Digbi2121

We express our gratitude to the Digbi2121 team for the collaborative engagement that enabled the execution of this Smart Contract Security Assessment.

Digbi2121 is a blind-mint ERC-721A NFT collection with reveal mechanism, on-chain royalties (ERC2981), and admin controls.

The system users should acknowledge all the risks summed up in the risks section of the report

{Finding_Table?columns=title,severity,status&setting.filter.type=Vulnerability}

Documentation quality

• Functional requirements are provided.

• Technical description is provided.

• • Run instructions are provided.

  • Technical specification is provided.

• The NatSpec documentation is sufficient.

Code quality

• The code leverages OpenZeppelin contracts and follows established patterns.

• The development environment is configured.

Test coverage

Code coverage of the project is 0%.

• Test cases are not provided.

DIGBI2121 is a blind-mint NFT collection protocol with the following contract:

Digbi2121 — an ERC-721A NFT contract that implements a fixed-supply, blind-mint drop with a delayed-reveal mechanism, on-chain royalties via ERC-2981, and owner-controlled administrative operations.

It has the following attributes:

• Name: DIGBI 2121

• Symbol: DIGBI2121

• Max supply: 2121 tokens

The contract follows a standard NFT drop lifecycle. After deployment, all tokens display a shared hidden metadata URI. The owner activates the public sale, allowing users to mint at the fixed price (0.06 ETH) up to the per-wallet cap (3 tokens). The owner may also mint tokens for free via a separate function at any time, regardless of sale state or pause, with no per-wallet restriction. Once the collection is ready, the owner calls a one-time reveal function that switches all token URIs from the hidden placeholder to real per-token metadata. The owner may then permanently lock the base URI and the royalty configuration independently, making each immutable.

The owner additionally controls pausing and unpausing public minting, withdrawing collected ETH to an arbitrary recipient, rescuing accidentally sent ERC-20 tokens, and setting a provenance hash as a one-time write to prove metadata integrity, setting royalty recipient and fee (up to 15%).

Privileged roles

The protocol uses OpenZeppelin’s Ownable pattern with a single privileged owner role. The contract owner has the following capabilities:

• Can mint up to the full MAX_SUPPLY through ownerMint() to arbitrary recipient addresses.

• Can enable or disable public minting at any time through setSaleActive().

• Can pause or unpause the contract, although the pause only disables public mint() and does not restrict ownerMint() or token transfers.

• Can set the hidden metadata URI through setHiddenUri().

• Can reveal the collection metadata through reveal(), which acts as a one-way switch from hidden metadata to revealed metadata.

• Can update the base URI through setBaseUri(), allowing metadata changes until the URI is locked.

• Can permanently lock the base URI through lockBaseUri(), making the metadata configuration immutable.

• Can set the provenance hash through setProvenance(), which may only be called once.

• Can update royalty settings through setRoyalty(), including both the royalty receiver and fee, up to the configured 15% cap, until royalties are locked.

• Can permanently lock royalty settings through lockRoyalty(), making the royalty configuration immutable.

• Can withdraw ETH through withdraw(), sending the entire contract ETH balance to an arbitrary recipient chosen by the owner.

• Can withdraw ERC-20 tokens through withdrawERC20(), transferring any ERC-20 tokens held by the contract to an arbitrary recipient chosen by the owner.

The scope of the project includes the following smart contracts from the provided repository:

Assets in Scope