ByAUJay
In just one afternoon, you can easily tell the difference between genuine Solidity engineers and those who just know how to fluff their résumés. All you need are some targeted, contemporary questions that focus on ROI, auditability, and delivery risk. Here’s the exact playbook and question bank we rely on to hire senior Solidity talent for our Enterprise programs--this aligns perfectly with SOC2, procurement needs, and the new realities of post-Dencun EVM.
Hiring for Solidity: Technical Interview Questions We Use at 7Block
Pain
Pain is something we all experience at some point in our lives, right? It can come in many forms, whether it's physical, emotional, or even psychological. Here’s a closer look at what pain really means and how it can affect us.
Types of Pain
- Acute Pain: This is the sharp, sudden pain that usually goes away after a short time. Think of a sprained ankle or a stubbed toe--definitely not fun, but usually temporary.
- Chronic Pain: Unlike acute pain, chronic pain hangs around for a long time, often lasting months or even years. Conditions like arthritis or fibromyalgia fall into this category.
- Emotional Pain: This type of pain can hit you just as hard as physical pain. It includes feelings like sadness, grief, or anxiety. Dealing with emotional pain can be tough, but it's essential to recognize it and seek help when needed.
How Pain Affects Us
Pain can really change how we live our daily lives. Here are some ways it can affect us:
- Physical Limitations: Pain can make it hard to move around or do everyday tasks.
- Mental Health: Ongoing pain can lead to feelings of frustration, depression, or anxiety.
- Social Life: Chronic pain may cause some folks to withdraw from social activities, leading to feelings of isolation.
Managing Pain
Dealing with pain isn't easy, but there are ways to manage it. Here are some common strategies:
- Medication: Over-the-counter pain relievers, like ibuprofen or acetaminophen, can help with mild pain. For more severe pain, a doctor might prescribe stronger meds.
- Therapies: Physical therapy, acupuncture, or massage can be effective in managing pain for some people.
- Lifestyle Changes: Regular exercise, a healthy diet, and good sleep can play a big role in how we feel.
Conclusion
Pain, in all its forms, is a part of life. While it can be challenging to deal with, understanding its different types and knowing how to manage it can help us navigate through tough times. If you or someone you know is struggling, don't hesitate to reach out for help. There’s always support out there.
You brought on a “senior” Solidity developer who can whip up ERC‑20s but struggles to wrap their head around the changes in EIP‑6780’s SELFDESTRUCT. They also overlook the optimizations in EIP‑1153 and EIP‑5656, and they send out upgradeable contracts that don’t pass formal verification. This leads to constant issues with security audits, gas budgets that are off by 2-5 times, and procurement getting caught up in SOC2 evidence and change-control paperwork.
Agitation
Agitation refers to a state of anxiety or nervousness that can affect how we feel and behave. It's that feeling of being on edge, restless, or unsettled. Let's dive a bit deeper into what agitation is all about, its causes, and how we can manage it.
What Is Agitation?
Agitation is more than just feeling a little off. It can show up as:
- Restlessness
- Irritability
- Increased heart rate
- Sweating
- Difficulty concentrating
When someone is agitated, they might find it hard to calm down or focus on what they need to do. It’s a state where emotions are heightened, and control can feel out of reach.
Causes of Agitation
There are tons of factors that can cause someone to feel agitated. Here are a few common culprits:
- Stress: This could come from work, relationships, or other life pressures.
- Mental Health Disorders: Conditions like anxiety, depression, or bipolar disorder can lead to agitation.
- Substance Use: The use or withdrawal from drugs and alcohol can amplify feelings of agitation.
- Medical Conditions: Some physical illnesses or conditions can have agitation as a symptom.
Managing Agitation
If you or someone you know is dealing with agitation, here are some strategies that might help:
- Deep Breathing: Taking slow, deep breaths can help calm the nervous system.
- Exercise: Getting moving can help release pent-up energy and improve your mood.
- Talk It Out: Sometimes just chatting with a friend or loved one can provide relief.
- Mindfulness and Meditation: These practices can help ground you and bring a sense of peace.
- Seek Professional Help: If agitation is severe or persistent, it might be time to speak with a therapist or counselor.
Conclusion
Agitation is a tricky feeling that can really throw off your day-to-day life. Understanding what it is, what causes it, and how to manage it can make a big difference. Remember, it’s okay to ask for help if you need it!
For more information on mental health and wellness, check out resources like NAMI and Mental Health America.
- We've seen some deadlines slip due to features that seemed "nearly done" but fell apart when we introduced Dencun/4844 fee dynamics, increased calldata costs, or those Prague/Pectra EVM defaults into our testnets. Check out more details on this over at galaxy.com.
- After the merge, our internal teams had to explain to PMO why a rollback on the metamorphic contract isn't feasible anymore following EIP-6780. The hotfix window is closing fast, and on top of that, legal's getting concerned about vendor risks. You can find more info on that at eips.ethereum.org.
- Procurement’s putting a hold on SOWs since the team hasn’t been able to generate consistent gas profiles or CI artifacts that show property/invariant coverage. Security is having a tough time linking formal specs back to tests, and auditors are flagging various concerns like weak separation of duties and not enough evidence for changes required for SOC2 Type II.
Solution
Here's a breakdown of the solution:
- Identify the Problem
We need to clearly understand what issue we're trying to solve. It’s crucial to define the problem in simple terms. - Gather Information
Collect as much relevant data as possible. This might involve research, talking to experts, or reviewing previous work in the area. - Brainstorm Ideas
Throw around some ideas! Don't hold back--sometimes the wackiest thoughts can lead to the best solutions. - Evaluate Options
Look at each idea critically. What are the pros and cons? Consider factors like cost, time, and resources. - Choose a Solution
After weighing your options, pick the solution that seems the most promising. Make sure it’s realistic and achievable. - Implement the Solution
Put your chosen solution into action. Make a plan, gather your resources, and start tackling the problem. - Monitor and Review
Keep an eye on how things are going. Is your solution working? Be ready to adjust your approach if needed.
Feel free to reach out if you have any questions or need further clarification!
Here's the scoop on the 7Block interview method--it's technical but super practical. We combine this with a solid delivery assurance through our smart contract development and audit practice:
- Smart contracts and protocol builds: Check out what we offer in terms of smart contract development and our wider blockchain development services.
- Security and compliance: We’ve got you covered with comprehensive audits, CI instrumentation, and neat SOC2 evidence packaging.
- Systems integration and go-live: We handle everything from ERP/CRM data to KMS/HSM and observability pipelines.
We take a close look at four key skills that really make a difference for the business:
- Understanding EVM-level accuracy with the latest forks (like Dencun, Prague/Pectra).
- Being savvy about gas costs after EIP-4844 (you know, blobs) and keeping up with micro-operations like PUSH0 and MCOPY.
- Keeping an eye on protocol safety and standards (think EIP-6780, ERC-6909, EIP-712/2612).
- Staying disciplined with verification (using tools like Foundry invariants, Echidna, and Scribble) as part of our CI process.
In the sections below, you'll find:
- The exact requests we have.
- What we consider “good” (the key signals).
- A hands-on example where the candidate can code in real-time.
1) EVM Correctness and Storage Layout (Post-Dencun/Pectra)
When we talk about the Ethereum Virtual Machine (EVM), getting the correctness and storage layout right is super important, especially after the recent upgrades like Dencun and Pectra. These updates introduced some cool changes that impact how we think about and work with the EVM.
