HHK

Maybe you heard: we're yAudit again

yAudit is BACK It's an annual tradition for us to rebrand, but this year is different: we're re-rebranding. We're yAudit, no longer electisec. More updates coming soon!

Winners and security legends: Wonderland CTF crushed by @DrasticWM @adrianromero @usmannk @juancito @blocksec

Do YOU need an estimate for an audit but you only have like 15 minutes and you want to get it right meow? quoteplz.com Public codebases don't need a token Private codebases follow ze stuff:

@Electisec 🤝 @Optimism Proud to announce we're now whitelisted as a Superchain Audit Service Provider! This means projects building on Superchain can access subsidized audits through the Foundation's grant program. Excited to help secure the ecosystem we believe in!

Huge congrats to Twyne on their launch 🚀 When our auditors @HHK_eth @adrianromero have this to say about a codebase, you know the team absolutely nailed it!

Your favorite lending market has 2 core problems. Today, we kill both of them. Twyne is LIVE on Ethereum mainnet. 🧵

I'm still baffled that the Ethereum Core Dev community does not prioritize fixing the 2 most cited problem of EVM developers per the Solidity Lang survey despite our repeated efforts: 1. Stack too Deep: yes this is a Solidity skill issue a little bit but just add a SWAP/DUP17-32 opcode range and call it a day. You will burn some opcodes. It's fine, they are meant to be used. You're gonna have another PUSH0-style mismatch, this is also fine, it's not perfect but it's fine. 2. Lift the 24KB limit. I don't really care what you do, make it 32KB, 48KB, 128KB, 256KB, 512KB, do it all at once, incrementally, price it or not but do something! Now, not next year! If you are scaling the L1, ensuring people can write contracts without stupid errors is P0. If the system cannot handle an extra 8KB per bytecode which is a param that was set 10yrs ago literally then there's no chance you will be able to actually scale the L1. Fix stack too deep and bytecode size limit! For the devs!

Full lending potential. No collateral left behind. Let’s bring capital efficiency to your favorite lending markets: • Boosting lending APYs • Raising liquidation LTVs • Preventing 94% of liquidations All while keeping risks segregated - How? 👇

24h left to take the entry quiz! LSW and fellowship alumni @0xadrii is one of many heavyweights selected fellows will have direct access to

⚠️ Attention @Uniswap V4 Integratoors ⚠️ Creating and managing liquidity positions that involve native ETH on Uni V4? Read carefully: During our latest audit with @vfat_io, we identified a high severity issue in how liquidity is provided by Sickle to Uniswap V4 pools.

To demonstrate @burraSec's expertise, we’re offering a free full-day security review/consultation for projects integrating with LayerZero or Arbitrum—whether you’re already deployed or still in development. We’ll thoroughly review: LayerZero: Configuration (DVNs, Executor, and overall integration), functionality (LzRead, OFTs, vanilla OApps, and more). Arbitrum: Native bridge or token bridge integrations, use of retryable tickets, or custom Orbit chains (e.g., custom gas tokens, USDC bridge standard). DM me to schedule your review!

Let's welcome @yearnfi security expert and @electisec Resident @spalen_ to the twitter everyone. Better late than never Give him a followrooski

We had an incredible 2024: - Completed 59 audits 📋 - $1.9M in revenue 💸 - 90%+ growth compared to the last year 🚀

Over $2 million in bookings this year (year 2) for yAudit 59 total audits 1 yAcademy block: 125 participants and 2 amazing Residents: @fedebianu @_eperezok

Can smart auditors outsmart smart wallets? Yes! 🧠 We show how it's done in our latest article about ERC4337 bugs by @adrianromero blog.yacademy.dev/2024-09-09-sec…

Proud to share that @yAuditDAO was the only team to uncover a critical vulnerability during the security review of @eulerfinance. We’re committed to pushing the boundaries of blockchain security. Continuous vigilance & top-notch auditing are key to securing DeFi ecosystem.💪

🎉 We’re stoked to announce the successful completion of our recent security audit of an innovative Automated Liquidity Manager for CLAMMs like UniswapV3. This protocol simplifies liquidity management and provides a set of automated concentrated liquidity strategies. 1/8

🌐 We’re open-sourcing of the collective genius from our recent zBlock II cohort! Dive into the juicy output at zblock2.xyz and see the future of ZK security unfold. (1/5)

@storming0x Contests are a pvp games while audits are coop games.

For those that have done both contests and audits What would you say is the biggest mind shift or difference from a security researcher pov to perform well on contests? I have a few guesses but I haven’t tried contests yet