I don't work in cryptocurrency and so maybe my perspective is flawed, but I am continually astounded by prevalence of low-hanging fruit in what ought to be an incredibly simple execution space.
As an outsider looking in, it feels like the cryptocurrency community has been given an ideal environment for static analysis and formal verification and still manages to produce grossly vulnerable and/or unreliable contracts.
Would've been helpful if they mentioned what kind of smart contracts they support at the very top of the article. I had to dive in to find out they're talking about Solidity
Seems useful for testing public contracts. Bug hunters can get paid using the tool testing the contracts out in the wild and making money directly when they find bugs.
I don't work in cryptocurrency and so maybe my perspective is flawed, but I am continually astounded by prevalence of low-hanging fruit in what ought to be an incredibly simple execution space.
As an outsider looking in, it feels like the cryptocurrency community has been given an ideal environment for static analysis and formal verification and still manages to produce grossly vulnerable and/or unreliable contracts.