In Solidity, there are three ways in which one can send ether. Namely transfer(), send() and call(). In this article, let us discuss how each function call works and which is the best one to use. transfer vs send vs call transfer -> the receiving smart contract should have a fallback function defined or else…

The Sparkn contest marked my first audit as a team with 33Audits and hexbyte. It was an amazing learning opportunity, and I recommend solo auditors to occasionally work in teams. Now, let’s get to the findings: In total, there were 1 High, 3 Medium, and 12 Low-risk issues in the…

Prior to delving into the results summary, I strongly recommend watching Patrick Collins comprehensive 5-hour tutorial on building the project from scratch, which can be found on YouTube. …

This marks the start of a new blog series dedicated to my participation in audit contests. As a reader, your feedback is highly valued, so please feel free to share your thoughts with me. Introduction CodeHawks is an emerging public auditing platform tailored for Web3 security auditors, and at its core…

In the world of smart contracts, upgradable contracts have gained significant attention due to their flexibility and ability to adapt to changing requirements. These contracts follow the Proxy pattern, a design pattern that separates the logic and storage of a contract. The logic resides in one contract, while the storage…

Is it true that smart contracts are immutable? Well, not exactly. Smart contracts can be upgraded once they are deployed. To simplify how this works, think of two contracts: a proxy and an implementation contract. The proxy contract stores all the state variables but relies on the implementation contract for…

External functions in smart contracts enable users to input specific values. Let’s illustrate this with examples: In a Vault, actions like depositing or withdrawing. Similarly, in an ERC20 contract, functions such as transfer, transferFrom, and approve also involve passing inputs. Each of these functions comes with safeguards, often implemented by…

Payable functions play a crucial role in blockchain contracts, enabling users to send native ETH for various purposes like adding liquidity, staking assets, or purchasing NFTs. However, there’s an interesting scenario worth considering — one where a user inadvertently sends more Ether than intended. In such cases, a skilled developer can significantly enhance user experience by implementing a thoughtful approach. For instance, refunds the surplus Ether or offers a redemption option at a later point in time.

Developers commonly build smart contracts that interact with ERC20 tokens, the most prevalent type of token on the Ethereum blockchain. These tokens have become an essential part of the decentralized finance (DeFi) ecosystem. …