Key Points to Consider
- EVM Correctness: It’s all about making sure that the EVM operates as it should. This means verifying that all transactions are processed accurately and consistently.
- Storage Layout: After the updates, the way data is stored in the EVM has some new nuances. Understanding the layout helps developers manage their smart contracts more effectively.
What's New Since Dencun/Pectra
- The improvements made in Dencun and Pectra are designed to enhance the overall reliability and performance of the EVM.
- Developers need to pay attention to how these changes might affect their existing contracts and the way they interact with the storage layout.
To dive deeper into the specifics of EVM correctness and the latest storage arrangements, check out the official documentation and community discussions. Staying updated is key in this fast-evolving space!
Storage Slot Derivation for mapping(bytes32 => struct) with Nested Arrays
Alright, let’s dive into how we can derive storage slots for a mapping(bytes32 => struct) that includes nested arrays, and why it’s essential to keep track of our layout, especially when upgrading via UUPS.
1. Understanding the Structure
Imagine we have a struct like this:
struct MyStruct {
uint256 id;
string name;
uint256[] values;
}And a mapping that uses this struct:
mapping(bytes32 => MyStruct) public myMapping;2. Storage Slot Calculation
The storage layout in Ethereum contracts is based on the order that variables are declared, starting from zero. Here’s how we derive the storage slots:
- Mappings in Solidity are hashed based on their key, so their exact storage location isn’t straightforward.
- The base slot for the mapping will be 0 (the first declared variable), and it will use the key to compute the actual storage location.
For our mapping, the storage slot can be derived by hashing as follows:
storageSlot = keccak256(abi.encodePacked(key, baseSlot))Where:
keyis thebytes32key you’re using to access your mapping,baseSlotis0sincemyMappingis the first variable.
3. Nested Arrays within Structs
Now, when it comes to the values array inside our struct, it's important to note that the storage layout for arrays is a bit different. Each dynamic array gets its own slot, starting from the next available slot after the struct fields.
So when you look at MyStruct, its layout in storage will look something like this:
myMappingmapping base slot:0id:1name:2values: This will start from3, but remember, it can lead to multiple slots if the array is dynamic.
For the values array, each element will sequentially occupy its own slot, starting from the first slot for the array.
4. Audit Note When Upgrading via UUPS
When you're using UUPS (Universal Upgradeable Proxy Standard) to upgrade your contracts, you absolutely need to keep an eye on how you lay out your storage. Here’s why:
- New Variables: Adding new variables can shift the existing ones, which means they might not point to the same data anymore. If you’ve defined an
idat slot1, and then you add another variable without proper tracking, you might accidentally overwrite it. - Arrays and Mappings: Since these structures use a hashed approach and dynamic slots, if their size changes or if you change how you structure them, it could lead to misalignment. The next developer (or future you) might get very confused trying to find out where data is stored if the layout has changed unexpectedly.
- Audit Trails: Leaving clear notes and maintaining a detailed audit trail of your storage layout is essential, especially during upgrades. It ensures clarity and helps avoid potential pitfalls that might arise when someone is trying to understand the implications of your changes.
So, keep your layout clear and documented when you plan on making those upgrades! It’ll save a ton of headaches down the line.
Signals We Expect:
- It breaks down how
keccak(key . slot)works for mappings and how it applies to dynamic arrays, usingkeccak(slot)as the starting point. Plus, it gives a heads-up about potential storage collisions during proxy upgrades and shows how it lines up with EIP‑1967. It also touches on Dencun-era opcode behaviors and notes that with solc 0.8.30, the default EVM was switched to Prague. Lastly, it demonstrates how to manageevmVersion/viaIRin the solc config for creating deterministic bytecode. You can check out more details here.
Live Exercise (10-12 min)
- Let’s dive into implementing a compact struct packing! We’ll be working with a combination of
uint128,uint64, andbool. After we’re done, we’ll take a look at the before and after SSTORE deltas using Forge test gas snapshots.
Make sure to have your environments ready, and let’s see how much we can save on gas!
Follow‑ups:
- Check in about those compile-time storage layout specifiers and constants that were rolled out in version 0.8.31. They’re there to help make upgrade diffs more clear during code reviews. (soliditylang.org)
- Dencun/4844 Literacy and Gas Modeling
Overview
Dencun/4844 is all about improving literacy and gas modeling techniques. This project dives into how we can enhance understanding and education in these areas.
Key Objectives
- Boost literacy rates: We’re aiming to create innovative methods to teach and engage people.
- Refine gas modeling: Our goal is to develop more accurate models that help predict gas behavior and usage.
What’s Included?
Here's what you can expect as part of this initiative:
- Workshops and Training: Engaging sessions focused on literacy and gas modeling that cater to different skill levels.
- Resource Materials: We’ll provide handy guides and materials to support learning.
- Collaborative Projects: Opportunities to work with others to apply what you’ve learned in real-world scenarios.
Getting Involved
Interested in joining the cause? Here’s how you can participate:
- Sign Up for Updates: Stay in the loop about upcoming events and resources.
- Join a Workshop: Get hands-on experience and enhance your skills.
- Spread the Word: Share this initiative with friends and colleagues who might be interested.
Final Thoughts
Dencun/4844 is a fantastic opportunity to enhance literacy and improve gas modeling. Let’s work together to make a positive impact! For more information, check out our website and get involved today!
Question:
How would you adjust an L2 batch poster contract that was created before Dencun to account for blob gas pricing and potential calldata cost risks?
Signals We're Looking For:
- The candidate should be able to explain EIP‑4844 blob transactions, including how there's a separate “blob gas” fee market (with a target of 3 blobs and a max of 6 blobs per block). It's important that they mention how blob data gets pruned and only exists on the consensus layer, which means it’s not queryable through EVM. So, on-chain verification needs to reference commitments. They should also have a solid grip on the rollup fee model that differentiates between execution gas and blob gas, and be able to talk about cost sensitivity. For more in-depth info, check out this galaxy.com article!
What “great” looks like:
- Talks about possible increases in calldata costs (like the Pectra initiatives, including EIP‑7623, which are currently being discussed) and includes a safety net in the poster that allows a switch between calldata and blobs, complete with SLA-compliant alerts. (soliditylang.org)
Example rubric:
- 3/5: gets that blobs can really slash costs for L2s by a huge amount.
- 5/5: lays out a solid budgeting formula using runs depth × average bytes per batch, analyzes blob price elasticity, and suggests a cool monitoring dashboard linked to your SLA.
3) Opcode-Level Optimization (Without Sacrificing Readability)
When we talk about opcode-level optimization, we're diving into enhancing the performance of our code at a pretty granular level. The cool part? You can boost efficiency without making your code a confusing mess.
Here’s how you can achieve that balance:
- Be Mindful of Your Instructions: Different operations can have different costs. It's worthwhile to look up how your compiler handles certain instructions and see if there's a more efficient route you can take.
- Use Built-in Functions: Many languages come with optimized built-in functions. Instead of reinventing the wheel, leverage these to avoid unnecessary complexity.
- Minimize Control Flow Changes: Frequent jumps in code can slow things down. Keep your logic straightforward to maintain readability while optimizing performance.
- Data Locality: Organizing your data efficiently in memory can significantly improve performance. Aim for structures that make access patterns predictable.
- Profile Your Code: Use profiling tools to spot bottlenecks. By understanding where the slowdowns are, you can focus your optimization efforts where they matter most.
It's all about keeping your code clean and understandable while still getting the performance gains you want. Happy coding!
Question: Where can we spot the savings from using new opcodes in 2025+ EVMs?
In the upcoming versions of the Ethereum Virtual Machine (EVM) starting in 2025, we can expect some significant improvements thanks to the introduction of new opcodes. Here are two key areas where these changes will lead to some real savings:
1. Gas Cost Reduction for Common Operations
With new opcodes, tasks that are frequently performed will have lower gas costs compared to their older counterparts. For example, operations like ADD, SUB, and other basic arithmetic functions will see reduced gas fees. This means that developers can optimize their smart contracts even more, making them cheaper to execute.
2. Improved Storage Access
Another area where we’ll notice a big difference is in how storage operations are handled. New opcodes will streamline processes related to reading and writing data on-chain. This will not only speed things up but will also cut down on gas expenses when interacting with smart contracts, which typically require a lot of storage operations.
Combining these enhanced functionalities will provide developers with better tools for building efficient and cost-effective applications on the Ethereum network, ultimately benefiting users as well.
Signals we’re looking out for:
- PUSH0 (EIP‑3855): This one’s all about ditching those zero constants. Check it out here: (eips.ethereum.org).
- MCOPY (EIP‑5656): Say goodbye to the MLOAD/MSTORE loops for copying bytes with this handy replacement. More info can be found here: (eips.ethereum.org).
- Transient storage (EIP‑1153 TLOAD/TSTORE): This is a game changer for implementing reentrancy guards or intra-tx caches without breaking the bank compared to SSTORE/SLOAD, while keeping in mind the cross-external-call semantics in the same transaction. Dive deeper here: (eips.exposed).
Live Code: MCOPY vs Loop
When it comes to copying data in programming, two common methods often come up: using MCOPY and a loop. Let’s run through a quick comparison to see how they stack up against each other.
What is MCOPY?
MCOPY is a built-in function that allows you to copy blocks of memory quickly. It's typically much faster than a loop because it operates at a low level, directly manipulating memory.
Example of MCOPY
Here’s a simple example of how you might use MCOPY in your code:
#include <string.h>
void copyData(char* dest, const char* src, size_t n) {
memcpy(dest, src, n); // This is where MCOPY comes into play
}What is a Loop?
On the other hand, a loop is a more straightforward and widely used method for copying data. You might go through each element one by one, which can be more intuitive, but it’s generally slower than MCOPY, especially for larger data sets.
Example of Loop
Here’s how you might do the same thing using a loop:
void copyData(char* dest, const char* src, size_t n) {
for (size_t i = 0; i < n; i++) {
dest[i] = src[i]; // Manual copy of each element
}
}Performance Comparison
Here’s a quick look at the pros and cons of each method:
| Method | Pros | Cons |
|---|---|---|
| MCOPY | Fast, efficient memory handling | Less control over copy |
| Loop | Simple, clear, easy to understand | Slower for large data |
Conclusion
So, if you need to copy large data blocks and performance is key, MCOPY is often the way to go. For smaller data sets or when clarity is important, a loop can be just fine. Make sure to choose the right method for your needs!
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.30; // default EVM 'prague' from solc 0.8.30 release notes
library BytesCopy {
function copy(bytes memory src) internal pure returns (bytes memory out) {
out = new bytes(src.length);
assembly ("memory-safe") {
let len := mload(src)
let srcPtr := add(src, 0x20)
let outPtr := add(out, 0x20)
// Use MCOPY (EIP-5656) for overlapping-safe, linear-time copying.
mcopy(outPtr, srcPtr, len)
}
}
}We'd like them to clarify a couple of things:
- First up, why does MCOPY line up with the other W_copy gas semantics? Plus, how is it set for the future compared to the quirks of the identity precompile? You can check out more about this here.
- Also, we need some guidance on how to set the
evmVersionto “cancun/prague” during compilation, depending on the chain targets. This is super important to avoid any invalid opcode errors on older forks, which could be a procurement risk when dealing with multi-chain deployments. More details can be found here.
Transient Storage Guard
Transient storage is a handy feature in many applications, but it can sometimes lead to data loss if not managed properly. That's where the Transient Storage Guard comes into play. It’s designed to help you monitor and protect your transient data more effectively.
What is Transient Storage?
Transient storage refers to temporary data that applications create and use during their runtime. This data is not meant to be stored permanently. However, if something goes wrong, you might lose important information having your app crash or restart unexpectedly.
Why Use Transient Storage Guard?
Here are a few reasons why Transient Storage Guard is essential for your applications:
- Data Protection: It helps keep your transient data safe from unexpected loss.
- Error Tracking: You can easily track and troubleshoot issues related to transient data.
- Performance Monitoring: It provides insights into how well your transient storage is functioning.
Key Features
Here’s what makes Transient Storage Guard stand out:
- Real-time Monitoring: Keep an eye on your transient data in real time.
- Alerts and Notifications: Get notified if something goes awry, so you can act fast.
- Detailed Logs: Access detailed logs that help you understand data usage patterns.
Getting Started
To implement the Transient Storage Guard, follow these simple steps:
- Install the Guard: Make sure you have the Transient Storage Guard installed in your application.
- Configure Settings: Adjust the settings to fit your specific needs.
- Monitor Performance: Start monitoring your transient data for any irregularities.
Conclusion
In short, if you’re working with transient storage in your applications, having a solid guard in place can be a lifesaver. It's all about keeping your data safe and ensuring your app runs smoothly. For more details, you can always check the official Transient Storage Guard Documentation.
Remember, a little precaution goes a long way!
// Reentrancy guard using EIP-1153 transient storage.
pragma solidity ^0.8.30;
abstract contract TGuard {
// keccak256("tguard.lock")
uint256 constant SLOT = 0x9e7ea6d5e9272f6b1b76c8f2d1ab1f873eacb70e1aa72b4f1a7ab4e507c7a999;
modifier nonReentrant() {
assembly {
// TLOAD returns 0 if unset during the transaction
if tload(SLOT) { revert(0, 0) }
tstore(SLOT, 1)
}
_;
assembly {
tstore(SLOT, 0)
}
}
}We’re hoping for a discussion around:
- Why this is tx-scoped (it clears at the end of the transaction), why it’s cheaper than a warm SSTORE, and why it’s good enough if there’s no need for cross-tx locking. Check it out here: (eips.exposed)
4) Post-EIP-6780 Upgradeability Questions (No More Metamorphic Patterns)
With the introduction of EIP-6780, there are several important questions surrounding upgradeability, especially since metamorphic patterns are now a thing of the past. Here’s what you need to know:
- What does EIP-6780 mean for upgradeability?
EIP-6780 introduces enhanced capabilities for smart contracts, allowing them to be upgraded more smoothly compared to earlier methods. - How does it affect existing contracts?
For contracts that were built using metamorphic patterns, EIP-6780 means those patterns are no longer viable. Developers will need to adapt their upgradeability strategies to align with the new approach. - What are the alternatives?
Instead of metamorphic patterns, consider using proxy patterns or other upgradeability techniques that are compatible with EIP-6780. These alternatives will still allow for flexibility without relying on outdated methods. - Are there any resources to help with the transition?
Absolutely! Here are some useful links to help you navigate this transition: - What should developers keep in mind?
Staying updated and understanding the implications of EIP-6780 is key. Make sure to review your existing contracts and plan ahead for upgrades.
In summary, while metamorphic patterns are out, EIP-6780 paves the way for smarter solutions in smart contract upgradeability. Keep these points in mind as you move forward!
