Hari Suthan
@codehari662
🔍 Smart Contract Auditor | Sharing daily audit insights & lessons 🛡️ Blockchain & DeFi security | Real bugs, real mistakes, real learning
In my recent audit, I missed a subtle detail. ⚠️ The contract used: currentTime - userJoinTime But the docs said rewards should start only after the campaign begins: If a user joined before the campaign, the wrong formula gives extra rewards.
Imagine trying to buy a concert ticket… 🎟️ Your transaction is pending, someone sees it, jumps ahead, and buys it first. That’s front-running in smart contracts. Attackers see your tx → act first → gain an unfair edge or cause user loss. #Web3 #SmartContracts #DeFi
💡 Dev Tip: Before letting an external contract (like Uniswap) pull tokens, don’t forget approve()! Skipping it = failed txs & broken contracts. ✅ Small step, big safety. #SmartContracts #DeFi #BlockchainDev
My Recent Auditing Mistake 🔍 I flagged a missing blocklist check in a transfer function ❌. Later realized the token contract already enforced it in _beforeTokenTransfer ✔️. I just missed it. Lesson: Always check the full flow before calling something a bug.
Starting something new 👇 I’m diving deep into smart contract security From tomorrow, I’ll be sharing real bugs I study from audits like Code4rena & Sherlock. Real lessons. Daily breakdowns. Follow to learn with me 💥 #web3 #auditing #bugbounty
United States Trends
- 1. FIFA 403K posts
- 2. The WET 117K posts
- 3. FINALLY DID IT 437K posts
- 4. Frank Gehry 5,795 posts
- 5. Paraguay 29.3K posts
- 6. Hep B 17.1K posts
- 7. Argentina 240K posts
- 8. Vizio N/A
- 9. Portugal 111K posts
- 10. Brazil 83.7K posts
- 11. Warner Bros 260K posts
- 12. Sherman 4,929 posts
- 13. Matt Campbell 11.3K posts
- 14. $CVNA 1,114 posts
- 15. Iowa State 9,748 posts
- 16. #Mundial2026 45.7K posts
- 17. 14th Amendment 7,670 posts
- 18. Hisense 1,182 posts
- 19. Croatia 27.2K posts
- 20. Wellington 6,280 posts
Something went wrong.
Something went wrong.