Short 🧵 on #EIP4626: the tokenized vaults standard that will be used by everyone & their mom
eips.ethereum.org/EIPS/eip-4626

Authored by the finest sers
@joey__santoro (@feiprotocol)
@transmissions11 (@paradigm)
@JetJadeja (@RariCapital)
@alcueca (@yield)
@fubuloubu (@ApeFramework)
1/9 EIP4626 aims to standardize tokenized vaults. Wat mean?

A vault is a contract into which you deposit some token, e.g. you deposit DAI into @Compound in order to earn yield on those DAI
🧵2/9

Knock knock anon, who's watching you?

Correct, your RPC provider

We made derp.hoprnet.org so that you can watch them watching you

Here's 3.5 surprises 👇 Reminder that for 99% of all Ethereum users "RPC provider" simply means "a computer in Uncle Joe's basement that I blindly trust. I blindly trust the data that it delivers to me and I also blindly trust their pinky promise to not log everything they see about me"

Had a few rough days and nights - no real damages but some really interesting Solidity security lessons learned 👇

https://twitter.com/hoprnet/status/1484113038047604738

The core of the issue was being too nice to the user (claiming rewards during unstake) followed by too strict validations (rewards were `require`d to be >0)

The most expensive Ethereum tx was in fact a bug in a money laundering bot that made people believe it was miner laundering

How would that work, how do we know and why is that a bad idea wrt privacy?

👇👇👇

forbes.com/sites/youngjos… by @iamjosephyoung

https://twitter.com/sassal0x/status/1270670491385094150

Naive money laundering via miner collusion would work like this:

1) Create a tx with *ridiculous* gas price (in this case amounting to over 10k ETH, ~$2.5m)

The Bitcoin halving is commonly perceived as #NumberGoUp

But isn't it more of a #SecurityGoingDown meme?

Let's look at the fundamentals and some actual numbers: Proof of work provides consensus-layer security for Bitcoin

PoW relies on miners to actually run infrastructure

That costs money which miners must earn somehow