SWC-CTK-1

No CertificatesCertiK Whitepaper

SWC-CTK-2

No DataCertiK Whitepaper

SWC-CTK-3

Deprecated Opcode UsedCWE-477: Use of Obsolete Function

SWC-CTK-4

No AuditsCertiK Whitepaper

SWC-CTK-5

Lower Quality AuditsCertiK Whitepaper

SWC-CTK-6

Not Open SourcedCertiK Whitepaper

SWC-CTK-7

Open Sourced Without Meaningful Community InteractionsCertiK Whitepaper

SWC-CTK-8

Open HacksCertiK Whitepaper

SWC-CTK-9

Fixed HacksCertiK Whitepaper

SWC-CTK-10

No Bug BountyCertiK Whitepaper

SWC-CTK-11

Highly Controlled CentralizedCertiK Whitepaper

SWC-CTK-12

Loosely Controlled CentralizedCertiK Whitepaper

SWC-CTK-13

Not Actively Used in WeeksCertiK Whitepaper

SWC-CTK-14

Not Actively Used in DaysCertiK Whitepaper

SWC-CTK-15

Not Verified In Prestige ExplorersCertiK Whitepaper

SWC-CTK-16

Not Actively Maintained in MonthsCertiK Whitepaper

SWC-CTK-17

Not Actively Maintained in WeeksCertiK Whitepaper

SWC-CTK-18

No DocumentationsCertiK Whitepaper

SWC-CTK-19

Lower Quality DocumentationsCertiK Whitepaper

SWC-CTK-20

Very Low Comment RatioCertiK Whitepaper

SWC-CTK-21

Low Comment RatioCertiK Whitepaper

SWC-CTK-22

No TestsCertiK Whitepaper

SWC-CTK-23

Insufficient TestsCertiK Whitepaper

SWC-CTK-24

No Code CoverageCertiK Whitepaper

SWC-CTK-25

Insufficient Code CoverageCertiK Whitepaper

SWC-CTK-26

No Test EnvironmentsCertiK Whitepaper

SWC-CTK-27

Not Listed on Any ExchangesCertiK Whitepaper

SWC-CTK-28

Not Listed on Major ExchangesCertiK Whitepaper

SWC-CTK-29

No InsuranceCertiK Whitepaper

SWC-CTK-30

Duplicate Contract NameCWE-694: Use of Multiple Resources with ...

SWC-CTK-31

Uninitialized State VariablesCWE-665: Improper Initialization

SWC-CTK-32

Arbitrary Ether SendCWE-284: Improper Access Control

SWC-CTK-33

Incorrect ERC20 InterfacesCWE-1076: Insufficient Adherence to Expe...

SWC-CTK-34

Incorrect ERC721 InterfacesCWE-1076: Insufficient Adherence to Expe...

SWC-CTK-35

Improper Strict EqualitiesCWE-754: Improper Check for Unusual or E...

SWC-CTK-36

State Variable Shadowing from Abstract ContractsCWE-710: Improper Adherence to Coding St...

SWC-CTK-37

Tautology or ContradictionCWE-570: Expression is Always False

SWC-CTK-38

Boolean Constant MisuseCWE-670: Always-Incorrect Control Flow I...

SWC-CTK-39

Constant Functions Using Assembly CodeCWE-664: Improper Control of a Resource ...

SWC-CTK-40

Constant Functions Changing the StateCWE-664: Improper Control of a Resource ...

SWC-CTK-41

Imprecise Arithmetic Operations OrderCWE-682: Incorrect Calculation

SWC-CTK-42

Reentrancy without Theft of EthersCWE-841: Improper Enforcement of Behavio...

SWC-CTK-43

Unchecked SendCWE-252: Unchecked Return Value

SWC-CTK-44

Uninitialized Local VariablesCWE-665: Improper Initialization

SWC-CTK-45

Shadowing Built-in SymbolCWE-710: Improper Adherence to Coding St...

SWC-CTK-46

Shadowing Local VariablesCWE-710: Improper Adherence to Coding St...

SWC-CTK-47

External Calls inside LoopsCWE-670: Always-Incorrect Control Flow I...

SWC-CTK-48

Reentrancy BenignCWE-841: Improper Enforcement of Behavio...

SWC-CTK-49

Reentrancy on EventsCWE-841: Improper Enforcement of Behavio...