Question: Your legacy system relied on SELFDESTRUCT + CREATE2 to “re-init” a contract at the same address. What’s broken now, and what’s the enterprise-safe alternative?
In your old setup, you were using SELFDESTRUCT along with CREATE2 to restart a contract while keeping the same address. But here's the kicker: that approach is now a bit broken and might not be the best option anymore.
So, what’s the issue? When you call SELFDESTRUCT, it wipes out the contract and removes its code and storage. While CREATE2 would allow you to deploy a new contract at the same address, the whole process can lead to unexpected behaviors, especially in more complex systems where you want to ensure everything is secure and stable.
Now, what’s the way forward? A much safer alternative in enterprise applications is to use proxy contracts. They let you update the logic while keeping the same address and storage completely intact. This means you can add new features or fix bugs without needing to worry about the pitfalls of the previous method.
Here’s a quick rundown on the benefits of using proxy contracts:
- Upgradability: Easily deploy new logic without changing your contract address.
- State persistence: Your contract's state remains untouched, which is crucial for maintaining data integrity.
- Security: They offer better patterns for managing access and permissions.
If you're looking to explore this option, be sure to check out OpenZeppelin's upgradeable contracts guide. It’s a solid resource for implementing these patterns securely.
Signals We Expect:
- States that after EIP‑6780, the
SELFDESTRUCTfunction won’t delete code or storage unless it’s called within the same transaction as the contract creation. This puts a wrench in the redeploy-at-same-address strategies. Instead, it’s a good idea to consider using proxy patterns like UUPS or transparent proxies, and if it makes sense, the ERC‑2535 diamond approach. Just make sure to have your storage layout governance and change-control processes lined up with SOC2 standards. (eips.ethereum.org)
We’re looking forward to seeing:
- A brief plan for migration that includes freezing the current setup, taking a snapshot of the storage layout, deploying the UUPS implementation, transferring admin rights, adding Pausable/AccessControl features, and getting rid of any outdated metamorphic paths.
5) Mastering Standards Beyond ERC‑20/721
When we talk about tokens in the crypto world, most folks immediately think about ERC‑20 and ERC‑721. These standards have definitely paved the way for the ecosystem we see today. But guess what? There's a whole world of other standards out there that are worth exploring!
Why Explore Beyond ERC‑20/721?
While ERC‑20 tokens are great for fungible assets and ERC‑721 tokens are fantastic for unique items (like collectibles), the landscape is evolving. New standards are emerging to meet different needs, and diving into these can really broaden your understanding of blockchain technology. Here are a few that are catching attention:
- ERC-1155: This one's a game changer! It allows for both fungible and non-fungible tokens to coexist in a single contract. That means more flexibility and lower transaction fees.
- BEP-20 / BEP-721: If you're into Binance Smart Chain, you might want to look into these. They mimic the Ethereum standards but are optimized for BSC's unique environment.
- ERC-4626: A token standard specifically for yield-bearing assets. It's designed to create a standardized way of interacting with vaults and other yield-generating protocols.
- EIP-2981: This one's all about royalties for creators, allowing them to earn a percentage every time their work is sold or resold, which is super important for artists.
Keeping Up with the Trends
Staying on top of these evolving standards will not only enhance your knowledge but can also open up new opportunities within the crypto space. Keeping an eye on platforms like Ethereum's official EIP repository or Binance Smart Chain's developer portal can help you stay in the loop.
Final Thoughts
So, while ERC‑20 and ERC‑721 are important foundational standards, don’t forget to look beyond them. The blockchain universe is constantly evolving, and who knows? You might just find the next big thing waiting for you outside the usual boundaries!
Question: When would you choose ERC‑6909 over ERC‑1155, and what are the tradeoffs?
When figuring out whether to go with ERC‑6909 or ERC‑1155, it really comes down to what you need for your project. Here’s a quick rundown of each standard and what you might want to consider.
ERC‑6909
ERC‑6909 is all about giving non-fungible tokens (NFTs) some extra life. It allows you to create NFTs that are “upgradable,” which means you can change their properties after they’ve been minted. This can be super useful for certain projects that need flexibility, like games where you want to evolve characters or items over time.
Pros:
- Upgradable Features: You can change the attributes of your NFTs, keeping them relevant and engaging.
- Dynamic Content: Perfect for projects involving games or evolving digital assets.
- User Engagement: Keeps users coming back as they see changes and upgrades.
Cons:
- Complexity: Upgradable features can make contracts more complicated and harder to manage.
- Trust Issues: Users may be wary of upgradable tokens, as they might feel their ownership isn’t as secure.
- Vendor Lock-In: You could end up relying on the original contract developer for upgrades.
ERC‑1155
On the flip side, we have ERC‑1155, which is a multi-token standard that lets you manage multiple token types (like fungible and non-fungible) in one contract. This can be a major time-saver if you’re looking to launch a diverse range of assets.
Pros:
- Efficiency: You can handle various token types under a single contract, which can lead to lower transaction costs.
- Batch Transfers: Great for sending multiple tokens at once, making transactions smoother.
- Fungible and Non-Fungible: Flexibility to create both types of tokens easily.
Cons:
- Less Customization: Compared to ERC‑6909, you might have fewer options for changing or upgrading NFTs once they’re out there.
- Slightly Steeper Learning Curve: Working with diverse token types may be a little complicated at first.
When to Choose?
- Go for ERC‑6909 if your project thrives on evolving assets where upgrades can keep the experience fresh and engaging.
- Stick with ERC‑1155 if you want a more straightforward solution that manages various tokens efficiently without the need for constant updates.
Ultimately, it’s all about match-making your project’s goals with the right token standard. Each has its strengths and weaknesses, so take a hard look at what you need before making a call!
Signals We Expect
- The ERC‑6909 standard introduces a streamlined multi-token interface that doesn’t rely on mandatory callbacks and offers a mix of allowance and operator permissions. This makes it not only more efficient in terms of gas and code size but also easy to adopt. A great example of this is Uniswap v4's PoolManager, which uses ERC‑6909 internally. Plus, it’s worth noting that 6909 allows for totalSupply updates during minting and burning. Check out the full details here: (eips.ethereum.org).
Follow-up:
- When it comes to an enterprise asset platform, it's important to clearly outline migration risks and ensure client compatibility. If necessary, provide adapters for the 1155 standard and make sure to document any ABI changes for the integration teams.
When it comes to needing adapters, reporting, and audit trails across your finance systems, we've got you covered with our asset management platform development and asset tokenization practices.
6) ZK-Aware Engineering (Budgeting Verification Gas Correctly)
When dealing with zero-knowledge proofs, making sure you're budgeting the gas costs correctly is super important. You want to optimize your ZK circuit for efficiency, so here's how you can keep things running smoothly:
- Understand the Gas Costs: Each operation in your circuit will incur different gas fees. Familiarize yourself with the specific costs associated with ZK operations, and try to minimize them whenever possible.
- Optimize Your Circuit: Take a good look at your circuit and see if there are any ways to simplify it. Reducing complexity can often lead to lower gas costs.
- Test and Iterate: Make sure you're running tests to see how your circuit performs under various conditions. This will help you identify any bottlenecks or areas where gas consumption can be reduced.
- Stay Updated: The landscape of ZK technology is always evolving. Keep an eye on updates and improvements that could help optimize your gas usage.
