Discovery Trending Launches KYC Verified Watchlist Risk Alerts
Token Minter AI Threat Detection Token Burner
Blog & News Docs Visit SolidProof.io

LNKD Info

www.interlinkalliance.net

InterLink promotes #UniteDeFi and diversification, bridging communities and more together. Launched with staking and yield farming, offering users multiple reward options to choose from. With merch available, NFTs, and much more on the horizon, InterLink will be the hub you want to be in. From Staking to the Metaverse, you will find us everywhere soon, becoming your one-stop-shop for everything crypto.

LNKD Logo
Onboarded date 04/07/2025

Team and KYC Verification

The team has securely submitted their personal information to SolidProof.io for verification.

In the event of any fraudulent activities, this information will be promptly reported to the relevant authorities to ensure accountability and compliance.

TrustNet Score

The TrustNet Score evaluates crypto projects based on audit results, security, KYC verification, and social media presence. This score offers a quick, transparent view of a project's credibility, helping users make informed decisions in the Web3 space.

92.00
Poor Excellent

Real-Time Threat Detection

Real-time threat detection, powered by Cyvers.io, is currently not activated for this project.

This advanced feature provides continuous monitoring and instant alerts to safeguard your assets from potential security threats. Real-time detection enhances your project's security by proactively identifying and mitigating risks. For more information, click here.

Security Assessments

Select the audit
"Static Analysis Dynamic Analysis Symbolic Execution SWC Check Manual Review"
Contract address
0x6692...2E48
Network
BNB Smart Chain - Mainnet
License N/A
Compiler N/A
Type N/A
Language Solidity
Onboard date 2025/07/04
Revision date 2025/07/04

Summary and Final Words

No crucial issues found

The contract does not contain issues of high or medium criticality. This means that no known vulnerabilities were found in the source code.

Contract owner cannot mint

It is not possible to mint new tokens.

Contract owner cannot blacklist addresses.

It is not possible to lock user funds by blacklisting addresses.

Contract owner cannot set high fees

The fees, if applicable, can be a maximum of 25% or lower. The contract can therefore not be locked. Please take a look in the comment section for more details.

Contract cannot be locked

Owner cannot lock any user funds.

Token cannot be burned

There is no burning within the contract without any allowances

Ownership is not renounced

The owner retains significant control, which could potentially be used to modify key contract parameters.

Contract is not upgradeable

The contract does not use proxy patterns or other mechanisms to allow future upgrades. Its behavior is locked in its current state.

Scope of Work

This audit encompasses the evaluation of the files listed below, each verified with a SHA-1 Hash. The team referenced above has provided the necessary files for assessment.

The auditing process consists of the following systematic steps:

  1. Specification Review: Analyze the provided specifications, source code, and instructions to fully understand the smart contract's size, scope, and functionality.
  2. Manual Code Examination: Conduct a thorough line-by-line review of the source code to identify potential vulnerabilities and areas for improvement.
  3. Specification Alignment: Ensure that the code accurately implements the provided specifications and intended functionalities.
  4. Test Coverage Assessment: Evaluate the extent and effectiveness of test cases in covering the codebase, identifying any gaps in testing.
  5. Symbolic Execution: Analyze the smart contract to determine how various inputs affect execution paths, identifying potential edge cases and vulnerabilities.
  6. Best Practices Evaluation: Assess the smart contracts against established industry and academic best practices to enhance efficiency, maintainability, and security.
  7. Actionable Recommendations: Provide detailed, specific, and actionable steps to secure and optimize the smart contracts.

A file with a different Hash has been intentionally or otherwise modified after the security review. A different Hash may indicate a changed condition or potential vulnerability that was not within the scope of this review.

Final Words

The following provides a concise summary of the audit report, accompanied by insightful comments from the auditor. This overview captures the key findings and observations, offering valuable context and clarity.

Ownership Privileges
  • The owner can distribute rewards.
  • The owner can distribute rewards in batches.
  • The owner can start a new reward cycle with a fixed pool and an eligible balance.
  • The owner can mark the reward cycle as completed.
  • The owner can set the treasury wallet address.
  • The owner can exclude wallets from tax.
  • The owner can exclude wallets from rewards.
  • The owner can set the liquidity pair.
  • The owner can emergency withdraw tokens and BNB from the contract.

Note - This Audit report consists of a security analysis of the LNKD smart contract. This analysis did not include functional testing (or unit testing) of the contract’s logic. Moreover, we only audited one token contract for the LNKD team. Other contracts associated with the project were not audited by our team. We recommend investors do their own research before investing.

