Commitment takes you there, consistency keeps you there! #thebuglifestyle #Web3

“Protocol Admin is trusted and expected not to act maliciously” Source: TRUST ME BRO Same admin that closed a report and fixed the issue? 😂 dang imagine his plans for the users lol.

Been wanting this to exist for a while, so I built it. ProofOfRep, a reputation board for bug bounty programs and contests. Report your unfair or dishonest experiences, with proof, and I'll manually review everything. Hope it helps SRs focus on projects that actually take security seriously. Still early. Let me know if this sucks or if it's useful. All feedback welcome. proofofrep.xyz/

BBP programs rn be like: Critical - $50 - $300B High - $20 - $400k Paid- $70. You can guess what happened. 😂

How about running crowdsourced audit at @HackenProof for @Zcash ?

Do you remember when you joined X? I do! #MyXAnniversary

Commitment takes you there, consistency keeps you there! #thebuglifestyle #Web3

The US government, citing national security authorities, has issued an export control directive to suspend all access to Fable 5 and Mythos 5 by any foreign national, whether inside or outside the United States, including foreign national Anthropic employees. The net effect of this order is that we must abruptly disable Fable 5 and Mythos 5 for all our customers to ensure compliance. Access to all other Claude models is not affected. We apologize for this disruption to our customers. We believe this is a misunderstanding and are working to restore access as soon as possible. Read our full statement: anthropic.com/news/fable-myt…

The future of Web3 security isn't AI replacing auditors. An auditor equipped with AI will outperform an auditor working alone or a purely AI-driven system. The future is collaboration, not competition.

Check out my rank in the latest @cantinaxyz competition!

Ran Solace using Codex CLI with GPT 5.5 Solace's Composite Exploit agent triggered safety filter rejection, but GPT 5.5 automatically re-spawned it with slightly modified prompt which successfully bypassed safety filter! That's the kind of AI I need in my life💪

One day people will realize that their intelligent agent doesn't reason at all, as it's a glorified static analyzer. It sees some patterns a million times and says "Yeah, this is a bug for sure!" Then it chains two patterns it saw a million times and says "I found this issue via deep thinking!" It may work for the known issues it has crawled over and over, as long as they're in its feed. Once researchers stop feeding it new stuff, it will become blind. There's also another plausible scenario, where the AI is fed with all the slop it produces -- since people stop writing quality articles and papers, and it enters a cycle of slop reinforcement learning.

Because you depend fully on AI while auditing doesn’t mean everyone does. People still do manual audits and try to break the codes logic like the old times. These AI hype sh is 🤮.

World Cup starts tomorrow! 🏆

My only fear is that we rely a lot on tech that was only reviewed by exp3rtz, not by curious nerds who spend all day thinking about how to break things.

Hot take: manual auditing is still undefeated. AI catches patterns. Humans catch intent. ✌️

There are tons of critical bugs in other blockchains. Most likely in chains with no bounties, or with low bounties compared to the TVL. I know some managers prefer to pay $1M in tokens and audits instead of valid reports to hunters. Just do something before it's too late.

Can we stop using terms like top security firms, top auditors, or top whitehats to indicate how difficult a exploit was after they missed it? > the vulnerability had evaded years of scrutiny by many of the world’s best cryptographers. lol