As we speak, we’re excited to announce the Pectra Audit Competitors, kicking off on Cantina! This month-long occasion will run from February 21 to March 24, and we’re excited to see what points the safety group can discover.
Why Pectra Issues
A number of the key EIPs for Pectra are listed beneath
From EOAs to Sensible Accounts (EIP-7702)
- Enhances Externally Owned Accounts (EOAs) with good contract options.
Key Advantages
- Transaction Batching: Mix a number of operations right into a single transaction.
- Fuel Sponsorship: Others pays charges for the account.
- Various Authentication: Use {hardware} safety modules or passkeys for authorization.
- Spending Controls: Restrict token utilization/outflows for improved safety.
- Restoration Mechanisms: Safer asset safety with out altering the principle account.
Security Checks
- Chain-Particular: Delegations legitimate solely on one chain ID.
- Nonce-Certain: Tied to the account’s present nonce, auto-invalidated when it modifications.
- Revocability: The EOA proprietor can revoke/change present delegations at any time.
Validator UX Enhancements
EIP-7251
- Raises Max Validator Stability from 32 ETH to 2048 ETH.
- Allows computerized reward compounding and validator consolidation (merge a number of validators with shared withdrawal credentials).
EIP-7002
- Execution Layer Triggerable Withdrawals: Permits an Ethereum tackle (not simply the validator signing key) to set off exits.
- Reduces Belief in Delegation: The account proprietor (human, DAO, and so on.) can drive exits with out counting on the validator.
EIP-6110
- Speeds Up Deposit Processing: Cuts wait time from ~9 hours to ~13 minutes.
- Removes the pre-merge buffer for deposit processing (now not wanted post-merge).
Blob Scaling (EIP-7691)
- Will increase Ethereum’s Blob Capability by 50% (common from 3 to six, max from 6 to 9).
- Blobs are short-lived information for L2 proofs, lowering L1 charges by 10–100×.
- EIP-7623 caps worst-case block measurement to handle greater bandwidth.
- Future scaling will contain information sampling in order that nodes retailer solely subsets of blob information.
For a extra complete overview, take a look on the Pectra page on ethereum.org.
Scope of the Audit
This competitors particularly targets Pectra code. Any vulnerabilities found that aren’t particular to Pectra needs to be reported by the Ethereum Foundation Bounty Program. By conserving the deal with Pectra on this competitors, we hope to floor potential points previous to the mainnet onerous fork.
Ethereum Protocol Attackathon Recap
The Ethereum Protocol Attackathon, which was lately hosted on Immunefi, has additionally been concluded. In collaboration with Immunefi and the Ecosystem Funding Initiative, main ecosystem gamers — Bybit, Wormhole, Arbitrum Basis, The Graph, GMX, and Base — generously donated matching funds alongside the Ethereum Basis. This collective effort underscored the group’s dedication to constructing a safer and resilient blockchain ecosystem.
Able to Start?
Head to Cantina’s competition page to get began.
For extra info on reporting vulnerabilities outdoors of the competitors, please go to the Ethereum Foundation’s Bug Bounty Program.
We stay up for your discoveries. Good luck, and blissful auditing!
