# Response to Hacken Report Addressing comments from hacken report about `borealis-engine-lib`. ## Medium ### 1. Missing account validation The account is validated when it is created. Check method [AccountId::new](https://github.com/aurora-is-near/aurora-engine/blob/ee58890ef1e6c8631a21b1ef69e2111398451d45/engine-types/src/account_id.rs#L20-L23). ### 3. Missing file path validation PathBuf are always ["valid paths"](https://www.reddit.com/r/rust/comments/ft30mm/why_pathbuffrom_str_can_never_fail/). If the path doesn't exist, the code will fail in the same way as expected (with File doesn't exist error). ## Low ### 1. Memory corruption This is not directly affecting the code at the moment. Created [issue](https://github.com/aurora-is-near/aurora-engine/issues/612) to address it. ### 2. Unused dependency Addressed in commit [#53a6b79](https://github.com/aurora-is-near/borealis-engine-lib/pull/19/commits/53a6b79a8812919d6ea3cbdc694ba5de2d4e3b3a).