Discovery Trending Launches KYC Verified Watchlist Risk Alerts
Token Minter AI Threat Detection Token Burner
Blog & News Docs Visit SolidProof.io

DSNOK Info

dsnok.com

D-SNOK is a non-custodial blockchain platform that automatically transfers your digital assets to your designated beneficiaries — securely, privately, on-chain.

DSNOK Logo
Onboarded date 04/06/2026

Team and KYC Verification

The team has securely submitted their personal information to SolidProof.io for verification.

In the event of any fraudulent activities, this information will be promptly reported to the relevant authorities to ensure accountability and compliance.

TrustNet Score

The TrustNet Score evaluates crypto projects based on audit results, security, KYC verification, and social media presence. This score offers a quick, transparent view of a project's credibility, helping users make informed decisions in the Web3 space.

81.89
Poor Excellent

Real-Time Threat Detection

Real-time threat detection, powered by Cyvers.io, is currently not activated for this project.

This advanced feature provides continuous monitoring and instant alerts to safeguard your assets from potential security threats. Real-time detection enhances your project's security by proactively identifying and mitigating risks. For more information, click here.

Security Assessments

Select the audit
"Static Analysis Dynamic Analysis Symbolic Execution SWC Check Manual Review"
Contract address
N/A
Network N/A
License N/A
Compiler N/A
Type N/A
Language Solidity
Onboard date 2026/06/05
Revision date 2026/06/16

Summary and Final Words

No crucial issues found

The contract does not contain issues of high or medium criticality. This means that no known vulnerabilities were found in the source code.

Contract owner cannot mint

It is not possible to mint new tokens.

Contract owner cannot blacklist addresses.

It is not possible to lock user funds by blacklisting addresses.

Contract owner cannot set high fees

The fees, if applicable, can be a maximum of 25% or lower. The contract can therefore not be locked. Please take a look in the comment section for more details.

Contract cannot be locked

Owner cannot lock any user funds.

Token cannot be burned

There is no burning within the contract without any allowances

Ownership is not renounced

The owner retains significant control, which could potentially be used to modify key contract parameters.

Contract is not upgradeable

The contract does not use proxy patterns or other mechanisms to allow future upgrades. Its behavior is locked in its current state.

Scope of Work

This audit encompasses the evaluation of the files listed below, each verified with a SHA-1 Hash. The team referenced above has provided the necessary files for assessment.

The auditing process consists of the following systematic steps:

  1. Specification Review: Analyze the provided specifications, source code, and instructions to fully understand the smart contract's size, scope, and functionality.
  2. Manual Code Examination: Conduct a thorough line-by-line review of the source code to identify potential vulnerabilities and areas for improvement.
  3. Specification Alignment: Ensure that the code accurately implements the provided specifications and intended functionalities.
  4. Test Coverage Assessment: Evaluate the extent and effectiveness of test cases in covering the codebase, identifying any gaps in testing.
  5. Symbolic Execution: Analyze the smart contract to determine how various inputs affect execution paths, identifying potential edge cases and vulnerabilities.
  6. Best Practices Evaluation: Assess the smart contracts against established industry and academic best practices to enhance efficiency, maintainability, and security.
  7. Actionable Recommendations: Provide detailed, specific, and actionable steps to secure and optimize the smart contracts.

A file with a different Hash has been intentionally or otherwise modified after the security review. A different Hash may indicate a changed condition or potential vulnerability that was not within the scope of this review.

Final Words

The following provides a concise summary of the audit report, accompanied by insightful comments from the auditor. This overview captures the key findings and observations, offering valuable context and clarity.

Smart Contract Analysis Statement

Contract Analysis

The DSNOKDisbursement contract holds owners' deposited tokens and distributes them by basis-point allocation to verified beneficiaries once a vault is triggered, taking a platform fee and sweeping any remainder to the custodial contract. The overall design follows common, well-established patterns on Ethereum.

Ownership Privileges

The ownership of the contract has been assigned to a single operator address, currently the deployer wallet rather than the intended multi-sig. The owner retains full privileges including:

  • Recording a trigger and executing disbursements to verified beneficiaries.
  • Executing the fallback sweep of unclaimed funds to the custodial contract.
  • Setting the fee rate up to a three percent cap and changing the fee receiver and high-value threshold.
  • Pausing and unpausing deposits, withdrawals and disbursements.
  • The operator can only send disbursements to the beneficiary's pre-registered locked wallet, not to an arbitrary address.
  • The operator cannot set the fee above the three percent cap, so the fee can never reach twenty five percent.
  • The operator cannot disburse twice for the same beneficiary and token, nor outside the verification window.
  • The operator role is transferred through a two-step handover that the new operator must accept.