SWC-CTK-50

Market price dropCertiK Whitepaper

SWC-CTK-51

Sporadic TransactionsCertiK Whitepaper

SWC-CTK-52

Abnormal Peak of TransactionsCertiK Whitepaper

SWC-CTK-53

Concentrated User BaseCertiK Whitepaper

SWC-CTK-54

Negative Twitter SentimentCertiK Whitepaper

SWC-CTK-55

Owner OverprivilegedCertiK Whitepaper

SWC-CTK-56

Project Twitter Account Was DeletedCertiK Whitepaper

SWC-CTK-57

Project Telegram Account Was DeletedCertiK Whitepaper

SWC-CTK-58

Project Website Was UnaccessibleCertiK Whitepaper

SWC-CTK-59

Project Exchange Listing Was UnlistedCertiK Whitepaper

SWC-CTK-60

Community WarningsCertiK Whitepaper

SWC-CTK-61

Frequent Privileged OperationsCertiK Whitepaper

SWC-CTK-62

Team Member Names Hard to FindDefi Safety: Is the team public (not ano...

SWC-CTK-63

Team Member Names UnknownDefi Safety: Is the team public (not ano...

SWC-CTK-64

Lacking Project HistoryDefi Safety: Is there a development hist...

SWC-CTK-65

Short Project HistoryDefi Safety: Is there a development hist...

SWC-CTK-66

Dropped TrafficCertiK Whitepaper

SWC-CTK-67

Weak RandomnessCWE-338: Use of Cryptographically Weak P...

SWC-CTK-68

Improper Input ValidationCWE-20: Improper Input Validation

SWC-100

Function Default VisibilityCWE-710: Improper Adherence to Coding St...

SWC-101

Integer Overflow and UnderflowCWE-682: Incorrect Calculation

SWC-102

Outdated Compiler VersionCWE-937: Using Components with Known Vul...

SWC-103

Floating PragmaCWE-664: Improper Control of a Resource ...

SWC-104

Unchecked Call Return ValueCWE-252: Unchecked Return Value

SWC-105

Unprotected Ether WithdrawalCWE-284: Improper Access Control

SWC-106

Unprotected SELFDESTRUCT InstructionCWE-284: Improper Access Control

SWC-107

ReentrancyCWE-841: Improper Enforcement of Behavio...

SWC-108

State Variable Default VisibilityCWE-710: Improper Adherence to Coding St...

SWC-109

Uninitialized Storage PointerCWE-824: Access of Uninitialized Pointer

SWC-110

Assert ViolationCWE-670: Always-Incorrect Control Flow I...

SWC-111

Use of Deprecated Solidity FunctionsCWE-477: Use of Obsolete Function

SWC-112

Delegatecall to Untrusted CalleeCWE-829: Inclusion of Functionality from...

SWC-113

DoS with Failed CallCWE-703: Improper Check or Handling of E...

SWC-114

Transaction Order DependenceCWE-362: Concurrent Execution using Shar...

SWC-115

Authorization through `tx.origin`CWE-477: Use of Obsolete Function

SWC-116

Block Values as a Proxy for TimeCWE-829: Inclusion of Functionality from...

SWC-117

Signature MalleabilityCWE-347: Improper Verification of Crypto...

SWC-118

Incorrect Constructor NameCWE-665: Improper Initialization

SWC-119

Shadowing State VariablesCWE-710: Improper Adherence to Coding St...

SWC-120

Weak Sources of Randomness from Chain AttributesCWE-330: Use of Insufficiently Random Va...

SWC-121

Missing Protection against Signature Replay AttacksCWE-347: Improper Verification of Crypto...

SWC-122

Lack of Proper Signature VerificationCWE-345: Insufficient Verification of Da...

SWC-123

Requirement ViolationCWE-573: Improper Following of Specifica...

SWC-124

Write to Arbitrary Storage LocationCWE-123: Write-what-where Condition

SWC-125

Incorrect Inheritance OrderCWE-696: Incorrect Behavior Order

SWC-126

Insufficient Gas GriefingCWE-691: Insufficient Control Flow Manag...

SWC-127

Arbitrary Jump with Function Type VariableCWE-695: Use of Low-Level Functionality

SWC-128

DoS With Block Gas LimitCWE-400: Uncontrolled Resource Consumpti...

SWC-129

Typographical ErrorCWE-480: Use of Incorrect Operator

SWC-130

Right-To-Left-Override Control Character (U+202E)CWE-451: User Interface (UI) Misrepresen...

SWC-131

Presence of Unused VariablesCWE-1164: Irrelevant Code

SWC-132

Unexpected Ether BalanceCWE-667: Improper Locking

SWC-133

Hash Collisions With Multiple Variable Length ArgumentsCWE-294: Authentication Bypass by Captur...

SWC-134

Message Call with Hardcoded Gas AmountCWE-655: Improper Initialization

SWC-135

Code With No EffectsCWE-1164: Irrelevant Code

SWC-136

Unencrypted Private Data On-ChainCWE-767: Access to Critical Private Vari...