Threat Model — Vault.sol
🤖 Auto-generated from contracts/Vault.sol @ commit a3f8c1d
Data Flow & Trust Boundaries
Identified Threats
HIGH
Oracle Manipulation
Price oracle (getPrice()) is an external call crossing trust boundary. Flash loan attacks could manipulate price feeds to drain vault.
MED
Reentrancy in withdraw()
State update occurs after external call in withdraw() at line 142. CEI pattern not followed.
LOW
Centralized Strategy Selection
Governor can change strategy without timelock. Consider adding a delay for strategy changes.
Key Features
- Auto-generated threat models with diagrams
- Dependency graph visualization
- Access control mapping
- Attack surface analysis
- Regenerates on every push (CI integration)
- Exportable to Notion / Confluence / GitHub Wiki