Francesco Piccoli (francescop)

Today, @almanax transitions from beta to general availability (GA). What happens when the number of lines of code engineers produce goes up 100x thanks for coding assistants like Cursor? How are security teams supposed to handle that? We believe AI will change security the same way it’s changing software engineering. Almanax is an AI security engineer designed to help security teams prevent hacks. Sign up on app.almanax.ai and integrate LLMs in your security processes.

• 3 replies
• 10 recasts
• 24 reactions

Over the next 5 years we’ll see an intelligence explosion where automated AI researchers and engineers might write billions, or trillions of lines of code. We won’t understand what they’re doing anymore. Hacking stuff, exfiltrating data or itself, going for the nukes? We won’t be reading all that code anymore, so how do we build in checks and balances? These are the kinds of questions that pop into my mind every day. I think that’s an important and solvable problem.

• 1 reply
• 2 recasts
• 6 reactions

Minted my Base Punkz

• 0 replies
• 0 recasts
• 3 reactions

Personal update: I did a thing

• 53 replies
• 33 recasts
• 422 reactions

I just became a book author! Publishing a book has been on my bucket list since I was a kid, and thanks to Marco, Harpreet, and Brett I got to check that off much earlier than I imagined. Blockchain Application Security is the result of an effort Marco started in 2018 to address the security threats facing the blockchain industry. It’s incredible to see it come to life and hit both physical and digital shelves. When billions of dollars are on the line—with no way to reverse a transaction—blockchain applications become prime targets for attackers. I saw this firsthand while building products to investigate crypto exploits at AnChain, and at @almanax we’ve made it our mission to extinguish hacks. Institutions are moving onchain, and we can’t afford to lose billions every year. The book covers the essentials: distributed ledgers, consensus algorithms, digital wallets, smart contracts, privacy controls, DIDs, secure dApp architectures with component-level threat analysis and resilient APIs, token transactions, exchanges, and identity models. It also features a complete lifecycle example for securing a DeFi lending and borrowing platform, plus walkthroughs on smart contract development, AWS-integrated blockchain systems, frontend/API integration, and code auditing. Amazon link in the comments!

• 18 replies
• 16 recasts
• 105 reactions

I've been chatting with @jesse.base.eth, and in preparation for our public launch, decided to offer free security scans through @almanax for the next month to 10 projects building on @base.base.eth. If your project has smart contracts you'd like checked, comment below or DM me and we'll make it happen.

• 9 replies
• 8 recasts
• 30 reactions