miniblog.

← Back to all posts
Aug 2, 2022 at 16:30
Smart contract security assessments are surprisingly readable: https://certificate.quantstamp.com/full/nomad It's clear what's being audited, the issues identified are clearly categorised, and the maintainer responses are shown.
Quantstamp - Public Security Assessments
Quantstamp - Public Security Assessments
This official audit report contains Quantstamp findings and client fixes.

Related Posts

Apr 26, 2026 at 13:16
4
One big challenge of open source is that the number of users (and bug reports) is entirely independent of the number of maintainers. Both users and maintainer capacity can fluctuate wildly.
Jan 22, 2026 at 20:11
10
The vast majority of libraries have a single maintainer. Even if you weight by downloads, roughly half of downloaded libraries have a single maintainer too.
Open Source is one person
Open Source is one person
The Register recently published a story titled Putin on the code: DoD reportedly relies on utility written by Russian dev. They should be ashamed of this story. This poor open source developer is getting beat up now to score some internet points. It’s very upsetting. But anyway, let’s look at some receipts. If you’re not real smrt, it seems like pointing out an open source project is written by one person in a country you don’t like is a bad thing. It could be. But it also could be the software running THE WHOLE F*CKING PLANET is written by one person. In a country. But we have no idea which country. It’s not the same person mind you, but it’s one person.
Jan 16, 2026 at 10:03
7
Wonderful post from the lead LLVM maintainer reflecting on how the project is run, the design issues in LLVM today, and opportunities to make it better:
LLVM: The bad parts