Ethereum

I’m happy to share that I will be giving a talk on ETHBelgrade 🔥

The talk is about Uniswap V4 architecture and security. If you wanna be up to date, follow me 📝

Reply 2d later to test if it still works 2d later 😉

𝐖𝐨𝐫𝐤𝐢𝐧𝐠 𝐨𝐧 𝐰𝐡𝐚𝐭'𝐬 𝐧𝐞𝐱𝐭.

https://github.com/pcaversaccio

ecrecover + some context change (msg.sender) right?

Web3 Security | SCSVS | PhD | Ensuring Precision and Excellence in the Protection of Smart Contracts and Web3 Applications @Composable_Sec

3. Set tx.origin to a special address derived from any of the sender, invoker, and/or signer addresses.

4. Disallow authorized == tx.origin. This would make the simple batching use cases impossible, but could be relaxed in the future.

Which is the current version of #EIP3074 to be implemented?

1. Set tx.origin to a constant ENTRY_POINT address for AUTHCALLs.

2. Set tx.origin to the invoker address for AUTHCALLs.

Super excited to announce (the world's first?) free private onchain address book for websites and CLI! Label your web3 addresses on any site and any chain. I'll submit to the Chrome Web Store soon, but for now download from this repo: https://github.com/aspiers/rolod0x#readme

Adam did a great job building rolod0x. It’s your local address book that labels the addresses on the sites in real time, but not only (see below).
Simply increases your security 👍

Time to go home ✈️ 
Thank you ⁦‪#EthereumZurich‬⁩ for having me! Great conference, typical Swiss, „clean” style. No distractors, simply talks and networking 👌🏻

I bet your product has a roadmap. But do you also have a security roadmap?
If no, let’s talk 🤝

CTOs potentially having cofee

tech vs. absurd – you're not real – /sauce – /cto - /addresso

git add .
git commit -m „add files”
git push

If you are wondering at what TVL size you should focus on security, you are doing it wrong. Start early, security != an audit just before release.

Only if you wanna learn something about ETH 😁

Hello world!

https://securityalliance.org

The SEAL911 bot has proven its importance. Now more initiatives are coming to Web3.

This is great example of cooperation between many firms from Web3 security domain.

Follow @securityalliance

2⃣ for complex formulas use `roundme` tool to know the rounding direction for all operations: github.com/crytic/roundme,
3⃣ don't forget edge cases (e.g. require that both values - redeemToken and assetToken - are greater than 0).

Rounding errors are taking the 2nd place in DeFi Attack Vectors. 
Three easy things to do:
1⃣ for simple formulas make sure that you select correct rounding direction (profitable for the protocol),

Founders

aka ferrari 🦋 x.com/miaferrariii founder and a-list host // prev Fabric VC

Cofounder @morpho - wizard making finance a public good

You think it will replace X in web3 world soon?

You got the #web3 security audit covered and want to do more but do not know where to go now, check out this guide:

You got the #web3 security audit covered and want to do more but do not know where to go now, check out this guide: https://composable-security.com/security-guide/

Damian

@drdr