EthBerlin Security HelpDesk Details, Security Award & Hosted Points Bonus from Quantstamp + MythX

Quantstamp Announcements
August 21, 2019

Quantstamp and MythX are very excited to support EthBerlin this year. If you're participating, come find us at the HelpDesk, your one-stop resource for any security-related inquiries. Need suggestions on more secure code implementations or advice on mitigating certain vulnerabilities? The HelpDesk is available round the clock to offer guidance and assistance throughout the hackathon.

In addition to our support at the HelpDesk, we’re offering a points bonus to all EthBerlin hackathon participants. When you submit the smart contract portion of your code for judging, include a scan report from the Quantstamp Security Network or from the MythX platform  and provide us with user experience feedback. Participants can earn an entire extra point over and above the judging of a submission. Help us make developer security workflows more painless! 

Even more exciting, there is a 1000 EUR prize up for grabs! Please review the criteria set by the Security HelpDesk, Details below.

For security tips or questions about eligibility, see the Security HelpDesk located at the Community Kitchens.

Through the Smart Contract Security Alliance, Quantstamp and MythX provide guidance and recommend security best practices in Dapp development. We’re committed to driving industry standards, raising the bar for smart contract security auditing and supporting the ecosystem as a whole. As part of this, we both share a long-term vision for a more secure developer workflow.

Taking precautions to avoid vulnerabilities must start earlier and continue throughout the development timeline. This is much easier with automation, removing the need for specialized knowledge or setups. Both the Quantstamp Security Network and the MythX platform offer easy workflow solutions aimed at teams to automate these security checks. 

Your feedback is very valuable to the future of smart contract security, and we look forward to meeting everyone at this upcoming EthBerlin. 



Bonus Points for Your Submission


Eligibility

Hackathon submissions, regardless of category, that include the use of Solidity smart contracts, compatible with the current EVM, are eligible to earn points.


Points

Judging and initial rankings are just the baseline - get extra points by providing feedback or earn an extra boost by submitting scan reports for both platforms. Remember, points from judges available are 1 - 3 where 1 extra point could make the difference.


Ways to Earn Points


+.16 points: Solidity smart contract scan report from the Quantstamp Security Network

How: Run a smart contract scan report from the Quantstamp Security Network 

protocol.quantstamp.com
 

Details:
Provide a screenshot of the report*. One Quantstamp scan may be claimed per submission.


+.16 points: Solidity Smart contract scan report from MythX platform

How: Run a smart contract scan report from the MythX platform

https://github.com/cleanunicorn/mythos

https://github.com/b-mueller/sabre

Details: Provide a screenshot of the report*. One MythX scan may be claimed per submission.


BONUS // +.50 points, roughly a 3x boost: Submit BOTH a Quantstamp Scan + MythX Scan

How: Follow same scan submission rules as outlined above to submit a scan report from both the Quantstamp Security Network AND the MythX platform


+.16 points each: Provide Feedback, Bug Reports, Feature Requests or Issues via Quantstamp Security Network Github Repo

How: Submit feedback, bug reports or feature requests using the Quantstamp Security Network Github Repository

https://github.com/quantstamp/qsp-protocol-node/issues

Details: A participant may claim up to two feedback entries per submission. Claimed feedback must note the intended submission title and Github account in the Issue submitted to Github. 


+.16 points each: Provide Feedback, Bug Reports or Feature Requests about the MythX Platform

How: Submit feedback, bug reports or feature requests using the MythX Google Form

https://forms.gle/GfPEUJmfyokaACqr9

Details:
A participant may claim up to two feedback entries per submission. Claimed feedback must note the intended submission title and Github account in the comments submitted to the Google Form.


BONUS // +.50 points, roughly a 3x boost: Provide Quantstamp AND MythX feedback on their respective platform

How: Use the submission rules above to submit feedback to both Quantstamp and MythX. 

Details:
A participant may claim max three feedback entries per submission, as long as each feedback entry is unique and entries are provided for both Quantstamp and MythX.


NOTE:

*Any winners will be asked to show proof of scan. Options to do so include using MyCrypto secure message, privately sharing scan history with a judge, or other suggestions.


Security HelpDesk 1000 EUR prize

The Security HelpDesk Award for Best Blockchain Security Application, Product or Showcase of Research is presented and picked by the HelpDesk. The winning submission should aim to show a significant advancement for security in the blockchain space. It should demonstrate a deep understanding of blockchain security needs and the project submitted must aim to be significantly unique. 


Resources

Running a smart contract scan on Quantstamp

https://www.youtube.com/playlist?list=PL5DjNdVrF_lvmdejM5-MxkRmrFyAtrezR
https://github.com/quantstamp/qsp-protocol-node/blob/develop/doc/node-operator.md
 


Running a smart contract scan on MythX

https://github.com/cleanunicorn/mythos/blob/master/README.md
https://docs.mythx.io/en/latest/tools/index.html#tools
https://github.com/b-mueller/sabre


Quantstamp nodes and MythX Ecosystem
https://protocol.quantstamp.com/leaderboard
https://nexus.mythx.io/



Smart Contract Best Practices

https://www.smartcontractsecurityalliance.com/ 

Includes recommendations for implementing on-chain randomness 

https://consensys.github.io/smart-contract-best-practices/

Well-used repository


November 1, 2019

Quantstamp Community Update - October 2019

Devcon Osaka, working with MetaCartel, UWaterloo Blockchain+Security Workshop, SF Blockchain Week - it’s been a busy month at Quantstamp!

October 7, 2019

You are Invited to the Quantstamp Security Assurance Protocol Beta Test

Thank you for participating in the beta-testing phase of the Quantstamp Assurance Protocol. Help us collect feedback in order to make improvements.

October 4, 2019

How to Use DeFi Safely

With eye popping interest rates on lending platforms, it’s never been more tempting to put assets into some of the promising new #DeFi applications out there today. But is security an issue? Dr. Poming Lee, Security Engineer with Quantstamp, explains how to keep your funds safe when using DeFi.

October 1, 2019

Quantstamp Community Update - September 2019

Quantstamp Blue Paper upcoming, securing #DeFi, the latest Forbes Tech Council article, and more.Here’s what’s been going on at Quantstamp in September: