Security Audit Report

WalletGuard.ai, powered by Gestalt Labs

April 17, 2026

ID: 70131cbe

0xf8c7...c03cEVMBench: 2024-08-wildcatv1View audit historyEthereumLive TargetHigh Risk

Verified on BaseVerify externally Prompt 0xd29afd...

Apr 17, 2026, 06:19

Standard AuditModel: Claude Sonnet 4.6

What you got

Tier: Standard ($29)
Model: Sonnet
Specialists completed: 8 of 8

Risk Level: High Risk

Efficiency

0C1H6M15L

22 security | 3 code quality | 2 gas

1 High: AccessControlHooks.sol (1)

In-Scope Security Score Guide

8.0 - 10.0Low Risk. No critical issues. Safe for interaction.

5.0 - 7.9Moderate Risk. Some issues found. Review before interacting.

1.0 - 4.9High/Critical Risk. Significant vulnerabilities detected.

Score is based on 27 findings from 9 specialist agents.

Exploit Analysis

Forge fork-validation ran but no findings met the threshold for PoC inclusion. See the per-finding "Forge validated" badges in the report below for individual results.

Executive Summary

The analyzed contract is the Wildcat Protocol, a permissioned fixed-rate lending market system with hooks-based access control, role provider credential management, and factory-driven market deployment. The analysis identified 0 critical, 2 high, 7 medium, 10 low, and 8 informational findings across 27 total reported items. The single most dangerous pattern is the missing market registration check on the hooks contract's onQueueWithdrawal function, which allows any caller to manipulate lender credential state via attacker-controlled role providers. Overall, the contract carries moderate-to-high risk; several logic errors and access control gaps in the hooks subsystem require remediation before production deployment, particularly for lender-adverse scenarios in fixed-term markets.

Critical Highlights

highHooks functions callable by any address, not just registered markets

A critical gate check is missing from the onQueueWithdrawal function in AccessControlHooks. Any external actor can call this function directly, impersonating a market, and supply crafted data that causes the hooks contract to make an external call to an attacker-chosen address. This can grant or revoke lender credentials for arbitrary accounts, allowing unauthorized lenders to gain deposit access or legitimate lenders to be locked out.

mediumrevokeRole can be called by any address that was previously set as lastProvider, even if the provider is no longer approved

Once a role provider is removed from the system, it should lose all authority. However, the revokeRole function only checks that the caller matches the address that last granted a credential, not whether that address is still an active provider. A removed provider can therefore continue revoking access for every lender it previously approved, silently denying those lenders the ability to deposit or withdraw.

mediumFixedTermLoanHooks: setFixedTermEndTime can set term to zero or past timestamp, allowing immediate withdrawals

Fixed-term loans are marketed to lenders as having a guaranteed lock-up period. However, the borrower can call setFixedTermEndTime with a value of zero or any past date, immediately unlocking withdrawals ahead of schedule. While this technically benefits lenders by allowing early exit, it breaks the fixed-term guarantee, may violate agreed terms, and could be used to manipulate market liquidity dynamics.

22 Security Findings | 3 Code Quality | 2 Gas Optimizations

high(1)

medium(6)

low(15)

Code Quality Observations(3)

Gas Optimizations(2)

Decentralization

3 centralization points identified

HooksFactory.registerWithArchController is callable by anyone

The function is permissionless but can only succeed once and only registers the factory itself. The risk is front-running the deployer, but the arch controller enforces single registration, limiting actual harm.

registerWithArchController()

Borrower can self-assign as role provider with infinite TTL in constructor

The borrower has a permanent, non-removable ability to grant credentials directly. This is a design-level centralization property lenders should be aware of, not an external exploit.

constructor()

FixedTermLoanHooks: borrower can permanently prevent withdrawals by not reducing fixedTermEndTime

This is a documented design property of fixed-term lending: the borrower controls the term. Lenders accept this constraint at deposit time. It is a centralization note about borrower power rather than an implementation bug.

onQueueWithdrawal()

Attack Chain Analysis

Credential Hijack via Unguarded onQueueWithdrawal and CEI Violationhigh

An attacker calls onQueueWithdrawal on AccessControlHooks directly (bypassing the missing isHooked check), supplying crafted hooksData that encodes an attacker-controlled provider address. The hooks contract calls validateCredential on the attacker-controlled provider (Finding 5). During that external call, the lender status has not yet been written back to storage (Finding 2, CEI violation in _tryValidateCredential). The attacker-controlled provider re-enters onDeposit or onQueueWithdrawal on the hooks contract to observe or modify stale lender state, granting credentials to unauthorized accounts or revoking credentials for legitimate lenders before the original write completes.

