SIP - XXX
Title: SIP009/SIP010 Safe Token Transfer
Authors: Mike Cohen, Marvin Janssen
Consideration: Technical
Type: Standard
Status:
Created:
License:
Sign Off:
Additional SIP fields
Layer: traits
Requires: SIP009, SIP010
Replaces: ???
A safe token standard for SIP009 and SIP010 is required. We introduce a new SIP that complements the existing standards and adds a new function to each.
We need this standard because right now it is unsafe for contract principals to call arbitrary SIP009/SIP010 token transfer functions without reviewing and allowlisting the contracts individually. The trend has been for token contracts to guard their transfer function only by tx-sender
, which forces the intermediary contract to use as-contract
to change the sender context. This in turn allows a malicious token contract to assume full ownership of many other tokens guarded in the same way.