Pancake Bunny (BUNNY)

From CryptoWiki

Basics

  • Based in:
  • Started in / Announced on:
  • Testnet release:
  • Mainnet release:

History

Audits & Exploits

  • Bug bounty program can be found [insert here]. "No bug bounty program offered." (12-5-2021)
  • Score of 32% on DeFi Safety (12-5-2021): "​Haechi preformed an audit on PancakeBunny. The audit meets the reqs for a 70%. But, on reading the audit it is very thin and mentions a big weakness on code not within the scope of the audit." On Access Controls: "No indication of which contracts are upgradeable. Roles are only mentioned in the audit, not in protocol docs. The degree of change an owner can enact is not defined. All contracts are clearly labelled as upgradeable (or not) -- 0% The type of ownership is clearly indicated (OnlyOwner / MultiSig / Defined Roles) -- 10% The capabilities for change in the contracts are described -- 0% The degree of change an owner can enact is not defined. The impact these changes for investors are not defined."

Bugs/Exploits

"Aren’t Flash loans Earitating” said the hacker. $45 million gone. This was made possible due to a bug in the protocol that uses PancakeSwap to retrieve the prices of PancakeSwap liquidity providers (BNB-BUSDT / BNB-BUNNY). 8 flash loans were used to manipulate the price on various PancakeSwap pools, creating a skewed calculation of BUNNY from the VaultFliptoFlip vault."

  • From Rekt (18-7-2021):

"Two months ago PancakeBunny got rekt on BSC, now the same thing has happened on Polygon. $2.4 million lost. They say there’s a plan to compensate their users, so it seems they’re not ready to give up yet. Despite the growing accusations of it being “an inside job”, the PancakeBunny TVL is slowly returning. This same exploit was used on “ApeRocketFi”, a direct fork of PancakeBunny, just 2 days ago. ApeRocket lost $260K on BSC and $1M on Polygon, yet PancakeBunny didn’t prevent the same thing from happening to them. If so, why would they risk alerting PancakeBunny to the loophole? Perhaps somehow they knew that wouldn’t be an issue... Of course, it’s possible that the attackers were not the same person, or that they didn’t realise the same attack vector was possible in the original code."

Governance

Admin Key

DAO

Treasury

Token

Launch

Token Allocation

Utility

Other Details

Stablecoin

Coin Distribution

Technology

  • Whitepaper can be found [insert here].
  • Code can be viewed [insert here].

Implementations

How it works

Fee Mechanism

Upgrades

Staking

Validator Stats

Liquidity Mining

Scaling

Interoperability

Other Details

Oracle Method

Privacy Method

Compliance

Their Other Projects

Roadmap

  • Can be found [Insert link here].

Usage

Projects that use or built on it

Competition

Pros and Cons

Pros

Cons

Team, Funding, Partnerships, etc.

Team

  • Full team can be found [here].

Funding

Partners

(:

Knowledge empowers all and will help us get closer to the decentralised world we all want to live in!

Making these free wiki pages is fun but takes a lot of effort and time.

If you have enjoyed reading, tips are appreciated :) This will help us to keep expanding this archive of information.

ETH tip address: 0x83460bE5F218b1520B69D702cE60A1DE37dD8E31

BNB tip address: bnb13ps9k4jf3purxetcuxvz74w6yuncq8yxkycfpu

Also check out CoinTr.ee for more content.