Gerard Persoon

327 posts

Gerard Persoon

@gpersoon

Solidity security reviews @Cantinaxyz @Spearbit https://t.co/2Ql2W2oCjY

Rotterdam, Nederland Katılım Ekim 2010

2K Takip Edilen3.2K Takipçiler

Gerard Persoon@gpersoon·1d

@hrkrshnn Microsoft office

Čeština

Hari@hrkrshnn·1d

I'm looking for interesting targets to point Apex at. Claude Code was interesting because 1) it's closed source and 2) it's the product of the year. Where should we point it next? If we haven't scanned it yet and we get a bounty for it, I'll give you a piece.

Hari@hrkrshnn

Breaking Claude Code and getting a high severity bounty from @AnthropicAI! Apex, our autonomous bug hunter, found a way to bypass a permissions check by Claude Code for untrusted codebases. Want Apex to break your code next? Link below

English

2.8K

Gerard Persoon@gpersoon·1d

Cool idea. Why not use the exact bounty amount as liquidity? That removes the uncertainty if the white hat pays back the 90%. And that is the amount that the protocol should reserve anyway.

RajΞΞv@0xRajeev

@cyfrin Interesting initiative. Curious: 1. Why will a protocol want to deploy here with real liquidity? 2. Is this meant to replace a protocol's BB?

English

1.7K

Gerard Persoon@gpersoon·11 Mar

@_weidai Check x.com/sockdrawermone…

Sock@sockdrawermoney

prompt injection is social engineering for software. we've long given up trying to harden humans. instead we built systems that assume people will be fooled. we haven't done this for LLMs. not really. here's why and how we can close the gap:

English

145

Wei Dai@_weidai·11 Mar

Who's working on "secure" agent harnesses? Ingredients: track all tool calls, semantically label them (what was read, what is the effect), enforce policies, etc. Would love to chat.

Viv@Vtrivedy10

x.com/i/article/2031…

English

5.1K

Gerard Persoon@gpersoon·28 Şub

Cool idea by @sockdrawermoney : Label data, enforce policies to manage AI security & prompt injections. See mlld.ai x.com/i/status/20274…

Sock@sockdrawermoney

I've spent every day for the last 14 months building a language for scripting LLMs because I believe we need new primitives to defend against prompt injection. Here's why: x.com/sockdrawermone…

English

802

Gerard Persoon@gpersoon·20 Şub

@taalas_inc Wow, this is extremely fast inference. chatjimmy.ai

English

315

Gerard Persoon@gpersoon·9 Şub

@thedaofund There is a lot of reinventing the same thing. This could potentially be improved with more generic modules / libraries, which are well tested and reviewed.

English

thedao.fund@thedaofund·8 Şub

As we think about funding Ethereum security long term: what parts of security do you believe are most underfunded today? We’re listening.

English

100

11.1K

Gerard Persoon@gpersoon·7 Şub

When you compress the time between intent and finality, you also compress the time between mistake and catastrophe.

Odysseus | phylax.systems@odysseas_eth

x.com/i/article/2019…

English

557

Gerard Persoon@gpersoon·15 Ara

@GalloDaSballo See Verifiable Delay Function

English

199

Alex the Entreprenerd@GalloDaSballo·15 Ara

Is there a way to create a private key that becomes public over time? So that for a period of time only one person can sign But after some time anyone can

English

4.6K

Gerard Persoon@gpersoon·15 Ara

@mudgen @originary_joe @VALIPOKKANN Changed it a bit to ERC721

English

Nick Mudge 💎@mudgen·15 Ara

@gpersoon @originary_joe @VALIPOKKANN That diagram almost matches the implementation of ExampleDiamond here: github.com/Perfect-Abstra… If you changed ERC20Facet to ERC721Facet, then it would match a bit closer. It is an excellent diagram, I love it.

English