Linting rules

E017: unauthorized-access

Detects storage mutations (`contract.setData(...)`, `*.save()`) that are reachable without a preceding admin sender check.

Metadata

Code: E017
Rule: unauthorized-access
Status: Preview since v0.0.1
Quick fix: sometimes available

What it does

Detects storage mutations (contract.setData(...), *.save()) that are reachable without a preceding admin sender check.

Why is this bad?

State-changing operations that are not guarded by admin authorization may allow arbitrary inbound senders to mutate contract storage.

Example

fun onInternalMessage(in: InMessage) {
    val storage = lazy Storage.fromCell(contract.getData());
    storage.save();E017: possible storage write without admin sender check
}

Use instead:

fun onInternalMessage(in: InMessage) {
    val storage = lazy Storage.fromCell(contract.getData());
    assert (in.senderAddress == storage.adminAddress) throw ERR_UNAUTHORIZED;
    storage.save();
}

Source code

Last updated on

E016: send-mode-literal

Warns when `send` mode is passed as numeric literal instead of `SEND_MODE_*` constants.

E018: import-path-can-use-mappings

Warns when a relative import path can be replaced with a configured `@mapping/...` path.

E017: unauthorized-access

Metadata

What it does

Why is this bad?

Example

On this page