By keeping these tips in mind, you’ll be well on your way to managing your gas costs effectively in ZK-aware engineering!
Question: What are the on-chain verification costs for a Groth16 proof, and how does EIP-1108 impact the budget?
When we talk about on-chain verification costs for Groth16 proofs, we’re looking at a few key factors. Generally, the cost is influenced by the size of the proof and the corresponding gas fees needed for the verification process.
Verification Costs Overview
- Gas Cost: Verifying a Groth16 proof can get pricey, typically around 28,000 to 30,000 gas per proof. This amount can vary based on a few elements, but that’s a solid ballpark figure.
- Proof Size: The size of the proof itself can also play a role in the overall costs, especially when it comes to gas limits.
EIP-1108 Influence
Now, let’s talk about EIP-1108. This proposal was designed to help lower the verification costs for zero-knowledge proofs. Here’s how it makes a difference:
- Reduced Gas Costs: EIP-1108 aims to decrease the gas cost for certain elliptic curve operations, which means the costs for verifying Groth16 proofs can be lower than before.
- Budget Impact: As a result, if you're working with Groth16 proofs, EIP-1108 can potentially help you save a bit of money on gas fees during verification, making it more budget-friendly overall.
Conclusion
In short, while verifying a Groth16 proof can be somewhat hefty on gas fees, EIP-1108 steps in to try and soften the blow, helping projects keep their verification costs in check. If you're planning to utilize Groth16 proofs, it’s definitely worth keeping an eye on these updates!
Signals we expect:
- Look out for mentions of the alt_bn128 precompiles (0x06/0x07/0x08) and the cost cuts we’re seeing from EIP-1108. It’s important to note that verification costs can vary based on how many pairings are involved, usually running around a few hundred thousand gas per proof. We should set aside a specific amount in the SLA budget for this and suggest going the route of off-chain proving while keeping on-chain verification in check. You can dive deeper into the details here: (eips.ethereum.org)
We're looking for them to suggest:
- CI checks that will fail builds if the gas used in verify() goes over the target. Also, we’d like to have Foundry gas snapshots for each circuit, plus a backup to calldata-compressed signals if the chain conditions shift.
7) Signatures, Permits, and Enterprise Auth Boundaries
When you're diving into the world of signatures, permits, and enterprise authorization boundaries, it's pretty crucial to understand how these components interact. Here's a quick breakdown:
- Signatures: These are like your digital thumbprint. They ensure that the information you're dealing with is legitimate and hasn't been tampered with. When you're signing documents or transactions, think of it as a way to confirm your identity and agree to what's laid out.
- Permits: Whether it’s accessing a system or using specific software, permits are your golden tickets. They grant you the necessary access to carry out tasks within an enterprise. Without the right permits, you can hit a wall pretty quickly.
- Enterprise Auth Boundaries: So, what's the deal with these boundaries? They define where authentication and authorization checks happen. It’s like setting up the security fence for your digital workspace. These boundaries help ensure that only the right folks can get into specific areas or access sensitive data.
By keeping these concepts in mind, you can navigate the complexities of security and access in enterprise environments more smoothly.
Question: How do you correctly implement EIP‑712 domain separation for a cross‑chain permit flow? What common mistakes do people make?
When it comes to implementing EIP-712 domain separation in cross-chain permit flows, a few tricky spots pop up that can lead to issues. Here’s a breakdown of how to do it right and where folks often trip up.
Key Points for Correct Implementation
- Unique Domain Separator: Each chain should have its own unique domain separator. This means that the
name,version, andchainIdshould all be customized for the specific environment. Don’t forget to include the contract address as part of the domain separator too. This helps ensure that signatures from one chain can’t be accidentally reused on another. - Consistent Structuring: Make sure the structure of your typed data is consistent across chains. While the domain separator can differ, the data structure you’re signing should be uniform. This helps maintain compatibility when the permit is validated on another chain.
- Clear Usage of Nonces: Each permit should have a unique nonce to prevent replay attacks. Always increment the nonce after each use to ensure that an already used permit cannot be reused.
Common Pitfalls to Avoid
- Neglecting Chain IDs: A frequent mistake is failing to properly incorporate the chain ID in the domain separator. This can cause cross-chain confusion and leads to permits being accepted where they shouldn’t be. Always double-check that the chain ID reflects the environment you’re working in.
- Inconsistent Struct Definitions: Sometimes, developers might tweak the struct definitions slightly between chains. Even minor changes can lead to invalid signatures, so keep your struct definitions uniform.
- Ignoring Signature Verification: When verifying signatures, make sure you’re doing it against the expected domain separator. If you mix this up, you may mistakenly accept invalid signatures.
- Overlooking Replay Protection: Some implementations forget to implement proper nonce handling. Without unique nonces, it's easy for someone to replay a valid permit, which undermines the whole system's integrity.
Conclusion
Implementing EIP-712 domain separation correctly in a cross-chain permit flow is essential for security and functionality. By paying attention to unique domain separators, consistent structuring, and proper nonce management, you can avoid these common pitfalls. If you're interested in diving deeper, check out the official EIP-712 documentation for more detailed guidance!
Signals We Expect:
- We’re looking for the proper use of
chainIdin the domain separator, unique nonces for each owner, deadline checks, and support for EIP‑1271, especially when it comes to contract wallets. They bring up the importance of preventing replay attacks across Layer 2s and emphasize the need for clear chain scoping. For enterprise solutions, they tie this in with your key custody (HSM/KMS) and the delegated approval processes.
We’re also looking into this question:
- “What happens if L2 transitions to fee markets and there’s a change in calldata pricing?” They suggest a forward-compatible domain versioning strategy along with some regression tests.
8) Testing Discipline That Your Auditors Will Respect
When it comes to audits, having a solid testing discipline is key. It not only helps ensure compliance but also builds trust with your auditors. Here are some strategies to develop a testing discipline that auditors can truly appreciate:
- Document Everything
Make sure to keep records of all your testing processes and results. This documentation should be clear, concise, and well-organized. Auditors love to see that you have evidence backing your claims. - Use Automated Testing Tools
Implementing automated testing tools can streamline your processes and minimize human error. Tools like Selenium or TestRail can make your life easier and give auditors confidence in your results. - Regular Review and Updates
Regularly revisit your testing methods and criteria. This not only keeps your processes sharp but also demonstrates to auditors that you prioritize continuous improvement. - Engage in Peer Reviews
Involving your team in peer reviews can uncover issues you might have missed. This collaborative approach shows auditors that you value input and strive for quality. - Training and Development
Invest in training your team on best practices for testing. When your team is knowledgeable and skilled, it reflects well during audits. - Stay Compliant with Standards
Ensure your testing procedures adhere to relevant standards and guidelines. Familiarize yourself with frameworks like ISO 9001 or CMMI, as they can lend credibility to your testing discipline. - Communicate Transparently
Keep the lines of communication open with your auditors. If there are any testing challenges or changes, let them know. Transparency helps build a strong relationship based on trust.
By incorporating these strategies, you can create a testing discipline that not only meets the demands of audits but also earns the respect of your auditors.
We’re looking for candidates who can actually integrate these tools into their CI process, not just have a passing familiarity with them:
- Foundry invariants (like runs and depth), fuzzing, and gas snapshots. Check it out here.
- Echidna's property-based fuzzing (and don't forget about Hybrid Echidna with symbolic execution). You can find more info on GitHub.
- Scribble for runtime verification, which helps with property annotations that feed directly into fuzzers. Learn more from ConsenSys Diligence.
