This page collects WhisperX intelligence signals tagged #smart-contracts. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical security flaw in the widely used Ethereum library web3.py allows smart contracts to force client applications to make HTTP requests to arbitrary, potentially malicious URLs without any validation. The vulnerability, tracked as GHSA-5hr4-253g-cpx2, resides in the library's implementation of the CCIP Read / Of...
A critical security flaw in the widely used Ethereum Python library, web3.py, allows smart contracts to force client applications to make HTTP requests to arbitrary, potentially malicious URLs. The vulnerability, tracked as GHSA-5hr4-253g-cpx2, resides in the library's implementation of the CCIP Read / OffchainLookup (...
A critical security vulnerability in the widely used Ethereum Python library web3.py allows smart contracts to force client applications to make HTTP requests to arbitrary, potentially malicious URLs. The flaw, tracked as GHSA-5hr4-253g-cpx2, resides in the library's implementation of the CCIP Read / OffchainLookup (EI...
A critical security vulnerability has been identified in the project's smart contract architecture: there is currently no way to quickly halt all contract operations during an active exploit or discovered flaw. This absence of a rapid-response circuit breaker leaves the entire system exposed, with no built-in mechanism...
Nine production smart contracts built on the Soroban platform have been identified as operating without a completed formal security audit, according to internal project documentation. The gap has prompted a structured preparation effort aimed at readying the codebase for third-party review. No timeline for the audit it...