Security Considerations

Ticket caluclation

NOTE! Be aware that the calculation of raffle tickets is based on the tradeAmount parameter in the router's execute function. Although tradeAmount is validated against msg.value, this validation can be bypassed if the target protocol returns ether to the user. If your smart contract includes ether refunds, additional validation measures are necessary to ensure accurate ticket calculation.

Multisig

Given the critical functions dependent on the owner role, we advise securing your RPSRaffle owner account with a multisig to mitigate the risk of private key loss. The Safe protocol is a reliable option for this purpose.