Live Exercise: Writing an Invariant for an ERC-4626 Vault
Let’s dive into creating an invariant for an ERC-4626 vault. Our goal here is to ensure that the relationship between assets, totalSupply, and pricePerShare stands strong, even when we account for any rounding errors. Here’s what we need to do:
- Define the Invariant:
We want to confirm that:
assets == totalSupply * pricePerShare ± rounding errorThis means that the total assets in the vault should roughly equal the total supply of shares multiplied by the price of each share, allowing for some minor rounding discrepancies.
- Fuzz Testing Withdrawals/Deposits: Next, we’ll fuzz test the system by running various deposit and withdrawal actions across multiple actors. The idea is to mix things up and make sure that, no matter how many times we run these tests, our invariant continues to hold.
- Implementing the Tests:
- Create a list of actors who can interact with the vault.
- Each actor will perform a series of random deposits and withdrawals.
- After each operation, we’ll check our invariant to ensure it’s still valid.
- Running the Tests:
- Execute the tests across different depths and iterations.
- Ensure to log results and keep track of how the invariant behaves through multiple rounds.
By the end of this exercise, we should have a solid invariant that holds true, ensuring the integrity of our ERC-4626 vault through varied transactions. Happy testing!
Example Foundry Invariant Scaffold
Alright, let's dive into creating a simple invariant for a smart contract using Foundry. This will give you a solid foundation to build upon.
Structure
We’ll set up a basic structure for our Solidity contract, along with the invariant test. Here’s how it goes:
- Contract: Define the main contract where the logic resides.
- Invariant: Write the test that checks the conditions we want to uphold.
The Contract
Here's a simple example of a contract called SimpleCounter. It allows us to increment a counter and ensures it never goes below zero.
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
contract SimpleCounter {
uint256 public count;
constructor() {
count = 0;
}
function increment() public {
count += 1;
}
function decrement() public {
require(count > 0, "Counter can't go below zero!");
count -= 1;
}
}Invariant Testing
Now, onto the invariant. We want to make sure that our count variable stays above or equal to zero no matter what. Here’s how we can test that with Foundry:
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "forge-std/Test.sol";
import "./SimpleCounter.sol";
contract SimpleCounterTest is Test {
SimpleCounter counter;
function setUp() public {
counter = new SimpleCounter();
}
function invariant_countIsNonNegative() public {
assert(counter.count() >= 0);
}
function testIncrement() public {
counter.increment();
invariant_countIsNonNegative();
}
function testDecrement() public {
counter.increment(); // Start with at least one to decrement
counter.decrement();
invariant_countIsNonNegative();
}
function testDecrementFails() public {
vm.expectRevert("Counter can't go below zero!");
counter.decrement(); // This should revert since count is already zero
}
}Running the Tests
Once you’ve got everything in place, running the tests is a breeze! Just hit the following command in your terminal:
forge testAnd voila! Your tests will run, and you'll see if everything is working as expected.
Conclusion
And there you have it! You've set up a simple invariant using Foundry that ensures your contract behaves as intended. Feel free to expand on this by adding more functions or invariants that suit your needs. Happy coding!
contract VaultInvariants is Test {
ERC4626Like vault;
address a = address(0xA11CE);
address b = address(0xB0B);
function setUp() public {
vault = new ERC4626Like(/*...*/);
}
function invariant_conservation() public {
uint256 assets = vault.totalAssets();
uint256 shares = vault.totalSupply();
// Allow small rounding drift
uint256 pps = shares == 0 ? 1e18 : (assets * 1e18) / shares;
assertTrue(pps > 0); // tightened in real tests
}
}What “Great” Looks Like for Enterprise
- CI Artifact Exports: We need to track coverage, invariant pass/fail, and gas-diff for every PR. Let's make sure these are attached to change requests for SOC2 proof.
- RACI for Change Management: Every proxy upgrade should have a clear RACI in place. That means we've got the developer, the reviewer, security sign-off, and the release manager all accounted for.
Scoring Rubric We Use Internally
Here’s the scoring rubric we rely on for our internal assessments. It helps us keep things consistent and fair across the board.
Categories
- Content Quality: How well does the content meet the requirements and address the topic?
- Organization: Is the information presented in a logical and easy-to-follow manner?
- Clarity and Style: Is the writing clear and engaging? Does it maintain a consistent tone?
- Grammar and Mechanics: Are there any grammar or spelling issues that need fixing?
Scoring Scale
We score each category on a scale from 1 to 5, where:
- 1: Poor - doesn’t meet expectations at all
- 2: Fair - some areas need major improvement
- 3: Good - meets basic requirements but has room for growth
- 4: Very Good - does well in most areas with minor tweaks needed
- 5: Excellent - exceeds expectations, no significant issues
Final Score
At the end of the assessment, we total up the scores across all categories to get a final score out of 20. This gives us a clear way to evaluate performance and identify areas for improvement.
Feel free to reach out if you have any questions or need further clarification on this rubric!
We rate each competency on a scale of 1 to 5. If you score 4 out of 5 or higher in three areas and don’t have any scores below 3, you pass. However, if you get anything below 3 in EVM correctness or testing discipline, it’s an automatic fail. You’ll receive a written brief that outlines the findings related to your Statement of Work (SOW).
Illustrative Rapid-Fire Questions We Include
Here are some fun and quick questions we like to throw into the mix:
- What's your go-to comfort food?
- If you could travel anywhere right now, where would you go?
- What's a movie you can watch over and over again without getting bored?
- Coffee or tea: which one fuels your day?
- Name a book that changed your perspective on something.
- If you could have dinner with any three people, dead or alive, who would they be?
- What's one skill you wish you could instantly master?
- What's your favorite way to unwind after a long day?
- If you could live in any time period, past or future, which would you choose?
- What’s a hobby you’ve always wanted to pick up but haven’t yet?
- Gas accounting: “What’s the deal with using PUSH0 instead of pushing a zero constant with PUSH1 0x00?” You can expect “2 gas vs 3+; also, the bytecode is smaller.” (eips.ethereum.org)
- Chains/forks: “So, what happens if you deploy MCOPY‑emitting bytecode on a chain that’s still on London?” The answer is: “You’ll get an invalid opcode; make sure to pin the evmVersion and CI to compile for the right target or gate your deployments.” (eips.ethereum.org)
- Lifecycle: “Can we still wipe a contract and redeploy it at the same address on mainnet?” The word is: “Not after EIP‑6780, unless you create and destroy it in the same transaction, but that doesn’t really help with upgrades.” (eips.ethereum.org)
- L2 fees: “What’s up with our posting costs dropping after March 13, 2024?” You can look forward to hearing: “The addition of 4844 blobs and a separate fee market lowers the data availability cost for rollups.” (galaxy.com)
- Standards: “Why go with ERC‑6909 for internal balances in a DEX router?” The scoop is: “It’s got a minimal interface, no mandatory callbacks, and allows granular approvals; plus, Uniswap v4 is already using it.” (docs.uniswap.org)
Practical Take-Home Assignment
The candidate has 48 hours to finish this assignment (we provide actual scaffolds!).
- Let's create a UUPS‑upgradeable ERC‑6909 treasury token that includes:
- Permit-style approvals for specific IDs so we can manage permissions smoothly.
- A transient-storage reentrancy guard on minting and burning to keep things safe.
- MCOPY-based bytes utilities to enhance our functionality.
