The @DegenTrashPanda mint was paused to address vulnerabilities in the Candy Machine NFT deployment protocol

CMv2 was rewritten in a frenzy of coding by @redacted_j and just 2 weeks later, the mint is now reopened

Some background on CMv2 & why you should be excited for DTP🧵👇 Image
The DTP mint kicked off late November. Shortly after it was discovered that many super rare & mythic tokens were being sniped by a botter. The community investigated, went through the details & took action.
Several factors created conditions that supported the botting:
1. There was a full week between the FLP lottery & mint
2. A market to trade DTP tokens was created on dexlabs

This gave time for the botter to acquire a large # of tokens in preparation for the mint
3. The size of the mint (20k tokens)..
4. .. & the fact it was open indefinitely meant that people were didn't have to mint quickly (though this may not have mattered since they utilized DDoS attacks)
5. Lastly & crucially, the metadata & order of the CM was retrievable
#5 is the key flaw of CM v1 that allowed sniping. The order mattered less in previous mints because they used to sell out within seconds, making it difficult to snipe.

Though of course those mints were still susceptible to bots flooding transactions like @AuroryProject Image
In this case the botter used DDoS attacks to slow down the CM and lock minters out when a super rare was approaching, creating 400+ transactions in 30 seconds right before successfully minting the Crown Admiral.

After this the bot transactions went quiet for 14 minutes then... Image
... the bots fired up again and sent 500+ transactions in 40 seconds to jam the CM in anticipation of snagging this Acid Panda token which it then successfully minted. Image
Given the severe botting the mint was paused on November 29 to allow this exploit to be rectified.

2 weeks later...
... Enter Candy Machine v2. Written in a coding frenzy by @redacted_j, working with Brett from @civickey to implement the Captcha to gatekeep minting entries.
CMv2 uses recent blockhash for random selection of arweave URLs.

After you fill out the captcha it grants temporary program derived address (PDA) for a short duration.

The PDA is owned by the Civic identity program and when you mint the PDA is "punched" & invalidated.
This is pretty effective at stopping bots because on top of the randomness and PDA, CMv2 only allows instructions in the transaction from only the token program and the Candy Machine - preventing cherry picking attacks.
The biggest challenge of CMv2 is keeping CPU usage low with the random selection of arweave urls so @redacted_j implemented a method to speed up entry assignment - making CMv2 fairly viable and cheap. Still, you may notice some lag while using it!
CMv2 was first deployed and tested on the "People Nipple Cats" which was a test mint.

Needless to say, I miiiiiiiiiiiiiiiinted.

(Bonus: the art references previous disaster project @TheBearGangNFT) Image
It didn't take long for the bots to start arriving, but so far CMv2 was able to deal with them pretty well.
So where does this leave us?
- 14173 tokens have been minted with ~6k to go
- Most of the ill gotten gains have been sold back into the market to holders who want to participate in the project
- 114 DTP tokens still held by the botter
- Mint is now open for you to safely proceed
Since the mint has restarted, it's nice to see people starting to mint super rares & mythics after this joy was robbed from the rest of us - people old and new to Solana NFTs.
While its been relatively quiet, rest assured @pit_the_panda has been busy implementing. After all the Joker is a madman but he always seems to have a plan.

So after all of the hype, drama & controversy why should you still be excited?
1. @DegenTrashPanda remains an NFT project with a unique & innovative approach to blockchain gaming built by some of the best devs. CMv2 was written in 2 weeks meaning the team were able to get the help of industry-leading resources Image
2. The project is an entry point into the Degeniverse - a fun & irreverent brand underpinned by detailed 3D art (by Monoleaf? @monoliff) and represents exposure to one of the first major NFT projects that helped cement Solana as a viable blockchain for NFTs Image
3. By owning a DTP you gain access to the @DegenDAOO a strong and active community of builders, creatives, investors & pioneers on the Solana blockchain.

While there are a couple of channels that require you to have a Degen Ape, most are open to trash pandas Image
So far we've had IRL communities spring up in HK, Singapore, UK and the SF Bay area. Online we've started a parents channel, health & fitness and a gaming channel.

This is the community you join by hopping into the Degeniverse.
4. You have sideshow tickets to an entertaining rollercoaster ride. A shared experience.

NFTs with real life performance art mixed into a napalm cocktail delivered by flamethrower.

And we haven't even started the blockchain game yet. Image
So what now?

There are ~6k tokens left to mint, so get to it!

