Om Malviya

for DeFi to overcome the stagnation, it requires following - provably secure opsec - provably secure front-ends Smart-contract risk is something I think people can take But a risk that someone can social engineer an AAVE engineer to push a malware during his routine github pushes - that can wipe out all my funds is too big of a risk to take Specially after having seen the sophistication of these attacks I think its completely plausible that NK can even honeytrap some devs into maybe inviting them inside their home and take the ledger and sign a malicious tx, because why not all cards are on deck, from attackers side - but that another aavev3 fork on x chain doesn't even know how configure safe, but still he would deploy that protocol so burden is on us, to make the defi security as easy as deploying a pumpfun token calling people who do poor opsec dumb is not a solution, make it almost impossible to do so idk how exactly to solve this, i have few ideas, but until then people will stay away from defi on top if you add curator risks, collateral risk - it almost feel silly to even have DeFi for serious capital

$79.25 billion in stablecoin volume on Polygon in May 2026. The second highest month on record, driven by 198M USD stablecoin transactions. That's more than any other chain. Polygon is built for payments 📈

yk tezos was built on the promise of formal verification and raised 232m back in the day - and its easier to formally verify michelson (i guess) but state of defi is so bad, formally you would verify but what? there is not even one good wallet yet - and team working on wallets have been historically slow no assets issued other than tez, btc variants of tzbtc and others are ded, doesn't work and no way to hold lets say use my eth on tezos to borrow some money over formally verified contracts eth is closing gaps with formal verification also soon canton also has a pretty good approach for reg defi and formally verified contracts - pos is now mainstream - formal veri. will also be mainstream - defi is mainstream - prediction markets are mainstream - tokenised assets are also mainstream in nothing, tezos and these type (polkadot) of chains did pave the way for industry to move forward so net positive contribution at the end

> be zcash > one of the most carefully built privacy systems in crypto > cryptographers, auditors, the actual best people in the field > then, a bug surfaces > it was sitting in two lines of code the whole time > “looks obvious in retrospect” > it always does > this is not a zcash problem but a problem for every piece of software ever written > smart people write code, smart people review it, but bugs ship anyway > enter the doom take > ai is now insanely good at finding bugs > faster than humans, at scale > “if machines find every bug then nothing is safe and trustless anything is dead” > mfw the thing everyone is scared of is the thing that saves us > enter formal verification > instead of writing code and testing it > you write down exactly what it should do, in math > then you PROVE it, with a proof a computer checks > been around since the 1950s > not new > testing only checks the cases you thought of > the bug lives in the case you didnt > a proof covers every possible input at once > all of them > if any input misbehaves the proof just fails > you cant ship broken and not know > the zcash bug under formal verification is not a subtle thing someone has to spot but a hole in the proof > proof doesnt complete > you find out BEFORE anything ships > not 4 hours into a thread on a saturday > “ok so why doesnt everyone do this” > used to be slow and brutally hard > lived in aerospace + chip design + nuclear > writing proofs by hand = serious expertise + serious time > then ai showed up > plot twist > the exact skill that makes ai scary on offense > reasoning through huge amounts of low level detail fast > is the skill that makes formal verification finally cheap > ai writes the code AND the proof > humans keep the one job that matters: deciding what “correct” means > crypto cares more than anyone > normal software patches the bug and moves on > crypto code holds the money > crypto code IS the rules > being wrong is public and usually permanent > highest stakes, worst margin for error, perfect fit for proving > SO > while the timeline argues about whether ai killed security forever > some people are building for the other outcome via ai enhanced formal verification > ai-assisted formal verification proven onchain can securely house ALL public software, this is the S in CROPS !!

claude opus found a bug in crypto's ~$9B privacy token that could print money out of thin air - and it's fucking scary zcash had a hidden flaw in its code. it let you create fake zec from nothing - and it was completely invisible. nobody could even tell it happened and it sat there for 4 years. every top cryptographer looked at zcash, and none of them caught it then a white hat used claude opus 4.8 + a custom setup and found it in about a day - just days after the model came out. he even built a working version that minted fake coins on a test network the scary part is because zcash is private, there's no way to 100% prove nobody already used it before the fix now think about how many other coins have a bug like this just sitting there waiting how it actually worked: zcash hides every transaction behind a math proof that basically says "i own this coin and i'm spending it" - without revealing anything else one step of that proof multiplies secret numbers on an elliptic curve to confirm your key matches the coin. the bug was that step never locked in which number you had to start with so an attacker could quietly swap in a fake number, and the proof would still "check out" - even for a coin that was never theirs once that check was fooled, they could spend the same coin again and again, each time stamping it with a fresh "spent" marker so the network saw a brand-new coin every time zec conjured from nothing, fully encrypted, completely invisible. nobody watching the chain could even tell it happened the fix was an emergency network upgrade. no evidence it was ever exploited - but no way to fully prove it wasn't

Introducing pump fun GO: Pay ANYONE to do ANYTHING Create & complete bounties for ANY task and leverage the power of humans & money across the globe The world is at your fingertips. It’s time to GO 👇

HOLY SHIT LET'S FUCKING GOO

I resonate with a lot of the points made here. Recommended read for anyone building agentic payment & finance. Startups need to find the wedge.