A place for talking about the Ethereum Virtual Machine on Farcaster.

Convince me I’m wrong: not a ton of incentive to be first to AA wallets given security risk / lack of Lindyness.

What’s the security and lindy issues you have in mind?

A private key is the worst security model, and allowing users to change implementations/fallback handlers lets you adapt to whatever becomes the standard

Security at Optimism. Formerly built Umbra and more at ScopeLift

I participated in a c4 contest for one AA wallet and came away pretty spooked about the security surface area: it found deploy frontrunning, destroyable impls, gas refund exploits, several signature replays and bypasses. The core spec is simple, but there's a lot that can go wrong in the implementation and periphery.

I'm eth newbie..just learning
(working on @farcaster)

terminally.online

That’s true, though if you start with a proven base like safe or argent a lot gets mitigated

And to be fair I didn’t interpret “AA wallets” to mean 4337-like, but as general contract wallets which can be much simpler. I’m not super familiar with 4337 so perhaps it’s too complex to support my stance here