The extension that was impersonating vscode solidity (and many others following the same pattern) have been removed. We have seen that a fake extension or virus can spam many downloads (if that was their technique). So how to identify is the right extension? The best way is to

Traditional blockchain hiring is broken. ❌ Subjective code reviews ❌ Endless technical interviews ❌ No clear signal on security skills ❌ Gaps in best practice knowledge ❌ Limited insight into real-world readiness Instead 👇

As a security-minded Solidity developer, this is your sign to be very careful when using unchecked blocks and inline assembly. As of 0.8.0 and later the compiler will automatically handle under/overflows. But what happens if a variable allowed to overflow is then used in yul?

Cyfrin Audits case study: Suzaku Suzaku is permissionless, multi-asset validator infra designed to serve as the backbone for Avalanche L1 networks. It enables efficient validator ops, seamless delegation, and automated rewards distribution across multiple vault types.👇

Cameo alert 🚨

Too busy finding crits to finish the deep dive articles I have in drafts. What do people want to see most? Uniswap V4? Curve? Ve(3,3)? ZK? Something else? Please drop your suggestions to help me figure out what to prioritise for whenever I next get some solid research time 🙏

Another week, another Uniswap V4 audit. It’s looking like this is going to be the winner - can’t wait to drop some alpha!

Patrick Collins is a true Chainlink O.G. I'm excited to have him at SmartCon.

We’re grateful to be working with teams like Areta, supporting the industry and helping protocols strengthen their security. The safer we are, the farther we go.

Thrilled to have Solana Foundation sponsor Cyfrin Updraft to deliver industry-leading education to @Solana and Rust developers. Start today with the Rust Programming Basics on Updraft and kickstart your Solana development career.

$100M in pre-deposits. 25 days. Strata is accelerating the convergence of DeFi and TradFi alongside Ethena Labs and Converge. Season 0 is just the beginning.

Agentic smart contract vibe coding was a mistake...

Not really sure what this is but it goes hard - thank you Keone Hon ⨀ & Monad ⨀! Nominated Seb Di Siena qudo hunter so please no more spam requests people.

TIL calldata offsets can be negative. neat!

Contract Audit: The WLFI Lockbox smart contract was fully audited by Cyfrin, an industry-leading Web3 security firm. The contract audit is complete, and the Lockbox you’ll use reflects the audited code.

Shout out to Cyfrin Audits for conducting the audit and being some of the best industry leaders for all things security in Web3!

Cyfrin 🤝 WLFI We’re proud to be partnering with WLFI to improve the security of their codebase and users.

All in on Cyfrin.

6 months on, I'm looking to add some more Uniswap v4 hooks audits to this list. We of course have a number of banger Cyfrin audits that I will be showcasing in the upcoming article. I have also come across these reviews: * Gamma – Guardian: