33audits.hashnode.devSecurity Considerations for AuditorsThe vectors below are specific to CCA's architecture. Some are documented by Uniswap itself, some emerge from the mechanism, and one was found by us during an audit of a protocol built on top of CCA. 5d ago·8 min read
33audits.hashnode.devUniswap V4: Secure Design Patterns for HooksDesigning Secure Hooks for Uniswap: Key Considerations Hooks have become a hot topic among Web3 developers and auditors, especially with their potential to extend Uniswap's deep liquidity. While they offer new ways for developers to interact with pro...Nov 1, 2024·6 min read
33audits.hashnode.devTWAP Oracles For AuditorsWhat is a TWAP? A TWAP oracle is a Time-weighted average price oracle that calculates the average price of an asset over some predetermined period of time. If a user wants to know the price of ETH over 28 days then the TWAP will return the average pr...Feb 7, 2024·5 min read
33audits.hashnode.devAccount Abstraction: Security for AuditorsAccount abstraction is quite a new topic. Even many top auditors I've seen in our space are still learning about all the nuances Account Abstraction brings, including some new security risks. Below I've detailed a few different issues I've found whil...Oct 23, 2023·6 min read
33audits.hashnode.devERC 4337: Account Abstraction an Overview for AuditorsSmart contract wallets are a hot new topic. But it seems like many people don't understand them, leaving us as auditors responsible for understanding the risks they introduce. ERC4337 Consists of five key parts. At a high level, their mechanics are e...Oct 16, 2023·3 min read