Ethereum Livestream: Vitalik Buterin, Jonathan Herzog, & E. Glen Weyl

Livestream: Vitalik Buterin, Jonathan Herzog, & E. Glen Weyl
Comparing zkRollup vs Validium (StarkEx)
A diamond is a set of contracts that can access the same storage variables and share the same Ethereum address.
Interesting to see more politicians open up to crypto and even more so discuss ethereum:
Geth v1.9.15: Berlin EIPs merged and exposed for YOLOv1 testnet
Baseline 7th SSC Meeting 8th June 2020
Introducing Alchemy Notify: Bringing Notifications to Blockchain Apps
Presearch – Ethereum-based crypto-Google alternative
Understanding Phase 0, The Current Stage of ETH 2.0 Development by Quantstamp
This week on Crypto weekly we looked at previous market performance and also reference to TheSandboxGame after they completed their first Moonsale within 5mins of coming live, surely an Ethereum DApp worth looking into
��️ What's an Etherean | Nic Carter
Ethereum 2.0 Staking on Digital Ocean Droplet?
Is Truffle the best framework for deploying contracts?
Ethereum surpassed 100 million unique addresses this weekend.
Crypto Trends 8 June ⏩ Philippe Castonguay on Layer 2 coming soon™ �� OMG Network V1 Public Mainnet Beta �� Danny Ryan on the State of Eth2
DeFi dapps remain the most important category on Ethereum, accounting for 60% of May’s value total.
What smart people have to say about travel’s recovery and rebound
All About Smart Contract Audits — 7 Most Burning Questions
Few days left until Live Webinar: The Beginner's Guide to Game Monetisation with Blockchain
Ethereum vs Bitcoin: The Key Differences Between These Two Blockchain Giants
I don't understand this transaction. Please help
"Tether is a cyberpunk-dollar enjoying some of the best and the worst both worlds have to offer."

Livestream: Vitalik Buterin, Jonathan Herzog, & E. Glen Weyl

Posted: 08 Jun 2020 04:03 PM PDT

submitted by /u/laylaandlunabear
[link] [comments]

Comparing zkRollup vs Validium (StarkEx)

Posted: 08 Jun 2020 11:43 AM PDT

submitted by /u/gluk64
[link] [comments]

A diamond is a set of contracts that can access the same storage variables and share the same Ethereum address.

Posted: 08 Jun 2020 07:37 PM PDT

submitted by /u/mudgen
[link] [comments]

Interesting to see more politicians open up to crypto and even more so discuss ethereum:

Posted: 08 Jun 2020 04:04 PM PDT

submitted by /u/elizasbreath
[link] [comments]

Geth v1.9.15: Berlin EIPs merged and exposed for YOLOv1 testnet

Posted: 08 Jun 2020 03:05 AM PDT

submitted by /u/karalabe
[link] [comments]

Baseline 7th SSC Meeting 8th June 2020

Posted: 08 Jun 2020 12:49 PM PDT

submitted by /u/staifih
[link] [comments]

Introducing Alchemy Notify: Bringing Notifications to Blockchain Apps

Posted: 08 Jun 2020 05:12 PM PDT

submitted by /u/PAAlmasi
[link] [comments]

Presearch – Ethereum-based crypto-Google alternative

Posted: 08 Jun 2020 01:40 PM PDT

submitted by /u/editorsocial
[link] [comments]

Understanding Phase 0, The Current Stage of ETH 2.0 Development by Quantstamp

Posted: 08 Jun 2020 04:11 PM PDT

submitted by /u/twigwam
[link] [comments]

This week on Crypto weekly we looked at previous market performance and also reference to TheSandboxGame after they completed their first Moonsale within 5mins of coming live, surely an Ethereum DApp worth looking into

Posted: 08 Jun 2020 06:27 AM PDT

submitted by /u/otemzi11
[link] [comments]

��️ What's an Etherean | Nic Carter

Posted: 08 Jun 2020 10:30 AM PDT

submitted by /u/SgtHawk
[link] [comments]

Ethereum 2.0 Staking on Digital Ocean Droplet?

