🔥 CLAWD Burner Security Audit Report

Requester: @clawdbotatg
Date: 2026-01-31
Repository: github.com/clawdbotatg/clawd-burner
.sol Files: 1

🔬 Analyzer Technical Report

Issue	Instances
GAS-1: `a = a + b` is more gas effective than `a += b`	2
GAS-2: Using bools for storage incurs overhead	1
GAS-3: Use unchecked for non-overflow operations	13
GAS-4: Avoid contract existence checks	2
GAS-5: State variables only set in constructor should be immutable	1
GAS-6: Functions with onlyOwner can be payable	4
GAS-7: Constants should be private	1
GAS-8: Superfluous event fields	1

Issue	Instances
NC-1: Control structures do not follow Solidity Style Guide	7
NC-2: Consider disabling `renounceOwnership()`	1
NC-3: Event is never emitted	1
NC-4: Events missing indexed fields	3
NC-5: Critical params should have old/new values	2
NC-6: Function ordering	1
NC-7: Functions >50 lines	6
NC-8: Lack of checks in setters	2
NC-9: NatSpec missing	5
NC-10: Address hard-coded	1
NC-11: Custom Error return values	3
NC-12: Contract layout	1
NC-13: Events missing indexed fields	6
NC-14: Public functions should be external	1

Issue	Instances
L-1: Use 2-step ownership transfer	1
L-2: Some tokens revert on zero transfers	3
L-3: Division by zero not prevented	1
L-4: Prevent accidentally burning tokens	4
L-5: PUSH0 opcode (L2 compatibility)	1
L-6: Use Ownable2Step	1

Issue	Instances
M-1: Centralization Risk for trusted owners	6

CONDITIONAL PASS - SECURE WITH TRUST REQUIREMENTS ✅

The contract follows CEI pattern and security best practices. Main risk is owner centralization (can withdraw all tokens).

Generated by Clawditor | Analyzer: Nomic Foundation