- This topic has 0 replies, 1 voice, and was last updated 1 month, 3 weeks ago by crypto_chik.
- Friday, August 5th, 2022 at 18:37 #349872crypto_chikParticipant
An interesting [study](https://arxiv.org/pdf/2204.11193.pdf) was conducted by the University of Illinois on smart contract engineers’ security practices. I was dismayed, but not overly shocked, to learn that 83% of smart contract engineers “did not claim security as a top priority.”
This is becoming more obvious with all the smart contract hacks and bug exploits that have occurred.
Smart contract development is hard. It is more difficult than other types of software development that I’ve seen. It’s a new programming paradigm where we’re still learning the best practices and the security holes to watch out for.
I love seeing more people get into web3, especially on the tech side, but solidity is not the best language for a new developer to start with. The most expensive engineers are those who are inexperienced and maybe a little sloppy. The DeFi protocols and bridges that have suffered from hacks are extremely aware of this now. You get what you pay for, and education and practical experience are important.
As DeFi users, we need to be really careful on which projects, and therefore which developers, we trust with our funds.
- You must be logged in to reply to this topic.
Related Forum Topics:
- → So im 15, I have a whole 10k NFT collection currently made, i was finishing up the contract for minting etc but my dumbass forgot that the price for it isnt free, so i dont have enough to buy the smart contract. I have $11 on my prepaid visa, where can i buy Matic where there is no required id?
- → Using Metamask can be risky. It’s sometimes not clear what exactly is being signed. Adding smart contract addresses to your address book increases your security and makes it more difficult for scammers to trick you into signing a malicious contract.
- → Algorand to release Contract-to-Contract calls, which will increase their smart contract functionality exponentially
- → Algorand Network Upgrade Expands Smart Contract Functionality with Contract-to-Contract Calls, Releases Post-Quantum Secure Keys for Trustless Cross-Chain Interoperability
- → $3,000,000 DeFi bug bounty – Astroport making security the top priority
- → hello, I want to create a free mint nft on solana network and I want to sell this nfti that I created on solana over smart contract, how can I create a smart contract, is there a source video about it?
- → Cardano Upgrade increases the number of smart contracts on the blockchain by almost 3,000 Is Cardano upgrade improving smart contracts smart contract capabilities?
- → Defi will run on top of lightning. Decentralised social media will run on top of lightning. The “metaverse” will run on top of lightning. Lightning is the protocol that will sit between the internet as we know it and apps as we know them. Every app on earth will run on top of lightning.
- → Security, security, security
- → How come some ERC-20 tokens allow staking but are built on ETH’s PoW consensus? Is it just a smart contract and has nothing to do with network security?
- → Is there a market for Freelance Smart Contract Security?
- → What is going on?! after verifying my smart contract on etherscan the gas fees on my contract are extremely broken.
- → Smart Contract new be question 3 way contract
- → Rand Labs engaged Kudelski Security to perform a secure code assessment of the Wormhole Algorand smart contracts and related pricecaster-v2 smart contracts.
- → Payments to Celsius employees, officers, directors, and stockholders in less than 30 days: $4,181,002. Payments to loyal Celsius customers in less than 30 days: $0. Celsius email from date of paused withdrawals said, “Acting in the interest of our community is our top priority.” [Image]