Security Features

The contract implements several positive security features:

  • All token transfers use the safe ERC-20 wrapper and follow a checks-effects-interactions order with reentrancy protection.
  • Each beneficiary and token pair can be disbursed only once, preventing double payouts.
  • Disbursements are bounded by a verification window and route only to locked beneficiary wallets.
  • The fallback sweep can only send funds to the custodial contract, never to an arbitrary address.

Note - This Audit report consists of a security analysis of the DSNOKDisbursement smart contract. This analysis did not include economic analysis of the contract's tokenomics. Moreover, we only audited the main contract for the D-SNOK team. Other contracts associated with the project were not audited by our team. We recommend investors do their own research before investing.

Files and details

Findings and Audit result

Critical
High
1
Medium
3
Low
Optimization
1
Informational
critical Issues | 1 findings

Resolved

#1 critical Issue
Disbursement shares are computed from a shrinking base
DSNOKDisbursement.sol
L270
Description

executeDisbursement reads the current deposit balance as the base, computes the beneficiary gross as base times allocation basis points divided by 10000, and then subtracts that gross from the deposit. Because the base shrinks after each payout, every beneficiary after the first is paid a percentage of the reduced remainder rather than of the original deposit. With a 1000 token deposit split 60 and 40 percent, the first beneficiary receives 600 but the second receives only 160 instead of 400, and 240 is stranded and later swept to the treasury. The outcome also depends on the operator-chosen order, which enables favoritism. This is a deterministic, high likelihood loss of funds for intended beneficiaries.

Comments

Snapshot the total deposited amount for each owner and token at trigger time and compute every beneficiary's gross from that fixed base, while tracking the remaining amount separately. Add a regression test asserting that a 60/40 split of 1000 tokens pays exactly 600 and 400.

Alleviation

Resolved - the total deposited amount per owner and token is snapshotted at trigger time and every beneficiary share is computed from that fixed base rather than the shrinking live balance, so a sixty and forty split of one thousand tokens pays exactly six hundred and four hundred regardless of order.

medium Issues | 4 findings

Resolved

#1 medium Issue
High-value timelock is advertised but not enforced and the threshold is unused
DSNOKDisbursement.sol
L209
Description

recordTrigger emits a TimeLockApplied event announcing a release time twenty four hours in the future, but it never sets the time-lock release value. The time-lock check treats an unset value as already passed, so unless the operator separately calls applyTimeLock, disbursement is allowed immediately and the emitted event misleads anyone watching it. Separately, the high value threshold is stored and settable but never compared against anything, so high value detection is entirely manual and off-chain.

Comments

In recordTrigger, compare the deposited value against the high value threshold and set the time-lock release accordingly so the emitted event reflects state that is actually enforced. Either wire the threshold into the decision or remove it to avoid implying a protection that does not exist.

Alleviation

Resolved - recording a trigger now sets the time-lock release when the snapshot meets or exceeds the high-value threshold, and the time-lock check enforces it on both disbursement and the permissionless claim, so the emitted event reflects enforced state. Note the threshold is compared per token in native units, which is a rough measure across tokens with different decimals.

Resolved

#2 medium Issue
Deposit accounting trusts the requested amount
DSNOKDisbursement.sol
L156
Description

The deposit function credits the requested amount to the owner's balance and then pulls that amount with safeTransferFrom. For fee-on-transfer or rebasing tokens the contract receives less than the requested amount, so the owner is credited more than the contract actually holds. Because balances are commingled in one contract, the shortfall surfaces later as failed transfers for the last beneficiary or sweep and can affect other owners. No token allowlist exists.

Comments

Measure the amount actually received using the balance difference before and after the transfer and credit that value, and maintain an allowlist of standard non-rebasing tokens. This prevents over-crediting with fee-on-transfer or rebasing tokens.

Alleviation

Resolved - deposits now credit the measured balance delta before and after the transfer, so fee-on-transfer or rebasing tokens can no longer over-credit the owner.

Acknowledged

#3 medium Issue
Beneficiaries have no permissionless path; operator can censor payouts
DSNOKDisbursement.sol
L228
Description

Every step that moves an estate to its beneficiaries is gated solely on the operator: only the operator can verify a beneficiary and only the operator can execute a disbursement, and there is no permissionless path for a beneficiary to claim what they are owed. A negligent or malicious operator can simply never verify or disburse, after which the funds drift to the custodial contract and ultimately the treasury. Some operator involvement is inherent to the off-chain verification design, so the real gap is the absence of any time-bounded fallback that lets beneficiaries recover without the operator.

Comments

Add a fallback that does not depend on continued operator action, for example a permissionless claim that becomes available to a verified beneficiary after a bounded delay, or a timelock after which anyone can complete the disbursement using the on-chain configuration. Beneficiaries should not be able to be starved indefinitely by operator inaction.

