First 4 digits payout for my second contest on @immunefi! Thanks for the opportunity.
Feels good but I missed 4 criticals, which is not acceptable. Will review all missed findings and work harder on the next contest ๐ซก
#OnchainDefender https://t.co/7gfWkWJHza
@0xSimao@0xSimao I guess in the alpha , "For Uniswap hooks, it only forwards 300k gas at most on Base" should be "For Uniswap unsubscription notifications, it only forwards 300k gas at most on Base"
Most protocols spend a lot on audits and bug bounties but have zero internal security
Launching https://t.co/c3v75lXHdD to highlight the ones that do
Having an internal security team should be in every protocol's New Year's resolutions for 2026
We ran a blind, empirical test on most AI audit agents in the web3 space, using real contests.
The results?
Most tools missed critical flaws, drowned users in false positives or fail to run at all.
Thread ๐
@kankodu@kankodu can you explain in more detail how it is possible to borrow against donated tokens when total shares is 0? The user who donated cannot borrow as the shares he owns is 0? this is the only part I don't understand in the exploit you describe. thank!
1/ Starknet is already the most cost-effective Rollup, and it just got even cheaper.
v0.13.5 is here, featuring the powerful Stateful compression, ensuring that Starknet remains cost-efficient, even as demand for Ethereum blobs increases.
Letโs break it down ๐งต