Posted: 08 Jun 2020 12:37 AM PDT

I'm unsure of my options for staking my eth in the future, as I'm more or less a "digital gonad" and won't be able to have a physical server running with adequate enough uptime to compensate for the downtime penalties.

Would it be viable to stake using a Virtual Machine such as Digital Ocean? I don't see why it wouldn't so long too many people don't do so.

I'd prefer to avoid a pool which is why I ask. Would there be any risks to this? Shouldn't this be possible, so long as you're willing to pay for the fees?

submitted by /u/meme_echos
[link] [comments]

Is Truffle the best framework for deploying contracts?

Posted: 08 Jun 2020 10:13 AM PDT

If you're building a relative complex dApp or Game , would remix IDE be insufficient? Is remix IDE mainly for simpler contracts?

And sorry for the newbie question, how exactly do you send ether to deploy the contract on Truffle, does Truffle use the metamask plugin?

Still new to everything, thanks!

submitted by /u/IBETITALL420
[link] [comments]

Ethereum surpassed 100 million unique addresses this weekend.

Posted: 08 Jun 2020 12:10 AM PDT

submitted by /u/MagoCrypto
[link] [comments]

Crypto Trends 8 June ⏩ Philippe Castonguay on Layer 2 coming soon™ �� OMG Network V1 Public Mainnet Beta �� Danny Ryan on the State of Eth2

Posted: 08 Jun 2020 12:04 AM PDT

submitted by /u/abcoathup
[link] [comments]

DeFi dapps remain the most important category on Ethereum, accounting for 60% of May’s value total.

Posted: 08 Jun 2020 01:26 AM PDT

https://preview.redd.it/i07apd0tbn351.jpg?width=1164&format=pjpg&auto=webp&s=094c677cae0e758918459a8cd43e898a547e12c9

Three dapps in DeFi category each act pointed for more than $100 million worth of value during May.

Read DappRadar's May 2020 report.

submitted by /u/DappRadar
[link] [comments]

What smart people have to say about travel’s recovery and rebound

Posted: 08 Jun 2020 01:06 PM PDT

submitted by /u/Spencer_windingtree
[link] [comments]

All About Smart Contract Audits — 7 Most Burning Questions

Posted: 08 Jun 2020 04:25 AM PDT

TL;DR 🏃‍♀: Covered the top FAQs regarding Smart Contract Auditing in this post/video. Would love feedback from the community.

A single bug in a smart contract has historically resulted in a loss of millions of dollars in blockchain projects. Right from The DAO hack in 2017 to the DForce hack & the Hegic contract bug in 2020 millions of dollars have been lost. There is a dire need for high-quality Smart Contract Audits — but there is an equally dire need for clarity on how audits are actually performed.

My colleagues Ish & Nitika sat down for a discussion recently, addressing some of the most frequently asked questions on smart contract auditing.

Full Video on https://youtu.be/ms9xNtq9Y0w

Ish & Nitika on All About Smart Contract Audits

1. How do I know when I'm ready for an external smart contract audit?

Speaking from our experience, we would classify smart contract audits broadly into 2 categories — an interim audit and a full security audit.

So, if you are building an application with complex components already coded, and want an expert to look at them with a fresh pair of eyes for any vulnerabilities and to ensure that you are headed in the right direction, we recommend opting for an Interim Audit.

For example, if you are building a lending protocol, there are complex components like distribution of interest which require a lot of due diligence. When you are building something big like this, you want to make sure you are on the right path and following the right approach before it reaches a stage from where you cannot backtrack.

The other type of audit is a Full Security Audit. If an application is complete from a developer's standpoint with all the functional level testing in place at the developer level and you wish to launch the product on the main-net, it is time to get a full security audit done. The job of the auditor in a Full Security Audit is to find security vulnerabilities in the smart contract code.

2. What is the duration of an audit?

The duration of the audit is subject to various parameters like business requirement complexity, code quality, dependencies, integration with existing protocols. Again, we can classify smart contracts broadly in three categories from a timing perspective.

Type 1: If it is an ERC20 smart contract, it does not take a lot of time to audit due to the standardized nature of ERC20 contracts. In such a case, audits are often achievable within 48 hours.

