returns boolean
Inherited from DataflowDetector.usesSouffle
- Defined in src/detectors/detector.ts:103

Methods

check

check(cu): Promise<Warning[]>
Executes the detector's logic to check for issues within the provided compilation unit.
Parameters
- cu: CompilationUnit
  The compilation unit to be analyzed.
Returns Promise<Warning[]>
List of warnings has highlighted by this detector.
Overrides DataflowDetector.check
- Defined in src/detectors/builtin/unprotectedCall.ts:244

getCategory

getCategory(): undefined | Category[]
Returns the category of generated warnings if specified.

Returns undefined | Category[]
Inherited from DataflowDetector.getCategory
- Defined in src/detectors/detector.ts:78

getSeverity

getSeverity(): {
max: Severity;
min: Severity;
}
Returns minimum and maximum severities of generated warnings.

Returns {
max: Severity;
min: Severity;
}
- max: Severity
- min: Severity
Inherited from DataflowDetector.getSeverity
- Defined in src/detectors/detector.ts:69

`Protected`makeWarning

makeWarning(description, loc, data?): Warning
A wrapper method that creates Misti warnings with additional context about the detector generated it.
Parameters
- description: string
- loc: SrcInfo
- data: Partial<{
      category: Category;
      extraDescription: string;
      quickfixes: QuickFix[];
      severity: Severity;
      suggestion: string;
  }> = {}
Returns Warning
Inherited from DataflowDetector.makeWarning
- Defined in src/detectors/detector.ts:126

`Protected`skipUnused

skipUnused(name): boolean
Returns true if the identifier with the given name should not be reported by unused variables detectors.
Parameters
- name: string
Returns boolean
Inherited from DataflowDetector.skipUnused
- Defined in src/detectors/detector.ts:118

Class UnprotectedCall

Why is it bad?

Example

Hierarchy (view full)

Index

Constructors

Properties

Accessors

Methods

Constructors

constructor

Parameters

Returns UnprotectedCall

Properties

category

Readonlyctx

severity

Accessors

id

Returns string

kind

Returns DetectorKind

shareImportedWarnings

Returns WarningsBehavior

usesSouffle

Returns boolean

Methods

check

Parameters

Returns Promise<Warning[]>

getCategory

Returns undefined | Category[]

getSeverity

Returns { max: Severity; min: Severity; }

max: Severity

min: Severity

ProtectedmakeWarning

Parameters

Returns Warning

ProtectedskipUnused

Parameters

Returns boolean

Settings

On This Page

`Readonly`ctx

Returns {
max: Severity;
min: Severity;
}

`Protected`makeWarning

`Protected`skipUnused