Monero community, we need your help.
After deep discussions with the Cuprate contributors, we've identified an avenue to stress-test Cuprate's consensus rules (the code that decides which transactions are valid) and catch bugs before they can cause network splits, especially around the FCMP++ upgrade.
Our CCS proposal to build the initial consensus fuzzing infrastructure would give Cuprate its first automated tests that go beyond parsing and actually hammer the validation logic itself.
By generating valid transactions and feeding them to both Cuprate and monerod, any disagreement between the two surfaces a consensus bug.
This initiative would help identify drifts between clients early on (when it's easier to spot and fix those issues), helping to make sure that Cuprate's implementation is correct as it's being developed.
The same harness can then be extended to cover FCMP++ once it lands upstream!
If Monero's development is close to your heart, please support our proposal below 👇
Donate to Simbolik: https://t.co/wk7eoWML22
Simbolik is the favorite Solidity debugger in the Ethereum ecosystem, and it’s built by our security engineers. But Simbolik is not just a debugger anymore, but a comprehensive security toolkit and a must-have for any builder. And the best part? We are just getting started, and you can help us by donating to the quadratic funding initiative, part of the @Giveth and @thedaofund
Nowadays, with Simbolik, any developer can:
-> Source-level debugger
-> Foundry Test Explorer
-> Test Coverage
-> Static Analysis
With your help, we have planned a series of new features, including the integration of Kontrol into Simbolik, our Foundry-native formal verification engine, to AI-assisted, coverage-guided test synthesis, static analysis detectors for stack-too-deep errors, and interactive symbolic execution.
Donate to help expand Simbolik's capabilities, and if you have a feature you would like to see, talk to @RaoulSaffron
🚨 WARNING (AGAIN)
DPRK threat actors are still rekting way too many of you via their fake Zoom / fake Teams meets.
They're taking over your Telegrams -> using them to rekt all your friends.
They've stolen over $300m via this method already.
Read this. Stop the cycle. 🙏
Come see me speak about the work we have been doing at @rv_inc! My talk "Kompass: Ensuring SPL-Token Stays Safe on Pinocchio" will be on the Lock In stage at 11:30am December 12th @SolanaConf!
🇦🇷 Catch our team tomorrow and Friday at @summit_defi's stage, sharing about some of the hottest security topics atm👇
➡️@palinatolmach will talk Nov 20th - 14:05 at the Auditorium Stage about "Off-Chain But Not Off Radar: Securing Crypto Infrastructure Beyond Smart Contracts"
➡️ will talk Nov 20th - 16:05 at the Auditorium Stage about "Rust-Proofing Your Chains: A Deep Dive into Secure Rust Development Workflows"
➡️Everett Hildenbrandt will talk Nov 21st - 10:30 at the Nogal Stage about "Shipping AI-Generated Code That Won't Hurt You (Much)"
Buenos días desde Buenos Aires! 🇦🇷🇦🇷🇦🇷
Catch our team during the week at La Rural, DSS and other events, or drop us a DM 📥 if you would like to go for a mate and talk security, formal verification, or where to find the best empanadas 🧉🥟
Rust is powering more blockchains than ever, but secure workflows are still catching up.
At DSS, Aellison Cassimiro from @rv_inc shares practical methods and tools for securing Rust code, drawn from real experience auditing Solana and Stellar-Soroban projects.
🚀 It’s happening! Foundry test case debugging is coming to Simbolik Premium!
We’re offering a few free beta seats for active testers — limited spots only!
Please fill out the form in the comments if you'd like early access 👇