Libra’s Move IR Compiler Vulnerability: Technical Description
We describe a vulnerability in the Move IR compiler whereby inline comments can be disguised as executable code. This is due to the Move IR parser…
Latest stories
Deep dive into the Minimal Proxy contract
In this deep dive into low-level EVM code, you will learn how to code a Minimal Proxy (EIP 1167) from scratch, no…
Bounties Network Review Summary
We take a look at Bounties Network implementation of MetaTransactions and find two medium severity issues.
Changing the feedback experience using positive psychology
One of the topics we focused on at OpenZeppelin this year was feedback. We feel that giving and receiving feedback is…
More stories
Reentrancy After Istanbul
How to protect your contracts against reentrancy after Ethereum’s Istanbul hard fork.
Compound Finance – Timelock Audit
The Compound team asked us to audit a patch of their smart contract code. We examined the code and now present our findings.
Microsoft integrates OpenZeppelin Contracts into Microsoft Azure
We are excited to collaborate with Microsoft and announce the launch of the OpenZeppelin Audited Smart Contract library as part of the Microsoft Azure Blockchain Development Kit VSCode plugin!
InstaDApp Audit Summary
The InstaDApp team asked us to audit their proxy wallet and wallet registry contracts. Here is a summary of our findings.
InstaDApp Audit
The InstaDApp team asked us to audit their proxy wallet and wallet registry contracts. We examined the code and now publish our results.
Libra’s Move IR Compiler Vulnerability: Technical Description
We describe a vulnerability in the Move IR compiler whereby inline comments can be disguised as executable code.
OpenZeppelin Uncovers Vulnerability in Libra’s Move IR Compiler
We found a problem in Libra’s intermediate representation language compiler, the Move IR, that could allow cybercriminals to exploit the yet-to-be-launched cryptocurrency network.
PROPS Rewards Engine Contracts Audit
The YouNow team asked us to review and audit their Rewards Engine contracts that distribute their PROPS token. We looked at the code and now publish our results.
PROPS Token Contracts Audit
The YouNow team asked us to review and audit their PROPS Token contracts. We looked at the code and now publish our results.
Compound Finance Audit Summary
Compound Finance is a protocol, currently deployed on the Ethereum network, for automatic, permissionless, and trust-minimized loans of Ether and various ERC20 tokens.
More stories
Reentrancy After Istanbul
How to protect your contracts against reentrancy after Ethereum’s Istanbul hard fork.
Compound Finance – Timelock Audit
The Compound team asked us to audit a patch of their smart contract code. We examined the code and now present our findings.
Microsoft integrates OpenZeppelin Contracts into Microsoft Azure
We are excited to collaborate with Microsoft and announce the launch of the OpenZeppelin Audited Smart Contract library as part of the Microsoft Azure Blockchain Development Kit VSCode plugin!
InstaDApp Audit Summary
The InstaDApp team asked us to audit their proxy wallet and wallet registry contracts. Here is a summary of our findings.
InstaDApp Audit
The InstaDApp team asked us to audit their proxy wallet and wallet registry contracts. We examined the code and now publish our results.
Libra’s Move IR Compiler Vulnerability: Technical Description
We describe a vulnerability in the Move IR compiler whereby inline comments can be disguised as executable code.
OpenZeppelin Uncovers Vulnerability in Libra’s Move IR Compiler
We found a problem in Libra’s intermediate representation language compiler, the Move IR, that could allow cybercriminals to exploit the yet-to-be-launched cryptocurrency network.
PROPS Rewards Engine Contracts Audit
The YouNow team asked us to review and audit their Rewards Engine contracts that distribute their PROPS token. We looked at the code and now publish our results.
PROPS Token Contracts Audit
The YouNow team asked us to review and audit their PROPS Token contracts. We looked at the code and now publish our results.
Compound Finance Audit Summary
Compound Finance is a protocol, currently deployed on the Ethereum network, for automatic, permissionless, and trust-minimized loans of Ether and various ERC20 tokens.