24x dev strategy

The idea that AI outperforms bad firms is just wrong All firms are using AI

> saw post from cryptography chad > thought we could help > used @zerocool_ai to scan his popular crypto library > found a bunch of C/H/M issues but no idea if they're valid since i am zk ignorant > decided to send the report to him just in case > they were all valid

Monetary incentives for open source contributions have a big challenge, as they greatly incentivize LLM spam and make it even harder for maintainers to evaluate design and code quality. Even worse, they're one PR away from accepting a malicious patch disguised as a feature.

🚨 twitter is rolling out geodoxxing it shows country you registered in, county of app store you use, country you are connected from. right now visible to you when you click on joined date, soon to everyone. go to settings - privacy - about your account - use region/continent

this is disastrous that you needed to be terminally online and had less than 24h heads up to switch away from twitter showing your country to everyone. awful rollout with no user choice or consent whatsoever. this was the exact case for a terms of service update email that would

Read this @AleaResearch analysis (15 min) to learn more about Rheo and onchain credit fundamentals ↓ https://t.co/JZ1YIZswg7

After years running SEAL 911 and coordinating incident response, we've identified a critical gap: while many protocols have strong smart contract audits, there's no standardized way for them to demonstrate operational security maturity. Today we're issuing an RFC for our newest

I'm now @aviggiano just like on github

Be careful as lots of keeper/bot services are integrated into APIs that rely on Cloudflare for rate limits.

this is obviously a bait since it's 10x easier to find crashes in C code than to find logic bugs I don't even have to define invariants here

today I spent ~$100 on claude building a fuzzing campaign for https://t.co/vUSF6hptlj + fixing bugs it encountered extremely cheap if you ask me imagine if you could have the same for web3

I’m not in Brunos Aires, but if I were I’d go to Cadore

See you at Wondercon on Sunday (@DeFi_Wonderland) The event: https://t.co/dOZxupB1wd

🔥 New SEAL Frameworks just dropped! We’ve seen too many attacks via preventable infrastructure issues, weak multisig setups, and wallet security gaps. So we built new frameworks that any protocol can implement: → Domain & DNS security: https://t.co/DfrKequNo1 → Multisig

AI generated README is so much worse than a human description. Always too verbose

Rheo

Content in Brazilian Portuguese - ZK, Ethereum Roadmap, Solidity - link below

I’m gonna talk today about security ❤️ development at @ethlatam See you soon

ONCHAIN CTF: Exploit the contract, keep the ETH I've loaded up this vulnerable contract (linked in reply) with 0.1 ETH. If you can find the solution to take the ETH from the contract, it's yours to keep No, there's no source code. Good luck Note: Be careful to ensure you don't