Hooks functions callable by any address, not just registered marketsvalidateCredential External Call in Hooks Before Lender Status Written to Storage

Removed Provider Revocation After Credential State Inconsistencymedium

A role provider is removed via removeRoleProvider. Because revokeRole does not check whether the caller is still an active provider (Finding 7, confirmed by Finding 13 as a duplicate path), the removed provider can revoke all credentials it previously issued. If the CEI violation in validateCredential (Finding 2) was previously exploited to issue inconsistent credential state, the removed provider can also selectively revoke only the legitimate lenders, compounding the denial-of-service impact.

revokeRole can be called by any address that was previously set as lastProvider, even if the provider is no longer approvedrevokeRole allows any non-provider to revoke roles of accounts with no providervalidateCredential External Call in Hooks Before Lender Status Written to Storage

Agent Coverage

Agent	Status	Findings	Severity	Confidence	Duration	Coverage
reentrancy	success	4	2M2L	68%	56.4s	Cross-function reentrancy in WildcatMarket deposit/withdraw/borrow cycle, ERC-777 callback reentrancy via safeTransferFrom in deposit, repay, collectFees, borrow, Callback-based reentrancy via validateCredential external call in AccessControlHooks and FixedTermLoanHooks, ReentrancyGuard implementation using transient storage (tstore/tload), CEI pattern compliance in _depositUpTo, repay, borrow, closeMarket, collectFees, Cross-contract reentrancy between market and hooks contracts, Read-only reentrancy via view functions (currentState, balanceOf, scaleFactor), Hook call ordering relative to state updates, Flash loan callback patterns in repayAndProcessUnpaidWithdrawalBatches, ERC-1155 batch transfer callbacks - not present in this contract, HooksFactory nonReentrant protection on deployMarket and deployHooksInstance, WildcatSanctionsEscrow releaseEscrow reentrancy
access control	success	7	1H2M2L	79%	1.3m	Access control on all external functions in AccessControlHooks and FixedTermLoanHooks, Role provider management (add, remove, update) for both hooks contracts, Credential validation logic (_tryValidateAccess, _tryGetCredential, _tryValidateCredential), Hooks dispatch functions (onDeposit, onQueueWithdrawal, onTransfer, etc.), HooksFactory deployment functions and access controls, Market deployment and parameter setting in WildcatMarket and WildcatMarketConfig, Ownership patterns in WildcatArchController (Ownable via Solady), Authentication of market functions (onlyBorrower, factory-only checks), Reentrancy protection using transient storage ReentrancyGuard, Signature authentication (none present - no EIP-712 or ecrecover usage), HooksConfig library for calldata construction to hook contracts, WildcatSanctionsEscrow and WildcatSanctionsSentinel for escrow logic, TransientBytesArray for temporary market parameter storage, SphereXProtectedRegisteredBase for operator access control
economic	success	6	3L	73%	1.5m	Flash loan attack vectors on deposit/withdrawal accounting, Oracle manipulation (no price oracles used - not applicable), Reentrancy across all market functions with transient storage guard, Access control on borrower-only and provider-only functions, Hooks calldata construction in LibHooksConfig for all hook types, Interest rate and fee calculations in FeeMath, Withdrawal batch processing and FIFO queue logic, Role provider credential grant/revoke logic, Fixed term loan end time validation, HooksFactory deployment of hooks instances and markets, Sanctions escrow creation and release logic, Governance attacks (not applicable - no governance tokens), MEV exposure on deposits/withdrawals, Integer overflow/underflow in assembly blocks, State machine transitions (market open/closed), Known lender status tracking across deposit/transfer/withdrawal hooks, Credential expiry and refresh logic in access control hooks, Assembly-level calldata encoding for hook dispatch, Transient storage usage for market parameters during deployment, Scale factor and normalized amount calculations
logic validation	success	6	1M2L	71%	1.2m	Input validation and parameter bounds in AccessControlHooks, FixedTermLoanHooks, HooksFactory, MarketConstraintHooks, Arithmetic safety in FeeMath, MathUtils, MarketState calculations, State machine integrity for market lifecycle (open/closed), withdrawal batches, fixed term locks, Role provider management and credential grant/revoke logic, Hook calldata construction in LibHooksConfig, Reentrancy protection via transient storage ReentrancyGuard, Market deployment salt validation and origination fee handling, Protocol fee update propagation via pushProtocolFeeBipsUpdates, Temporary reserve ratio calculation in MarketConstraintHooks, LenderStatus credential expiry and refresh logic, WildcatSanctionsEscrow and sanctions sentinel logic, ERC20 transfer/deposit/withdrawal flows in WildcatMarket, Encoding/hash collision risks in provider credential handling
