sudo rm -rf --no-preserve-root /
@pcaversaccio
๐๐จ๐ซ๐ค๐ข๐ง๐ ๐จ๐ง ๐ฐ๐ก๐๐ญ'๐ฌ ๐ง๐๐ฑ๐ญ.
github.com/pcaversaccio
> be a lazy dev
> let LLM analyse an Etherscan verified contract
> LLM has code execution capabilities
> LLM listens to the instructions part of the verified source code comments
> get rekt
The future is full of prompt injection attacks. Looking forward to 2026.
ps: this is an illustrative contract I wrote without fa...
5
8
51
I support EIL. At its core, EIL is fundamentally _Cypherpunk_ because it restores user sovereignty at the interoperability layer. Users sign once & transact directly from their own wallets, _never_ delegate execution, custody, or intent to any intermediaries. It rejects _trusted_ relayers (guys, we need to cut out the ...
L2BEAT ๐
@l2beat
16d
At DevConnect Buenos Aires, the details of EIL @ethinteroplayer - Ethereum Interoperability Layer were unveiled.
Weโve been deep-diving interop protocols for months and our initial assessment of EIL contracts (deployed on testnets already) is following ๐งต๐ https://t.co/TVQ2cPatbz
1
3
31
1/ A huge chunk of what Ethereum (mostly - but not only - application layer) is building today is propped up by excuses & massive, hand-waved trust assumptions and VC-driven narrative capture. We need centralised L2s because of "training wheels". We need upgradeable proxies controlled by a few keys held by some foundat...
1
4
20
the only real _long-term_ market fit IMHO for Ethereum is private & self-sovereign applications. Everything else, including _most_ (not all, to be clear) of DeFi is fundamentally short-term, driven (mostly) by speculation & attracts folks who come fast and leave fast as well however (since rekt many times). Look, as th...
1
2
18
so, hmm, we rely on firmware we can't inspect, compilers we don't build, closed-source LLMs, proprietary enclaves, remote updates etc. Each of these layers is a target and more will join in the coming years/decades. In a world this complex (and guys this complexity is our own making!), how do we even verify that we're ...
3
1
27
Had a fun convo recently where some dude was talking about Uber and ride-sharing. I told him I've never used any of those services in my life (I'm being serious here). He looked confused and asked how I get around usually. Well it's pretty simple: I always take a taxi & pay in local cash. I don't like being tracked. Lo...
2
3
29
if someone ever managed to breach all _private_ GitHub repos (I mean it's insanely difficult but not impossible) it would be one of the most catastrophic events in the security history, and if I were a state-level actor that's exactly the kind of target I'd prioritise rn. I was thinking about this scenario since this m...
10
8
49
guys, we need your feedback. The `GAS2ETH` opcode (the EIP is written by @big-tech-sux and myself) is proposed for inclusion for Glamsterdam and we need further feedback about potential ambiguities in the specs, security issues, or any other concerns. The tldr for the EIP is that the new opcode `GAS2ETH` enables the di...
1
8
20
folks, hear me out, the best long-term trading strategy is privacy itself. Those who build and hold it are shaping the foundation of a free economy. And guess what, its yield is true sovereignty: the _only_ return that truly endures.
2
15
Privacy features _must_ be enabled by default in a wallet. Every major wallet has failed at this. Kohaku won't. Privacy is the _foundation_, not a feature. While others cater to gamblers and speculation, we're building a wallet for human dignity. Principles come first. Always.
2
19
folks, real talk now, at least 99% (and I'm being optimistic here) of what's been built on Ethereum (this includes the entire ecosystem) over the last decade is complete fucking bullshit. It's pretty simple: I'm here for the 1% (tbf and to be more realistic, the 0.001%) that matters, the projects that understand why _p...
6
29
Ethereum's worst enemy is institutional adoption. Honestly, think about it guys, the more institutions get involved, the more influence they wanna have on future hard fork decisions (and thus will make a core dev's job even more complicated), compliance as a "feature" instead of a _clear_ bug (just check the discussion...
3
1
15
you bought a new hardware device but you're paranoid something has been tampered. First, what you do is to boot in recovery mode and update to the latest firmware. This will pass the genuine check without having to enter the seed. Now, you're still paranoid (which is good!). If attackers want to make tampering non-obvi...
1
5
31
alright, after a week of work you can now fully simulate Safe transactions _locally_ before signing and verify the transaction hashes in parallel using my `safe-tx-hashes-util` with a single command (use the `--simulate flag` simply). This lets you check exactly how the transaction will execute before you sign. Everyth...
3
5
36
The soul of Ethereum was Cypherpunk. It _is_ Cypherpunk. It will always be Cypherpunk. You can chase your glossy, VC-driven narratives, build your fancy protocols, but the ones that will endure are the ones that preserve our privacy, defend against censorship, and stand tall in the face of tyranny. Those are the projec...
3
5
32