Docs Category: Security

To Share and +4 nLEARNs Login with NEARBetween a cross-contract call and its callback any method of your contract can be executed. Not taking this into account is one of the main sources of exploits. It is so common that it has its own name: reentrancy attacks. Always make sure to keep your state in …

Reentrancy Attacks Read More »

To Share and +4 nLEARNs Login with NEARNEAR has a revamped bug bounty program! Hackers – help audit, test, and toughen NEAR up, starting with bounties in the protocol category, and soon expanding to wallet, web, console, and smart contracts

To Share and +4 nLEARNs Login with NEARPagoda’s Smart Contract Audit Program is an important step in expanding smart contract audits and enhancing ecosystem security. It allows projects to get an audit with a vetted firm in a timely manner. Pagoda works with selected auditors and has experienced firms on a retainer with pre-paid slots …

Audit Program Read More »

To Share and +4 nLEARNs Login with NEARWhen writing smart contracts in NEAR you have access to a random seed that enables you to create random numbers/strings within your contract. This random seed is deterministic and verifiable: it comes from the validator that produced the block signing the previous block-hash with their private key. The …

Random Numbers Read More »

To Share and +4 nLEARNs Login with NEARWhile developing your smart contract, keep in mind that an individual can potentially create multiple NEAR accounts. This is especially relevant in ecosystems involving crowd decisions, such as DAOs. Imagine that you open the voting to anyone in the community. If each account can cast a vote, a …

Sybil Attacks Read More »

To Share and +4 nLEARNs Login with NEAROn NEAR, your contract pays for the storage it uses. This means that the more data you store, the more balance you need to cover for storage. If you don’t handle these costs correctly (e.g. asking the user to cover their storage usage), then a million little deposits …

Million Small Deposits Read More »