Economy Design Mistakes
Errors that break game economies.
No token sinks
criticalCreating tokens without ways to remove them from circulation. Pure emission.
Impact: Hyperinflation. Token becomes worthless. Economy collapses.
Fix: Design meaningful sinks: crafting, upgrades, fees. Balance emissions with burns.
Exploitable reward formulas
highReward calculations that can be gamed through unintended strategies.
Impact: Farmers find optimal exploit strategy. Drain rewards intended for real players.
Fix: Model economy before launch. Red team your reward formulas.
Uncapped minting
criticalNo limits on how many tokens can be minted in a time period.
Impact: Exploit that triggers mint floods the economy. Instant inflation spiral.
Fix: Rate limits on all minting. Caps per address and globally.
Ignoring multi-accounting
highNot considering that one person can have many accounts/wallets.
Impact: Rewards meant for many players concentrated in few hands.
Fix: Design assuming Sybil attacks. Cap per-wallet rewards.
Smart Contract Mistakes
On-chain vulnerabilities.
Block hash randomness
criticalUsing block.timestamp or blockhash for game randomness.
Impact: Miners/validators can predict or manipulate outcomes.
Fix: Use Chainlink VRF or commit-reveal schemes.
Missing reentrancy guards on rewards
criticalReward claim functions without reentrancy protection.
Impact: Attacker drains reward pool by reentering during claim.
Fix: Use ReentrancyGuard. Follow checks-effects-interactions.
Upgradeable contracts without safeguards
highUpgradeable game contracts where single key can change everything.
Impact: Single compromise or rug pull can change all game rules.
Fix: Multisig for upgrades. Timelock delays. Transparent upgrade process.
No pause mechanism
highContracts without ability to pause during exploit.
Impact: Cannot stop ongoing exploit. Damage continues until fix deployed.
Fix: Implement pausable pattern. Multi-party control of pause.
Client Security Mistakes
Game client vulnerabilities.
Client-authoritative game state
criticalTrusting client to report game outcomes, loot, or achievements.
Impact: Cheaters modify client to claim any outcome. Infinite rewards.
Fix: Server-authoritative for all economic outcomes. Client is display only.
Admin keys in client
criticalEmbedding treasury or admin private keys in game client code.
Impact: Anyone decompiling client gets full admin access.
Fix: Admin operations server-side only. Keys never in client.
No anti-cheat
highGame client without protection against memory editing or bots.
Impact: Widespread cheating. Legit players leave. Economy ruined by botters.
Fix: Implement anti-cheat. Server-side validation. Behavioral detection.
Unvalidated transaction parameters
criticalClient generates transactions with user-controllable parameters not validated server-side.
Impact: Users modify transaction data to claim unearned rewards.
Fix: Server generates transaction data. Sign with backend key.
NFT and Asset Mistakes
Errors with game assets.
Off-chain metadata tampering
highNFT metadata stored on centralized server without integrity checks.
Impact: Team can change NFT properties after sale. Rug potential.
Fix: IPFS for metadata. On-chain attributes when possible. Immutable after mint.
Asset duplication bugs
criticalContract bugs allowing same asset to exist twice or be minted multiple times.
Impact: Unique items duplicated. Supply assumptions broken.
Fix: Test minting thoroughly. Unique ID constraints.
Uncontrolled secondary sales
mediumNo consideration for how assets will be traded on secondary markets.
Impact: Wash trading, market manipulation, royalty evasion.
Fix: Design with secondary market in mind. Accept royalty limitations.
No asset freezing mechanism
highUnable to freeze compromised or exploited assets during incidents.
Impact: Exploited items traded away before team can respond.
Fix: Implement freeze functionality with proper governance.
Predictable token IDs
mediumSequential or predictable NFT token IDs enabling sniping.
Impact: Bots snipe rare items by predicting IDs before reveal.
Fix: Randomize token ID assignment. Delayed reveal mechanisms.
Economy Balancing Mistakes
Errors in ongoing economy management.
No economic circuit breakers
highMissing automatic halts when economy metrics go abnormal.
Impact: Exploits run unchecked until manual intervention.
Fix: Automatic pauses when daily volume or minting exceeds thresholds.
Static reward rates
highRewards that cannot adjust to player count or token price.
Impact: Economy death spiral when conditions change.
Fix: Dynamic rewards based on treasury health and player metrics.
Ignoring whale behavior
highNot accounting for players with massive resource advantages.
Impact: Whales dominate. New players cannot compete. Game dies.
Fix: Diminishing returns. Activity-based rewards. Catch-up mechanics.
No fee adjustment mechanism
mediumTransaction fees that cannot adapt to network conditions or token value.
Impact: Fees become prohibitive or negligible, breaking UX or spam protection.
Fix: Oracle-based fee adjustment. USD-denominated minimum fees.
Anti-Exploit Mistakes
Missing protections against common exploits.
No rate limiting on claims
highReward claims without cooldowns or rate limits.
Impact: Scripts claim rewards faster than intended, draining pools.
Fix: Per-address cooldowns. Global rate limits. Batch claim penalties.
Flash loan vulnerable pricing
criticalGame asset prices based on single-block AMM state.
Impact: Flash loans manipulate prices for unfair advantages.
Fix: Use TWAPs. Multi-block price averaging. Oracle integration.
No slippage protection
highTrades execute without maximum slippage parameters.
Impact: Sandwich attacks extract value from player trades.
Fix: User-defined slippage limits. MEV protection integration.
Timestamp manipulation vulnerability
mediumGame logic relying on block.timestamp for time-sensitive features.
Impact: Validators manipulate timestamp within allowed range for advantage.
Fix: Use block numbers for timing. Accept timestamp variance.
Integration Mistakes
Errors in blockchain integration.
Trusting on-chain data without indexing
mediumReading blockchain state directly in game loop, causing performance issues.
Impact: Slow game. RPC rate limits. Poor player experience.
Fix: Index on-chain data. Cache appropriately. Background sync.
No transaction failure handling
highGame assumes transactions always succeed. No retry or error states.
Impact: Players lose progress or get stuck when transactions fail.
Fix: Handle all transaction states. Retry logic. Clear error messages.
Wallet UX friction
mediumRequiring signature for every action. Pop-ups for minor operations.
Impact: Players frustrated. Abandon game due to wallet fatigue.
Fix: Batch transactions. Session keys. Embedded wallets for minor actions.
Incorrect chain event handling
highNot handling chain reorgs or transaction replacements.
Impact: Game state desyncs from actual on-chain state.
Fix: Wait for finality. Handle reorg events. Resync mechanisms.
Insufficient error messages
mediumGeneric error messages that don't help players resolve issues.
Impact: Players confused and frustrated. Support tickets increase.
Fix: Specific error messages with suggested actions.
Pro Tips
Playtest your economy with adversarial players before launch.
Token sinks are as important as faucets. Plan both from day one.
Anti-cheat is a continuous effort, not a one-time implementation.
More for GameFi Developer
Ready to build your Web3 career?
Browse hundreds of open roles across the decentralized ecosystem.
Explore Jobs