shw

The countdown begins... 🪐 Mark your calendars: @ethereumfndn is launching a new $2,000,000 competition on Cantina. We're looking for researchers to help shape Ethereum's future and secure Pectra - the next major upgrade.

When we say crypto takes security seriously, this is what we mean 🪐 @eigencloud is relentlessly pursuing the pinnacle of security standards with the largest-ever, $2,500,000 code review competition starting in February. More info coming soon.

The biggest bug bounty in history is now live. @Uniswap just raised the standard of building in public 🪐 With $15.5M on the line, it's an unprecedented testament to the rigorous security of v4. Think you can find a critical bug? Give it a shot. 🔗 Bounty link below

Meet our newest Cantina Fellowship Resident, @shw9453! 🪐

◀️ Vulnerability Walkthrough ▶️ Duplicate incentive tokens in IP offers allow draining of funds in RecipeKernel - Critical {Fixed} Reported By - @shw9453 Let’s dive in and explore the full breakdown below.

It's time to study Uniswap V4 👀 Looking forward to the event!

On May 14th and 15th, BalancerLabs was notified about two potentially exploitable scenarios via the bug bounty platform on immune.fi. One vulnerability thanks to @gpersoon and @shw9453, and another from @k_besic.

We were notified of two potential security vulnerabilities, one thanks to @gpersoon and @shw9453, and another by @k_besic from @chain_security through @immunefi. User funds were not at risk, and Balancer took immediate measures to reduce any chances of a potential exploit.

Hey folks--in the interest of transparency, we'd like to share some details about an ongoing situation: optimism.io/wintermute-tra… Summary below 🧵👇

The Seaport @code4rena competition has now ended — thanks again to the many reviewers who participated! A summary of relevant findings will be made available soon, but I'd like to share some key findings and give a heads-up that we'll be deploying Seaport v1.1 to address them.

We were notified of an issue in Stable Pools and Managed Pools thanks to a benevolent hacker who disclosed the vulnerability through our bug bounty program. 🔒 No user funds are at risk insofar as the exploit can only be executed by Pool owners or Balancer Governance 🔒👇

What happened to $UST and $LUNA? A long thread that looks at what happened in the last 4 days /1

Congrats to our @TheSecureum Certora CARE-X finishers! Good luck with the verification project. If you didn't get a chance to participate you can access the courses here github.com/Certora/Tutori… #certoraprover #secureum

This is the coolest thing I've seen today. Reentrancy guard that reverts if the slot is warm. Author: @rage_pit @transmissions11 Can we use this in the golf-course!?

Last week, I discovered (and reported) a critical bug (which has been fully patched) in @optimismPBC (a "layer 2 scaling solution" for Ethereum) that would have allowed an attacker to print arbitrary quantity of tokens, for which I won a $2,000,042 bounty. saurik.com/optimism.html

Submissions for the Underhanded Solidity Contest 2022 are open! This year's mission? Build a decentralized exchange where trades do not really work as expected... 🌐: underhanded.soliditylang.org 📖: blog.soliditylang.org/2022/02/09/und…

How to audit Solana smart contracts Part 1: a systematic approach medium.com/coinmonks/how-…

How to start in Web3 hacking on Rust-based chains? Web3 is more than EVM and Solidity. Hence, here are some foundations that you need to start hacking on Rust chains!🦀 You may treat this thread as an addition to the fantastic @adrianhetman's tweet. bit.ly/3qwzeBK

1/ Sherlock and @opyn_ have collaborated to provide $10M of smart contract coverage to Squeeth users on Day 1. This coverage will apply pro rata to all users of Squeeth at no cost. mirror.xyz/0xE400820f3D60…

Slither 0.8.2 now supports all the latest Solidity 0.8 language features (custom errors, top-level funcs, immutable vars, etc). Use it with two new detectors that catch recent vulns in SushiSwap and Opyn (delegatecall and msg.value used in loops). github.com/crytic/slither…