This is useful information for anyone who’s interested in increasing their VO2max. youtu.be/wqA5rpQZuvE?si…

Quick Solidity tip: Immutable state variables don't occupy a storage slot; they're stored in the contract code. Example from MorphoBlue contract: bytes32 public immutable DOMAIN_SEPARATOR (no storage slot) Storage variables include address public owner, address public

My current auditing approach: I’ve transitioned from a taking a ton of notes in ‘Notion’ to inline tagging in the codebase. This has streamlined my auditing process as it keeps my focus on the codebase. At the end of the day, I can circle back to any H/M tags to validate by

Interesting developments overnight at Microsoft. Does this mean OpenAI is toast?

My man Lex is on it!

Excited to announce I'm joining the the Basebootcamp as a mentor! 🚀 While this means a bit less time for my regular auditing work, the opportunity to teach and guide new talents in smart contract programming and auditing is incredibly rewarding. Can't wait to share my insights

Here are some links to get you up to speed with the basics of lending protocols, with areas to focus on when auditing. In a nutshell, in a lending protocol, lenders down the loan tokens which can then be borrowed by borrowers after they've put down collateral tokens. Borrowers

Spotted a potential inconsistency in OpenZeppelin's v5.0.0 Math library. The overflow/underflow flags in `tryAdd` and `trySub` functions might be misleading. NatSpec comments imply `true` for `overflow/underflow`, but the functions return `true` for successful operations. Needs a

MorphoBlue, a lending protocol, actively encourages liquidators to address underwater borrower positions, guided by the market's lltv. 🌊💼 In the liquidate function, the liquidation incentive is smartly calculated from the market's lltv. The key here: higher risk equals higher

Spread the word!!

Check this out!

Happy thanksgiving 🦃 everyone! Hope you’ll are enjoying your holidays!

First week at my new job with Cadence Design Systems and ngl, it actually feels really nice to be on-site, interacting and collaborating with my team irl. It’s a hybrid work culture that only requires us to be on-site three days a week, making it quite convenient!

This is an excellent deep dive into six common critical vulnerabilities related to DeFi protocols. youtube.com/watch?v=B8igza…

Unburdened by paycheck worries. Where am I haded to next? 1️⃣ Mentorship at the base bootcamp. 2️⃣ Filling my knowledge gaps in DeFi protocols and analyzing a shortlist of C4 audit reports. 3⃣Create educational articles or post threads on specific audit insights or discuss well

The issue was looked over by the OZ devs. They ack that it's an issue with the Natspec where they made a mistake defining the return flag as an overflow when it's not.

I’ve been seeing some impressive demonstrations of the Gemini AI. Here’s a video explaining how the collaboration of humans and AI could result in better code solutions. It’s encouraging to see that software skills won’t be useless. But SWEs or humans would need deep knowledge to

Adding 🥃 Bourbon to the list!

Getting some Goerli ETH at Quicknode's faucet for my D263416C wallet! faucet.quicknode.com/base/goerli?ut…