"Why do we STILL have REENTRANCY bugs??"
"Have we learned nothing from so many exploits??"
"Smart contract devs are so dumb broooo"
"Mi famiglia! 😭"

A perplexing phenomenon. But let me give you the other side of the equation, and explain WHY we still have reentrancy attacks 🧵 Hardly an industry has ever been so knowledgeable about a specific bug category / attack vector. Crypto bros have had enough of Reentrancy reentering their lives.
The man @pcaversaccio shows us a painfully complete list of reentrancy hacks - to date...
github.com/pcaversaccio/r…

#Solidity is the most adopted smart contract language for web3 devs. Going web2 ➡️ web3 requires a paradigm mindshift 🤯

Here's how one can master solidity to the point of mastery 🧙‍♂️ Specially from a security perspective 👀🧵 Solidity's syntax is very similar to that of JavaScript/Java, though typed.

Knowing CS fundamentals or at least prior knowledge of another programming language like Python or JS is quite helpful. It's good that you already went through the programming mind-blowing rabbithole 🐇

If smart contract code on the #blockchain is immutable, what is this thing we've been hearing about called "contract upgradeability"?

Let me break it down easily, and talk about its pros and cons 🧵 An incredible feature of a smart contract is that "code is law". The code will never change on a given contract account. That's actually true regardless of upgradeability, and I'll explain how this is in a bit.

This code stability creates trust and brings security to a product.