Yikes. Wasn't aware of that one. Thanks for sharing it.
I like smart contracts but you really have to be super careful with them, and ideally they should all be audited by a third party before launch, to help catch stuff like this. But even that's not a guarantee crap like this won't happen sometimes.
1) Upgradeable - where an authority has the right to replace the live contact at any time and rug-pull everyone. That's not trustless, and it's no better than running an app in AWS.
2) Non-upgradeable - where you simply have a self-funding bug bounty waiting to get popped. Even if they're audited.
They're not smart, and they're not interesting, to me anyways.
cableshaft|3 years ago
I like smart contracts but you really have to be super careful with them, and ideally they should all be audited by a third party before launch, to help catch stuff like this. But even that's not a guarantee crap like this won't happen sometimes.
arcticbull|3 years ago
1) Upgradeable - where an authority has the right to replace the live contact at any time and rug-pull everyone. That's not trustless, and it's no better than running an app in AWS.
2) Non-upgradeable - where you simply have a self-funding bug bounty waiting to get popped. Even if they're audited.
They're not smart, and they're not interesting, to me anyways.