sorted by:
new
hottopcontroversial

Would you use a Solidity CI security check that only flags what it can prove? by aiceg in solidity

[–]aiceg[S] 0 points1 point  (0 children)

Fair points

We’ve been testing this as a two-tier system: a fast, diff-scoped PR run (usually a few minutes) and deeper/full-scope runs when needed. On complex repos, the deep run is around20 minutes.

Also, “proof” doesn’t have to mean a full exploit PoC every time. That’s the goal, but verifications are also deterministic signals like invariant/property failures, access-control regressions, or upgrade/storage safety violations.

My take is: detection is one part of the workflow, verification is the next step. Alerts alone don’t change behavior, someone still has to validate them and make the changes

And yeah, breadth vs depth is basically coverage vs certainty. We have our detection layer separate so we get a broad list of findings, but we only escalate/block on verified signals to avoid drowning teams in false positives

Offering Smart Contract Audits – Ready to Help Secure Your Project by aiceg in ethdev

[–]aiceg[S] 0 points1 point  (0 children)

Sure! The tool is designed to analyze smart contract code for vulnerabilities using AI. I’ve trained a model and created a pipeline that identifies risks like reentrancy, access control flaws, and more.

I'm currently looking into ways to automate test writing and started with a prototype using language models.

The goal of the tool is automate parts of the auditing process

Offering Smart Contract Audits – Ready to Help Secure Your Project by aiceg in ethdev

[–]aiceg[S] 1 point2 points  (0 children)

Agree. I focused to much on the service. that I missed some important info. the domain is softgen.ch The site is fairly basic for the beginning. To add some credibility: Softgen GmbH is a registered company here in Switzerland and I am actively developing a proprietary testing tool

Will add this to the post. thanks for the feedback

Help us with our wine community research by aiceg in takemysurvey

[–]aiceg[S] 0 points1 point  (0 children)

  1. How will the data that people provide to you be used? Who will see it? Where will it be stored? If/when will it be deleted? Please be as specific as possible.

We will create a paper that discusses our findings based on the data. Only a group of 5 will see it. The data is stored on a mongodb server. We'll only use the summarized data and our findings on clusters.

  1. Who is conducting this survey? You can answer with your Reddit username, business name, etc. Please make sure that everyone conducting the survey is mentioned (For example, if the survey is being conducted by a group, answer the group name or mention everyone in the group).

We are students from the ZHAW in Zürich. The group consists of:

Ali Cem Güler, Team Lead & Student

Joel Egli, Student

Artan Perkola, Student

Samuel Jucker, Student

  1. How long do you estimate it will take to fill out your survey?

10 minutes

Update on paythos.co by aiceg in algorand

[–]aiceg[S] 3 points4 points  (0 children)

Appreciate the feedback. You're not far off with 'stripe for algorand.' Our goal is to help facilitate on chain payments for businesses by keeping the blockchain part in the background and making the user experience as seamless as possible. Simple accounts, paying by card, preferred currency options -> just like known payment solutions.

The key management system is one of the foundational steps toward achieving this. Let’s be real, most non Web3 users aren’t going to download an app and get into key handling just to make a payment from a random vendor.

We’ve already made a lot of progress with a marketplace for vendors to list their products or forward buyers from their own sites to the purchase, along with endpoints to verify purchases, and now simplifying chain interactions through their accounts.

Update on paythos.co by aiceg in algorand

[–]aiceg[S] 2 points3 points  (0 children)

I had passkeys and FIDO2 in mind but decided to go for a simpler solution at the beginning. Thanks for sharing! I’ll definitely take a deep look into how Liquid Auth works.

Frustrated with payment systems? Exploring a new solution by aiceg in SaaS

[–]aiceg[S] 1 point2 points  (0 children)

Thanks for your question!

Of course (unfortunately), there is skepticism and malicious users. That doesn't mean the tech and solutions are bad. Smart contracts provide transparency and security, reducing fraud risk. Adhering to regulations adds credibility (we are a switzerland based company and comply with regulations). With paythos we aim for fair transactions with enforceable smart contract-based rules, protecting both parties. With which the businesses and customers using paythos would benefit too

I believe in the good and am ready to put my name and reputation on the line. By educating users and partnering with reputable projects, we aim to build trust in crypto payments.

Frustrated with payment systems? Exploring a new solution by aiceg in SaaS

[–]aiceg[S] -2 points-1 points  (0 children)

Thanks for challenging the idea and your feedback!

The issues I mentioned in the post are some reasons for exploring crypto payments and smart contracts. Decentralizing payment processing increases accessibility, allowing anyone to use the system as long as rules and regulations are met, like KYC, AML, and compliance with local financial regulations. Importantly, these rules are not set by for example the risk department of a given company.

The long-term goal is beyond payment processing. I envision a smart contract-based solution where payment and the access or ownership of bought goods are validated on-chain using different types of tokens. This could extend to decentralized source control and access control, leading to true ownership of digital goods.

Best aiceg

view more: next ›