- A Foundry suite that includes at least one Scribble-annotated invariant and an Echidna config that runs in CI to ensure everything's working as it should.
- Here’s what we need to deliver:
- Forge coverage and gas snapshots together with Echidna JSON reports.
- A storage layout diff that shows the changes between 0.8.30 and 0.8.31, plus proxy-safe ordering. Check out this post on soliditylang.org for more details!
- A concise one-page risk memo that links our controls to SOC2 control families (CC7, change management).
How This Reduces Enterprise Risk (And Why Procurement Says Yes)
In today's fast-paced business environment, companies face all kinds of risks that can impact their operations and bottom line. But guess what? A solid procurement strategy can really help in minimizing these risks. Here’s how it all works and why procurement teams are on board with it.
Understanding Enterprise Risk
Enterprise risk refers to any potential issue that could hinder an organization from achieving its goals. This can range from financial risks to compliance, operational challenges, and even reputational threats. By tackling these risks head-on, companies can safeguard their assets and bolster their performance.
Key Risk Areas:
- Financial Risks: Fluctuations in market trends, budgets, and resource allocation.
- Operational Risks: Issues with processes, technology, and supply chain disruptions.
- Compliance Risks: Failing to meet regulatory standards can lead to hefty fines.
- Reputational Risks: Negative publicity that can stem from various factors, including product quality and customer service.
The Role of Procurement
Procurement plays a pivotal role in managing enterprise risk. By thoughtfully selecting and managing suppliers, procurement teams can identify potential risks before they escalate. Here’s why they’re all in on this approach:
- Supplier Vetting: Procurement teams dig deep into potential vendors to ensure they align with the company’s values and standards. This reduces the chance of falling into a risky partnership.
- Contract Management: Keeping contracts transparent and well-managed means fewer surprises. Procurement ensures that terms are clear, and that everyone understands their obligations.
- Cost Control: By maintaining solid relationships with suppliers, procurement can negotiate better prices and terms, reducing financial risks.
- Agility and Flexibility: A good procurement strategy allows for quick pivots when market conditions change. This agility can help mitigate risks before they turn into real problems.
Why Procurement Teams Say Yes
So, why do procurement teams support this risk-reduction strategy? Here are a few compelling reasons:
- Enhanced Decision-Making: With robust data and insights, procurement teams can make informed decisions that steer the company clear of potential pitfalls.
- Stronger Supplier Relationships: Building strong partnerships with suppliers promotes transparency and collaboration, which is crucial for risk management.
- Resource Efficiency: An effective procurement strategy streamlines processes, saving time and resources while minimizing risks.
- Alignment with Business Goals: Procurement teams that focus on risk mitigation align their strategies with the overall objectives of the company, ensuring everyone’s moving in the same direction.
In conclusion, a comprehensive procurement strategy not only helps in managing enterprise risk but also empowers procurement teams to play a vital role in the success of the organization. By saying yes to these strategies, they’re not just protecting the company - they’re actively contributing to its growth and resilience.
- Audit-ready by design: We make it easy for auditors by including property and invariant artifacts, along with reviewer attestations, right in the change tickets. This means your auditors can get objective evidence without putting your engineering team in a rush.
- Predictable operating costs: When candidates model blob gas, calldata exposure, and opcode savings, they can stick to gas KPIs that stay consistent even when fork changes happen. Check out more details at (galaxy.com).
- No protocol surprises: Our engineers are well-versed in EIP‑6780, Prague defaults, and ERC‑6909, so you won’t have to worry about features that the EVM can’t support anymore. Learn more at (eips.ethereum.org).
7Block Delivery Methodology (What You Buy, Not Just Who You Hire)
When you're diving into a project, it's easy to get caught up in hiring the right talent. But let’s not forget that what you’re actually purchasing is a delivery methodology. This is all about getting the right results, not just filling positions. Here’s a closer look at what that means.
Why Delivery Methodology Matters
With the right delivery methodology, you’re not just bringing on board a set of skills--you’re ensuring a process that guarantees quality work and timely results. Here’s what you should consider:
- Consistency: A solid methodology helps maintain a steady flow of work, ensuring that everyone is on the same page.
- Quality Control: With the right approach, you can enforce standards that prevent mistakes before they become bigger issues.
- Efficiency: A good methodology streamlines processes so your team can focus on what truly matters.
Key Components of 7Block Delivery Methodology
Here are some essential components that make up the 7Block delivery methodology:
- Defined Objectives: Always start with clear goals. Knowing what you want to achieve guides every decision along the way.
- Collaborative Tools: Use the right tools to promote teamwork and communication. Think project management software, messaging apps, and collaborative platforms.
- Agile Practices: Embrace agility. Regular iterations and feedback loops keep everything aligned with your objectives and allow for adaptations as needed.
- Quality Assurance: Don’t skimp on quality checks. Testing and reviews should be part of your regular routine.
- Documentation: Keep everything documented. It not only helps with transparency but also serves as a reference for future projects.
- Stakeholder Engagement: Regularly check in with stakeholders. This helps in understanding their expectations and keeps them in the loop.
- Continuous Learning: Foster a culture of improvement. Encourage your team to learn from each project and adapt accordingly.
The Takeaway
Remember, when you’re investing in your project, you’re buying a process that's rooted in a solid delivery methodology. It's about building a framework that supports the talent you bring on board, leading to successful outcomes. So, think beyond just who you hire--focus on what you’re actually getting.
For more insights, check out this guide for a deeper dive into effective delivery methodologies!
- Discovery and risk mapping
- Start by mapping out the product features and their associated risks with EIPs/Forks. We’ll also outline the audit trails and approvals that you’ll need to comply with SOC2/ISO 27001.
- Build with guardrails
- We make sure to hire engineers who meet our standards and can deliver through our web3 development services and dApp development solutions.
- Shift-left security
- Our continuous integration process includes Foundry invariants, Echidna, and Scribble right from the get-go. Every pull request generates artifacts for both security checks and procurement needs. (learnblockchain.cn)
- Independent verification
- We’ve got a dedicated audit team that runs Slither/Manticore and conducts manual reviews before giving the green light for releases. Check out our security audit services for more info.
- Integration and launch
- We ensure smooth connections with your ERP/CRM, KMS/HSM, SIEM, and data lakes. Plus, we can help you bridge across chains using our cross-chain solutions or our bridge development offerings.
GTM Metrics We Track for Engagements Like Yours
When it comes to measuring success, we’ve got a bunch of key metrics that help us keep an eye on how well your engagements are performing. Here’s what we focus on:
Key Metrics
- User Engagement
This is all about how users interact with your content. We look at things like clicks, time spent on the page, and shares to get a sense of how engaged your audience really is. - Conversion Rates
We track how many users take action, whether that’s signing up for a newsletter, making a purchase, or anything else we consider a win for your goals. A higher conversion rate means your campaign is hitting the mark! - Traffic Sources
Understanding where your visitors are coming from is crucial. We analyze whether they found you through social media, search engines, or direct visits, so we can optimize those channels. - Bounce Rate
This metric tells us how many people leave your site after just looking at one page. A high bounce rate might mean we need to spice things up on the landing page to keep visitors interested. - Customer Lifetime Value (CLV)
Knowing how much a customer is worth over their entire relationship with your brand helps us gauge the long-term value of your audience and tailor strategies accordingly.
Conclusion
By keeping tabs on these metrics, we can continually refine your engagements and make sure they’re as effective as possible. Whether it’s boosting user engagement or driving up conversion rates, we’re here to help you track your progress and achieve your goals!
