We are proud to announce that we partnered with @NeonyExchange to conduct a security audit of their complex Perp DEX, written in MOVE. Neony is a decentralized exchange that supports spot and perpetual trading with non-custodial, on-chain settlement. The protocol enables

Cedra × @Monethic_io Monethic, a cybersecurity company specializing in Web3 technologies, is joining the Cedra ecosystem to support builders with security audits and advisory. With expertise across smart contracts, blockchains, wallets, and off-chain systems, Monethic helps

It was great to be part of this event! Lfg @SuperteamPOL 🔥

Cloudflare spent years restricting scrapers and selling anti-bot protection. Now they offer /crawl endpoint that can fetch HTML, convert pages to Markdown, extract links, and scrape page elements programmatically.

I feel like there is more AI security tools emerging than actual projects they should be run against.

Codex Security—our application security agent—is now in research preview. https://t.co/JG2uwGUJFv

A password like G7$kL9#mQ2&xP4!w looks strong. Every password checker rates it "excellent." But researchers at Irregular just published something worth knowing: that exact string appeared 18 out of 50 times when Claude was asked to generate a password. The reason: LLMs are

Fun fact: if you ask Banana model for explaining a JS encryption routine (like me by accident), it will politely explain it and additionally propose to draw a related image. Truly versatile

Assume the contests are back and everyone and their mothers jump in with all the AI scanners in existence. They end up having 0.02$ per each high severity bug because of 1000 dupes. We will be back to the point where real creativity and finding edge cases prevails.

The internet is literally full of such resources. The problem is not lack of knowledge but lack of priority, and "claude audit" will not replace a security oriented development.

This EVMbench is really nice, what are you auditing today, anon?

Built a small extension for myself - stops me from paranoid domain checking every time I visit a bank or exchange. It simply maintains trusted sites in local storage to don't have to investigate every letter in the URL. https://t.co/Pgjt1CEpc0

here's an index of 460 common solidity vulnerabilities across 31 unique protocol types scraped from over 10000 solodit findings optimized for LLMs https://t.co/3Wh3CyFzOf

Prediction markets are current big narrative. Great overview of what can go wrong there in terms of security

What are your preferences to model for certain tasks? Looking for best choices in terms of price/performance. For example to me kimi k2 looks best for now for tasks that require agentic approach (do a serie of tasks), deepsek hangs a lot (or is it just me?)

Not sure who needs a reminder but this is the official solana skill for agents: https://t.co/FpnNBpTMpi Don't trust everything out there. We did an official version to save you time and skip getting mugged

We collected some of most common sins of dApp frontends spotted during engagements, and here is the complete guide to recognize and completely get rid of them: https://t.co/49Aa1t45Et

https://t.co/5pPr7K6KzD

Interoperability between web2 and web3 increases

I am not a crypto investing guy, and my point is not to be bullish or bearish here, but since condition of the crypto market directly affects audit demand, its good to at least have an idea what's going on. It is pretty interesting to see that crypto as a whole seems to become