code quality	success	9		71%	1.5m	ERC-20 standard compliance (transfer, transferFrom, approve, allowance, balanceOf, totalSupply, events), Access control on all privileged functions (onlyBorrower, onlyArchControllerOwner), Reentrancy protection via transient storage ReentrancyGuard, Role provider credential grant/revoke/refresh logic, FixedTermLoanHooks fixed term enforcement, HooksFactory market and hooks instance deployment, WildcatMarket deposit/withdraw/borrow/repay/closeMarket flows, CEI pattern violations, Unchecked downcasts and SafeCast usage, SphereX engine integration, Sanctions/escrow logic, Transient storage usage for market parameters, Create2 address computation, Assembly calldata manipulation in hooks dispatch, Integer overflow/underflow in interest calculations, Pull provider index management and removal, Known vulnerability patterns: off-by-one in loops, unchecked downcast truncation
compiler bugs	success	3		58%	48.8s	AccessControlHooks credential validation logic (grantRole, revokeRole, blockFromDeposits, _grantRole), FixedTermLoanHooks fixed term enforcement and withdrawal access control, HooksFactory deployment flow, salt validation, origination fee handling, WildcatMarket deposit/withdraw/borrow/repay/closeMarket state transitions, WildcatMarketBase reentrancy guard (transient storage), sanction checks, WildcatMarketWithdrawals withdrawal batch processing and execution, LibHooksConfig hook calldata construction for all hook types, RoleProvider pull-provider index management and removal, ReentrancyGuard transient storage implementation, WildcatSanctionsSentinel escrow creation and sanction override, Compiler bug patterns: ABIEncoderV2 storage arrays (pragma >=0.8.x, not affected), signed int array bugs (not applicable), constructor naming bugs (not applicable for 0.8.x)
assembly safety	success	5	3L	85%	58.3s	Full codepoint scan of all source files for non-ASCII characters, RTLO (U+202E), zero-width joiners/spaces, and Cyrillic homoglyphs in identifiers - none found except decorative ASCII art in comments, All assembly{} blocks examined for: hardcoded slot access, return vs leave confusion, selfdestruct paths, reversed shl/shr arguments, unchecked delegatecall success, free memory pointer restoration, out-of-bounds calldataload, HooksConfig.sol onBorrow/onRepay size constant copy-paste issue, HooksConfig.sol onSetAnnualInterestAndReserveRatioBips returndatasize check ordering, AccessControlHooks and FixedTermLoanHooks credential validation logic, ReentrancyGuard tstore/tload transient storage implementation, HooksFactory._deployHooksInstance assembly create block, LibStoredInitCode assembly deployment helpers, WildcatMarketBase state packing/unpacking assembly in _writeState and constructor, SphereXProtectedRegisteredBase engine interaction and storage slot patterns, WildcatSanctionsEscrow and WildcatSanctionsSentinel create2 patterns, FixedTermLoanHooks fixed term withdrawal restriction logic, TransientBytesArray tstore/tload encoding/decoding, JsonUtil assembly in create() function (sstore/sload to named slot pattern)
l2 specific	success	8	1M3L	67%	1.6m	AccessControlHooks: Role provider management, credential granting/revoking, access control hooks (onDeposit, onTransfer, onQueueWithdrawal), FixedTermLoanHooks: Fixed term end time validation, withdrawal restrictions, role provider management, HooksFactory: Market deployment, hooks instance deployment, fee management, salt validation, WildcatMarket: Deposit, borrow, repay, closeMarket, rescueTokens functions, WildcatMarketBase: State management, sanction checking, withdrawal batch processing, WildcatMarketConfig: Access control for setAnnualInterest, setMaxTotalSupply, setProtocolFeeBips, nukeFromOrbit, WildcatMarketToken: Transfer, approve, transferFrom with hooks, WildcatMarketWithdrawals: queueWithdrawal, executeWithdrawal, repayAndProcessUnpaidWithdrawalBatches, ReentrancyGuard: Transient storage reentrancy guard implementation, HooksConfig: All hook dispatch functions including onBorrow, onRepay, onDeposit, onTransfer, MarketConstraintHooks: Parameter validation, temporary reserve ratio logic, WildcatSanctionsSentinel: Escrow creation, sanction override management, WildcatSanctionsEscrow: Escrow release logic, LibStoredInitCode: CREATE2 deployment helpers, TransientBytesArray: Transient storage encoding/decoding, LenderStatus: Credential management, RoleProvider: Encoding/decoding, TTL calculations, Cross-function reentrancy via hooks callbacks, Integer overflow/underflow in MathUtils and SafeCastLib, Assembly-level memory safety in hook dispatchers