Alleviation

The team acknowledged this as intended business logic

Resolved

#4 medium Issue
Operator cannot be rotated in the disbursement contract
DSNOKDisbursement.sol
L64
Description

The operator address is set only in the constructor and there is no function to change it, unlike the vault which has a two-step transfer. All disbursement and sweep functions are therefore permanently bound to the deployment-time operator. If the operator key must be rotated, which is the documented pre-mainnet plan, the contract cannot follow and would need to be redeployed with deposits migrated.

Comments

Add a two-step operator transfer consistent with the vault and coordinate rotation across all four contracts. Without it the documented migration to a multisig, or recovery from a compromised key, forces a full redeployment and migration of deposits.

Alleviation

Resolved - a two-step operator transfer with events has been added, matching the vault, so the operator can be rotated without redeployment.

low Issues | 4 findings

Pending

#1 low Issue
Verification window starts at an operator-chosen timestamp
DSNOKDisbursement.sol
L199
Description

The seven day verification window, and the timing of the fallback sweep and the custodial recovery window that follow, all start from the timestamp at which the operator calls recordTrigger, not from the moment the vault was actually triggered on-chain. Because the operator decides when to record the trigger, they control the start of the whole post-trigger lifecycle and can effectively delay or compress the time beneficiaries have to be verified.

Comments

Anchor the verification window and the downstream sweep and recovery timeline to the on-chain vault trigger time rather than to whenever the operator chooses to call recordTrigger. Otherwise the operator can shift or compress the effective window beneficiaries have to come forward.

Alleviation

Not resolved - the verification window and the downstream sweep and recovery timeline still start when the operator records the trigger, not at the on-chain vault trigger, so the operator still controls when the lifecycle begins. Anchor the window to the vault trigger time.

Pending

#2 low Issue
Owners pay a fee to withdraw their own pre-trigger principal
DSNOKDisbursement.sol
L178
Description

The withdraw function deducts the platform fee rate, currently 1.5 percent and up to 3 percent, from the owner's own deposited funds before any disbursement has occurred. The operator can raise the rate to the cap with no notice or delay, and the new rate applies to funds already deposited. Owners therefore pay a service fee simply to retrieve their own principal.

Comments

Confirm whether charging a fee on a pre-trigger self-withdrawal is intended. Consider waiving it, or fixing the fee rate at deposit time so a later rate increase cannot apply retroactively to funds already on deposit.

Alleviation

Accepted - the early withdrawal fee is now explicitly documented as a deliberate platform charge. No code change is required if this is the intended product behaviour.

Resolved

#3 low Issue
Fee receiver change is silent
DSNOKDisbursement.sol
L334
Description

setFeeReceiver changes the address that receives all platform fees but emits no event, unlike setFeeRate and setHighValueThreshold. A change to where fees flow should be logged.

Comments

Emit an event with the old and new fee receiver in setFeeReceiver so the destination of platform fees is observable on-chain.

Alleviation

Resolved - the fee receiver update now emits an event carrying the old and new address.

Pending

#4 low Issue
Deployed source does not match documented verification status
DSNOKDisbursement.sol
L1
Description

The deployment notes state that all four Sepolia contracts are verified, but the disbursement contract is not source-verified on the explorer at the time of this review; only the bytecode is published. The bytecode footer confirms the 0.8.24 compiler and the embedded peer addresses match the documented vault, beneficiary and custodial addresses, but the missing source reduces transparency for the contract that actually holds user funds.

Comments

Publish and verify the source for the disbursement contract on the block explorer. Users who entrust funds to this contract must be able to read the verified source, and the deployment notes should match reality.

Alleviation

Operational - cannot be verified from source. The rewritten contracts must be re-deployed and their source verified on every target explorer, and the deployment notes updated to match.

optimization Issues | 1 findings

Resolved

#1 optimization Issue
Revert strings instead of custom errors
DSNOKDisbursement.sol
L98
Description

The contract uses require statements with string messages throughout. Custom errors are cheaper to deploy and to revert with on this compiler version.

Comments

Replace require string messages with custom errors to reduce deployment and runtime gas.

Alleviation

Resolved - revert strings have been replaced with custom errors. A few declared errors are now unused and can be removed.

informational Issues | 1 findings

Pending

#1 informational Issue
Operator chooses disbursement order
DSNOKDisbursement.sol
L228
Description

Disbursements are executed one beneficiary at a time and the operator decides the order and timing. Once the share-calculation defect is corrected the order no longer changes amounts, but the operator still controls sequencing, which is worth documenting for transparency.

Comments

Even after the share-calculation defect is fixed, document that the operator controls the order and timing of disbursements, or process beneficiaries deterministically so the operator cannot influence who is paid first.

Alleviation

Accepted - with the snapshot fix the operator-chosen order no longer changes amounts. Sequencing remains operator-controlled and is documented.