Worth noting that @alexmasmej.eth opts to tweet rather than cast about this vulnerability.. despite claiming that 10K is “Farcaster-first”

Who audited their Watch to Earn smart contracts prior to going live? 🤔🧐

Soon: crypto TikTok @ 10k.world. Previously: @drakula, $ALEX (first creator coin).

I like running, poker and oysters | Founder, Social Forensics (SocialForensics.com) | Berkeley & UPenn | Learning to listen

TBH, I've seen this kind of vulnerability happen at least 3-4 times by now in different cases.

I think even calling this kind of bug, a vulnerability is a stretch, it's just incredibly poor execution, you have to have some unit tests for these cases if you don't have that then what to expect?

I get that in the startup era of products lasting 1 year, creating tests for products is happening very sparsely but IMO it's criminal to lack tests for contracts where risk is higher.