On November 1st, I discovered a vulnerability on 1Hive Gardens. Anyone who submit a proposal would be arbitrarily able to drain the Common Pool funds. Upon discovering this vulnerability, I, myself decided to drain all the HNY in the Common Pool to my wallet, and then sent it to the Gardens Multisig after discussions as we thought it would not be appropriate to hold those funds in an EOA, no matter how safe it can be.
This proposal is to reimburse myself and those who helped solve the vulnerability in Gardens due to a misconfiguration allowing anyone to drain funds from the Common Pool arbitrarily. I, unintentionally, acted as a whitehat as soon as I discovered the vulnerability and transferred around 8K HNY to my wallet as soon as possible.
Afterward, through efforts from the Seeds and Fauna, the vulnerability allowing the drainage of funds from the Common Pool was solved.
I was not intending to get reimbursed myself for this considering the current financial situation of our DAO. However, 4 days ago, two huge earthquakes stuck Turkey, one with 7.8 and one with 7.6 magnitude, killing thousands and leaving millions homeless and in hunger.
I shall be distributing 75% of the funds from this reimbursement proposal to the Gnosis DAO contributors efforts in helping funding NGOs in Turkey on Giveth.
And the rest of the funds shall be distributed among the people who helped solve the vulnerability in Gardens through Coordinape.
Team Information (For Funding Proposals)
Also DM me if I did not mention anyone if the proposal passes and we go into the Coordinape stage.
Funding Information (For Funding Proposals)
(300 HNY for myself as a bug bounty) (75% of which shall be directly donated to GnosisDAO’s Giveth Project)
(200 HNY to be distributed through Coordinape)
Ethereum address where funds shall be transferred:
(my personal wallet)
Link to Proposal on Gardens: