In my recent audit, I missed a subtle detail. ⚠️ The contract used: currentTime - userJoinTime But the docs said rewards should start only after the campaign begins: If a user joined before the campaign, the wrong formula gives extra rewards.
Imagine trying to buy a concert ticket… 🎟️ Your transaction is pending, someone sees it, jumps ahead, and buys it first. That’s front-running in smart contracts. Attackers see your tx → act first → gain an unfair edge or cause user loss. #Web3 #SmartContracts #DeFi
💡 Dev Tip: Before letting an external contract (like Uniswap) pull tokens, don’t forget approve()! Skipping it = failed txs & broken contracts. ✅ Small step, big safety. #SmartContracts #DeFi #BlockchainDev
My Recent Auditing Mistake 🔍 I flagged a missing blocklist check in a transfer function ❌. Later realized the token contract already enforced it in _beforeTokenTransfer ✔️. I just missed it. Lesson: Always check the full flow before calling something a bug.
Starting something new 👇 I’m diving deep into smart contract security From tomorrow, I’ll be sharing real bugs I study from audits like Code4rena & Sherlock. Real lessons. Daily breakdowns. Follow to learn with me 💥 #web3 #auditing #bugbounty
United States 트렌드
- 1. FIFA 372K posts
- 2. The WET 117K posts
- 3. FINALLY DID IT 437K posts
- 4. Paraguay 28.2K posts
- 5. Frank Gehry 4,760 posts
- 6. Argentina 231K posts
- 7. Brazil 80.4K posts
- 8. Portugal 105K posts
- 9. Hep B 15.9K posts
- 10. Matt Campbell 11.2K posts
- 11. Warner Bros 249K posts
- 12. Croatia 25.7K posts
- 13. Morocco 67.4K posts
- 14. #Mundial2026 42.2K posts
- 15. Iowa State 9,511 posts
- 16. Sherman 4,695 posts
- 17. Group L 18.2K posts
- 18. Infantino 77.2K posts
- 19. Ghana 85.2K posts
- 20. #USMNT 1,445 posts
Something went wrong.
Something went wrong.