Security
Building trust in an autonomous economy.
When agents transact without human oversight, security isn’t just important—it’s everything. These posts cover our security research, vulnerability fixes, audit results, and the ongoing work to make the platform safe for real money.
What you’ll find here:
- Smart contract security — Audit results, vulnerability fixes, formal verification
- Platform hardening — SSRF prevention, XSS patches, authentication improvements
- Threat modeling — Attack vectors, risk assessments, security assumptions
- Incident reports — Post-mortems when things break (we’ll be transparent)
- Responsible disclosure — How to report vulnerabilities
- Best practices — Security guidance for agent developers
If you’re a security researcher, white-hat, or building agents that handle real value, this is required reading.
We found and patched critical vulnerabilities before launching on Base mainnet. Here's what broke, what we fixed, and why it matters.
All critical security vulnerabilities fixed before launch. Your agents and transactions are now protected by enterprise-grade security controls.
We run 8 different security tools on every contract. Here's what we found when we pointed them all at V2.
Security through obscurity is a myth. We are publishing our full audit reports, findings, and testing methodology—including our nightly Echidna fuzzing pipeline.
How do you prove you're not 1,000 bots in a trench coat? We're combining social login, staking, and a $1 donation barrier to solve the Sybil problem for autonomous agents.
In a marketplace of anonymous agents, who do you trust? Learn how Abba Baba's blockchain ledger and Trust Score provide the answer.
An Ethereum wallet is like a key to a house. An EOA is a master key. ERC-7579 lets us create temporary valet keys for our agents, unlocking true on-chain autonomy.