Type 2: Token Sale Contracts that have custom token economics or extended ERC20 contracts with additional features often are considered as Type 2. The TAT for such contracts can be anywhere between 1 week to 2 weeks.

Type 3: Full-blown dApps / DeFi projects around lending, borrowing, insurtech, prediction markets, derivatives, DEXs are more complicated from a business logic perspective. The time to audit such projects depends on the goals of the developers. It can be a 3–5 weeks process eventually leading to a more regular engagement.

3. Is the Audit report private?

The choice to make audit reports private or public is the developers' decision. For interim audit reports, developers generally prefer keeping it private since their project is a work in progress. Interim audit reports are more like consulting where you need a direction from an expert, so it makes sense to keep them private.

In the case of full security audit reports, developers generally opt for releasing the audit reports in public. That is their way of building trust within the community.

4. What will I find in the audit report?

A typical audit report from Somish Blockchain Labs would look something like this:

Basics section which includes the mention to the audit collateral that was given by the developers to the auditors. This typically includes code commit number, areas of audit and the smart contract addresses that have been audited.

The understanding section where the intended behaviour of the project is defined. This section depends on the documentation provided by the developers in the form of whitepapers, BRD, SRS etc. The clearer the documentation, the clearer the intended usage understanding.

Issues section that is categorized into 3 sub-sections: Critical issues, major issues and minor issues

Critical Issues — Issues that can lead to the locking/theft of user funds. Also, issues where the smart contract owner has rights to play with user funds.

Major issues — Issues in business logic from a security point of view. Also, issues pertaining to the intended usage of the application.

Minor issues — Issues with low chances of occurrence and low impact on the code as well.

Notes section provides a note around gas optimizations, compiler checks and some other stuff which can be implemented at the discretion of the developer.

Recommendations section contains our recommendations (wherever viable) on how to solve the identified issues by our team. Adopting the recommendations is at the discretion of the developer.

5. Which technologies do you work with for audits?

We have worked on Ethereum, Hyperleger Fabric, EOS and IOST platforms. Most of our audits have been conducted on Solidity, Golang, Node and C++ languages.

Generally, we use static analysis tools like Slither and security tools like Mythril. These tools give us a long list of basic vulnerabilities that could exist in the contracts. When the developer provides us with test cases, we run tools like solidity coverage to find out what's the coverage of the unit test cases. It gives us an idea of what kind of scenarios have been covered and how deep the testing has been performed.

We also use tools like solgraph, which gives us a flow of the code and presents an overall picture by plotting a graph from that piece of code. It helps us analyze the complexity of the logic and the scope of the calls, whether it is external or internal.

6. What differentiates automated audit from a manual audit?

In a manual audit, apart from using standardized tools, the auditors examine each and every line of code manually and use their experience to understand vulnerabilities that are otherwise hard to find.

In an automated audit, also known as Formal Verification, there's a tool that has certain rules defined which can run on a smart contract and provide an automated report as an output.

However, it is difficult to conduct formal verification of complex projects because defining the rules is cumbersome. Formal verification for contracts that have been standardized over a period of time like a simple ERC 20 is very common. The custom contracts, however, need a more extensive look and manual audit is the suggested way for them.

Formal Verification is a topic that is still being researched. We recommend going forward with manual audits only with teams who have experience and knowledge of this space.

7. How much does a Smart Contract Audit Cost?

This is a question that does not have a straightforward answer and oscillates more in the realm of subjectivity. The cost of a smart contract audit depends on the contract, complexity of the contract, how well the test cases have been written and also the lines of code.

The complexity of the contract is the single most important parameter determining the cost of the audit. The specification document and how well have the test cases been covered also influence the costing. A well-written test case makes the life of an auditor much simpler and reduces the effort required.

The short answer, however, is: give us the code and the documentation, and we will get back to you with a quotation! :)

------------

If you have any questions regarding Smart Contract Auditing that were not covered by us, please feel free to respond to this post or write to us on [audits@somish.com](mailto:audits@somish.com).

I would also love your suggestions/feedback in the comments below 🙏

submitted by /u/krakjack13
[link] [comments]

Few days left until Live Webinar: The Beginner's Guide to Game Monetisation with Blockchain

Posted: 08 Jun 2020 05:00 AM PDT