Scope and Methodology

Target0xf8c70fd3b3f7664a03c59b1b8d3b307c4e16c03c

ChainEthereum

Complexitycomplex

Standards DetectedERC20

Analysis ModelClaude Sonnet 4.6

Specialist Agents9

Agent Types

reentrancyaccess controleconomiclogic validationcode qualitycompiler bugsassembly safetyl2 specific

Scope TemplateGeneral Smart Contract (auto-selected)

MethodologyAutomated multi-agent analysis. Each specialist agent independently reviews the contract source code for vulnerabilities in its domain. Findings are deduplicated, scored, and synthesized into this report.

Findings are gated by demonstrated exploit feasibility against the analyzed contract. Observations that describe accepted blockchain behavior, consensus-layer issues, or infeasible preconditions are excluded from scored findings. See scope policy.

Severity Classification

CriticalDirect loss of funds or complete protocol compromise. Exploitable with high likelihood. Requires immediate remediation.

HighSignificant risk to funds or protocol integrity. Conditionally exploitable or requires specific circumstances. Should be fixed before deployment.

MediumLimited or conditional impact. May require unlikely conditions to exploit. Should be addressed but not blocking.

LowMinor impact. Best practice deviations, minor inefficiencies. Fix when convenient.

InformationalNo direct security impact. Code quality observations, gas optimizations, style recommendations.

Limitations

This automated audit has inherent limitations. The following areas are not covered.

-Business logic correctness: The audit detects pattern-level issues in code structure but cannot verify whether the protocol's intended economic or legal behavior (e.g., fixed-term contractual obligations, borrower repayment obligations) is correctly encoded. Intent divergence from implementation is not detectable by static analysis alone.
-Off-chain component security: The security of role provider infrastructure, keeper bots that process withdrawal queues, admin key management for the arch controller owner, and API services that supply hooksData blobs to callers are entirely outside the scope of this analysis.
-Economic modeling: The viability of the interest rate model, reserve ratio adequacy under stress, withdrawal queue mechanics under mass-exit scenarios, and liquidity assumptions for the underlying asset markets have not been evaluated.
-Cross-protocol composability: Interactions between Wildcat markets and external DeFi protocols (e.g., use of market tokens as collateral in lending protocols, integration with DEX liquidity pools) have not been analyzed for emergent exploit paths beyond the contracts examined.
-Governance and social dynamics: The arch controller owner has broad powers over template registration and fee configuration. Voter behavior, key compromise scenarios, multi-sig coordination risks, and bribery or coercion of key holders are outside the scope of automated analysis.
-SphereX integration: The SphereXProtectedRegisteredBase engine integration adds an external access control and monitoring layer whose internal logic, upgrade path, and potential for liveness interference have not been independently audited here.

Disclaimer

This report is an automated point-in-time assessment and does not guarantee protection against all possible attacks. It does not cover off-chain components, economic modeling, or business logic correctness unless explicitly noted. Changes to the contract after the audit commit are not reviewed. This is not financial or legal advice. WalletGuard, powered by Gestalt Labs, provides this analysis as-is with no warranty of completeness.

Embed Badge

Markdown

[![WalletGuard Audit](https://walletguard.ai/api/badge/70131cbe-94f8-4fb4-882e-83eda794ede3)](https://walletguard.ai/audit/70131cbe-94f8-4fb4-882e-83eda794ede3)

HTML

<a href="https://walletguard.ai/audit/70131cbe-94f8-4fb4-882e-83eda794ede3">
  <img src="https://walletguard.ai/api/badge/70131cbe-94f8-4fb4-882e-83eda794ede3" alt="WalletGuard Audit Badge" />
</a>

Secured by WalletGuard

How We Audit View all reports for this contractUID: 0xf8a5e2e3...13be7bThis report was produced by generic vulnerability pattern matching.

Modelsonnet

Duration4.1m

CostN/A

Tokens- in / - out

Source verified via Etherscan