- Time-to-hire: We’re looking at an average of about 14-21 days from the initial intake to getting that signed offer, which includes panels, coding tests, and take-home assignments.
- Audit outcomes: Thanks to our invariant-driven development, we're seeing a whopping 45-60% drop in critical issues during the first external audit cycle.
- Cost predictability: We’ve got a ±15% variance on gas budgets, and when it comes to L2 data costs, we’re slashing them by at least 10× where 4844 blobs are involved (this is based on market observations, but we like to play it safe with our budgeting). You can check out more on this at galaxy.com.
- Procurement acceleration: We’ve sped up the creation of SOC2 evidence packs by about 2-4 weeks through CI artifacts that are linked to change tickets.
Final Checklist for Your Hiring Panel
Hey team! Below is the final checklist we’ll be giving to your hiring panel. This should make sure everything runs smoothly during the interview process.
Before the Interview
- Review the Job Description: Make sure everyone understands the role and its requirements.
- Prepare Interview Questions: Tailor questions to assess both skills and cultural fit.
- Schedule Interviews: Confirm dates and times with all candidates and panel members.
- Set Up the Interview Space: Whether it’s in-person or virtual, ensure everything is ready to go.
During the Interview
- Start on Time: Respect everyone's schedule by beginning promptly.
- Introduce the Panel: Let the candidate know who’s who.
- Stick to the Questions: Keep the conversation on track with your prepared questions.
- Take Notes: Jot down key points during the interview for later discussion.
After the Interview
- Debrief as a Panel: Gather to discuss impressions and feedback while it’s still fresh.
- Evaluate Candidates: Use a consistent scoring system to assess how each one fits the role.
- Communicate Decisions: Make sure to inform candidates of the outcome, whether they’re moving forward or not.
Additional Resources
Feel free to tweak this checklist as needed, but it should cover all the bases!
- Can they show off their storage math and create proxy-safe layouts without needing to peek at their notes?
- Are they able to break down blob vs calldata costs and explain why that’s important for your SLA? (galaxy.com)
- Do they know when to use MCOPY/PUSH0 and EIP-1153--and when to steer clear of them? (eips.ethereum.org)
- Can they come up with upgrades that fit the real-world scenarios laid out in EIP-6780? (eips.ethereum.org)
- Are their tests driven by specifications, featuring invariants and runtime assertions, rather than just sticking to happy-path unit tests? (learnblockchain.cn)
If you're looking for us to manage the entire process from start to finish--from the initial requisition all the way to the final architecture sign-off--we’ve got you covered. Here’s how to kick things off:
- First up, let’s define the scope and architecture using our blockchain development services.
- Next, we can set up protocols and liquidity if you need them, through our DeFi development services and DEX development.
- Finally, we’ll wrap things up with a thorough audit thanks to our security audit services.
Book a 90-Day Pilot Strategy Call
Ready to kick things into high gear? Let’s dive into a 90-Day Pilot Strategy Call! This is your chance to map out a clear game plan tailored just for you.
What to Expect
During our call, we’ll:
- Analyze Your Goals: Let’s figure out what you really want to achieve.
- Identify Challenges: We’ll tackle any roadblocks that are standing in your way.
- Outline an Action Plan: Together, we’ll create a step-by-step strategy to help you hit those targets.
How to Schedule
It's super easy! Just click on this link to pick a time that works best for you.
Can’t wait to chat and get started on this journey together!
References for Technical Claims
When discussing technical claims, it's super important to back up your points with solid references. Here’s a handy list of sources where you can find reliable information:
Academic Journals
- IEEE Xplore: A treasure trove for engineering and technology articles. You can access tons of papers related to various fields.
- ACM Digital Library: Great for computer science topics, it's like a gold mine of scholarly articles.
Books
- "The Art of Electronics" by Paul Horowitz and Winfield Hill: This classic is a must-have for anyone diving deep into electronics.
- "Computer Networking: A Top-Down Approach" by James Kurose and Keith Ross: Perfect for grasping network concepts clearly and effectively.
Online Resources
- Khan Academy: Offers a wide range of video tutorials that break down complex topics into bite-sized lessons. Super user-friendly!
- Coursera: Great for more structured learning, you can find courses from top universities on all sorts of subjects.
Standards and Specifications
- ISO (International Organization for Standardization): Their documents set global standards for various industries, ensuring quality and consistency.
- IEEE Standards: These outline best practices and guidelines in tech and engineering.
Technical Documentation
- Mozilla Developer Network (MDN): A fantastic resource for web developers, packed with up-to-date info on web standards and coding practices.
- Stack Overflow: While it's primarily a Q&A site, many users provide in-depth answers with citations to solid references.
Code Repositories
- GitHub: Home to numerous open-source projects, you can find well-documented code that showcases best practices and innovative solutions.
Websites and Blogs
- Ars Technica: Offers insightful analysis on tech topics, often backed by thorough research.
- TechCrunch: Great for the latest in tech news, startups, and product launches, though it’s more news than academic.
Remember, the key to making strong technical claims is to ensure your sources are credible and relevant. Always double-check the information before using it!
- So, about the Dencun activation: it's got details on blob transactions, the fee market, and those 3/6 blob targets. Just a heads up, blobs are on the consensus layer, so you won’t be able to query them through the EVM. Check it out here: (galaxy.com).
- When it comes to blob gas pricing, we're looking at a figure of 131,072 gas per blob with a size limit of 128KiB, plus there's a separate fee market in play. More info can be found here: (prestolabs.io).
- On the Solidity front, version 0.8.30 has set the default EVM to Prague, along with the Pectra context. Get the scoop here: (soliditylang.org).
- Looking ahead, Solidity 0.8.31 is rolling out some new features like layout constants and a pre-release process. You can read all about it here: (soliditylang.org).
- If you’re diving into EIPs, EIP‑3855 introduces PUSH0, and EIP‑5656 covers MCOPY, while EIP‑1153 is all about transient storage specifications. Check them out over here: (eips.ethereum.org).
- Don’t forget about EIP‑6780, which brings some changes to the SELFDESTRUCT semantics. More details are right here: (eips.ethereum.org).
- And finally, there's the ERC‑6909 which introduces a minimal multi‑token interface, plus Uniswap v4 documentation for those looking to get more familiar. Catch up on it here: (eips.ethereum.org).
- For anyone interested in Foundry, there are some great resources on invariants, Echidna, and Scribble for runtime verification. Check it out at: (learnblockchain.cn).
Note: If your setup includes L2s or alt-EVMs that haven’t hit Cancun/Prague yet, we make sure to pin the compiler evmVersion for each chain and send out compatibility reports before you deploy. (coinlive.com)
Like what you're reading? Let's build together.
Get a free 30-minute consultation with our engineering team.
Related Posts
ByAUJay
Building Supply Chain Trackers for Luxury Goods: A Step-by-Step Guide
How to Create Supply Chain Trackers for Luxury Goods
ByAUJay
Building 'Private Social Networks' with Onchain Keys
Creating Private Social Networks with Onchain Keys
ByAUJay
Tokenizing Intellectual Property for AI Models: A Simple Guide
## How to Tokenize “Intellectual Property” for AI Models ### Summary: A lot of AI teams struggle to show what their models have been trained on or what licenses they comply with. With the EU AI Act set to kick in by 2026 and new publisher standards like RSL 1.0 making things more transparent, it's becoming more crucial than ever to get this right.
