@trailofbits How did you let these guys pass an audit without any automated tests? I could not find the audit report. Would it make sense for all the projects to have automated public test suite - even if you need to write it for them yourself?https://github.com/hegic/hegic-contracts-v1 …
Where do you see that @trailofbits said they "passed" anything? That audit report describes a dozen critically severe bugs that were found with relatively low effort.
-
-
Here is my line of thought https://twitter.com/moo9000/status/1254086433356361728?s=19 … Why did the project go ahead despite the audit? Was there a failure to communicate somewhere? It is bad for you as the project clearly associates Trail of Bits with it by publishing the report.
-
If the developer is young or hired why did he or she was not stopped by you guys if you see it needs more work?
- 3 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.