Files and details

Functions
public

/

State variables
public

/

Total lines
of code

/

Capabilities
Hover on items

/

Findings and Audit result

Critical
High
Medium
Low
Optimization
Informational
medium Issues | 4 findings

Resolved

#1 medium Issue
Missing 'require' check. (Potential honeypot)
LNKDToken.sol
L383-395
Description

The owner can set any arbitrary amount to the treasury wallet address, excluding zero address as this can lead to a potential honeypot if the owner has set the address to a contract address that cannot receive ETH. It is recommended that the address cannot be set to a contract address that cannot receive ETH to avoid these circumstances.

Resolved

#2 medium Issue
Unbounded Loop in Reward Distribution Creates Denial of Service Vulnerability
LNKDToken.sol
L413-418
Description

The distributeRewards function contains a critical design flaw that exposes it to a Denial of Service (DoS) attack. The function is designed to distribute stablecoin rewards to all eligible token holders by iterating through the entire holders array within a single transaction. While this works for a small number of holders, the gas cost of the transaction grows linearly with the size of the array. As the token gains popularity and the number of holders increases to thousands or tens of thousands, the gas required to execute the function will inevitably exceed the blockchain's block gas limit. For example, if the holders array grows to 50,000 addresses, the loop would consume an enormous amount of gas, making any transaction calling this function fail. At this point, it would become permanently impossible to distribute rewards using this method, effectively freezing the reward mechanism and breaking a core promise of the token.

Comments

To mitigate this, the unbounded loop must be removed. The contract should exclusively rely on a batched approach, like the distributeRewardsByBatch function, which processes a fixed number of holders per transaction. This ensures that reward distribution remains functional and affordable, regardless of how many holders the token has, by breaking the operation into smaller, manageable chunks that will not hit the gas limit.

Resolved

#3 medium Issue
Reward Calculation and Unfair Batching Lead to Incorrect and Inequitable Payouts
LNKDToken.sol
L309-380
Description

The reward distribution mechanism is critically flawed in two ways, leading to incorrect and unfair payouts. Firstly, the reward calculation in both distributeRewards and distributeRewardsBatch incorrectly uses the token's totalSupply() as the denominator. This significantly dilutes payouts because it includes tokens from reward-excluded addresses (like the treasury), causing a large portion of the reward pool to go undistributed. For example, if the reward pool is 1,000 USDC and eligible holders collectively own only 10% of the totalSupply, the current formula will only distribute 100 USDC in total, leaving 900 USDC locked in the contract instead of being paid out to the community. Secondly, the distributeRewardsBatch function is unfair because it reads the live stablecoin balance for each batch. This means holders processed earlier are paid from a larger pool than those in later batches, so two holders with identical token amounts will receive different rewards simply based on batch order.

Comments

The entire reward system should be refactored into a "Reward Cycle." A new owner-only function, startNewRewardCycle, must be introduced to snapshot the current stablecoin balance into a fixed rewardCyclePool variable and also calculate the totalEligibleBalance by summing the balances of only reward-eligible holders. The batch distribution function must then be rewritten to use these two fixed variables for all its calculations. The correct formula, (rewardCyclePool * holderBalance) / totalEligibleBalance, should be used to ensure 100% of the intended rewards are distributed fairly and proportionally among only the eligible participants, regardless of which batch they are in.

Resolved

#4 medium Issue
The owner can pause token transfer.
LNKDToken.sol
L463-467
Description

The contract owner possesses the centralized capability to halt all token transfers by invoking the pauseTransfers() function. This action sets the transfersPaused boolean flag to true. The internal _transfer function enforces this state, reverting any transaction if transfersPaused is true. An exception is made for addresses that are excluded from tax, which includes the contract owner and the treasury wallet. This allows privileged addresses to continue transacting while all other holders' assets are effectively frozen. While a corresponding resumeTransfers() function exists, its execution is also exclusively controlled by the owner. This creates a single point of failure and a significant centralization risk. A compromised or malicious owner could abuse this functionality to manipulate the market or lock up user funds indefinitely.

Comments

To mitigate the centralization risk of the owner pausing transfers, transition control from a single onlyOwner to a multi-signature wallet. This ensures that multiple trusted parties must approve any pause action, preventing unilateral control and a single point of failure. For enhanced security and user trust, implement a timelock contract. A timelock would enforce a mandatory delay between the decision to pause and the actual execution, providing token holders with a crucial window to react and manage their assets. This approach significantly decentralizes critical functionality, safeguarding the contract against potential abuse while still allowing for emergency interventions when necessary.

informational Issues | 1 findings

Resolved

#1 informational Issue
Floating pragma solidity version
LNKDToken.sol
L2
Description

Adding the constant version of solidity is recommended, as this prevents the unintentional deployment of a contract with an outdated compiler that contains unresolved bugs.