Then if you're up for the adventure, stick around and welcome to the Degeniverse. Image
Big thanks to @redacted_j & @Lumina191 who helped with some of the background research and details!

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with The Saint Eclectic

The Saint Eclectic Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @sainteclectic

21 Dec
The @DegenTrashPanda #NFT project is using some of the latest #Solana #blockchain innovations in its game such as the Entangler & Raindrops protocol

Here's what you need to know about the X'mas❤️mini-game + the innovations this project is pioneering🧵👇#nftcommunity Image
People who minted DTPs before the pause would have noticed ❤️ traits with a # from 1 to 6 applied to their panda.

This was part of a minigame @pit_the_panda has created for X'mas. In typical Pit / Joker style, he kept us guessing on its objective.
The aim of the game was to reward those who held their pandas longest without moving or listing them. Every snapshot if they had not been moved the ❤️ # decreased, with the aim being to get to 1❤️

The lower the ❤️ #, the greater the chance for your Panda to get an X'mas outfit! Image
Read 15 tweets
21 Dec
Developing the ability to spot cash grab projects is more important than ever with the increasing # of projects on @solana being launched every day.

I wrote this thread about @SolSoulsNFT as a case study in October. An update: 🧵👇
#nft #nftcommunity #eth
- Floor price crashed from 1 SOL to 0.09 SOL
- They released Halloween items but not much else
- Some community tried to support them but it has been a slow bleed
- Same team has launched @nova_launch to help ppl launch NFTs for a sizeable fee. Beware.
Updates from Sir Spooks a lot constantly promising more.

They walked away with 30,000 SOL ($4m at the time).

If they haven't 'hired, expanded or funded a DAO'... no way they are doing any of that now... Image
Read 4 tweets
20 Dec
A few lucky @DegenTrashPanda minters received an airdrop panda 3 days ago. These were 30 tokens received from the botter that we wanted to get back into community hands.

In arranging this we had to go through a fair bit of data, so some stats for you🧵👇#solana #nft Image
- There were 14,173 tokens minted by 5504 wallets before the pause
- This means ~2.6 pandas per wallet minted
- The 8 known bot wallets minted 240 tokens (1.6% of supply)
- He returned 30 tokens (mostly common/uncommons with rare traits, no ultra rares which he kept to sell) Image
- For the lottery we used random number generation to pick the 30 winners
- Botter wallets were removed from the lottery
- 1 mint = 1 chance
- The odds of winning a returned token was 30/13,933 (0.2%)
- The top non-botter wallet minted 247 tokens. 2nd most was 101 tokens
Read 4 tweets
29 Nov
With its Fair Launch, beautiful 3D art and an innovative approach the @DegenTrashPanda has been a blockbuster mint.

It has also unfortunately attracted bots & bad behaviour.

It's up to the community to investigate & set standards, so here is what we found & the action taken🧵👇
This thread was made with @DegenDAOO members, many of which took it upon themselves to do research, share info & come together to protect the community.

@NFTjordy @ApeddaddyRick @Funksonait @DegenAbeTrades @SuckMyLiqCrypto. Thank You.
Back to the story.

The @DegenTrashPanda mint launched on Nov 24th. After several delays, excited winners of fair launch tokens started swapping their tokens for trash pandas - people excitedly posted their NFTs and twitter was swarmed with Panda profile pictures.
Read 31 tweets
28 Nov
Our friend with the wallet "BEIJ" is back again.

Hot on the heels of his 1,000◎ @DegenTrashPanda purchase, he has now acquired:
- @DegenApeAcademy Ape #744 for 369◎
- Ape #9538 for 173◎
- Ape#9714 for 189◎

A total of 1,731◎ ($328k) spent on the Degeniverse in 2 days👀👇
This wallet BEIJ sent 3594◎ ($682k) from their CEX account on FTX exchange to their Solana wallet to fund their Degeniverse habit.

This does not imply its FTX, this is just what you'd see if you or I transferred SOL across from our FTX CEX account. Read on to see the purchases:
Read 7 tweets
27 Nov
The 1000◎ @DegenTrashPanda was bought by wallet BeiJ, funded by 6ZRC.

6ZRC is not a "normal wallet" because it is the FTX exchange: the buyer sent funds from FTX.

In fact, this very 6ZRC wallet was the one which funded the SMB Skellie King purchase👀👇
Image
Trash Panda transaction, funded 6ZRC: solscan.io/account/BeiJYM… Image
Skellie King transaction, funded by 6ZRC:
solscan.io/account/J7miek… Image
Read 5 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(