pashov

Claude Prompting Guide

General tips for effective prompting

1. Be clear and specific

• Clearly state your task or question at the beginning of your message.
• Provide context and details to help Claude understand your needs.
• Break complex tasks into smaller, manageable steps.

pashov

Spearbit-writing-exercise

Malicious user can brick all Proxy.sol instances resulting in all funds in them getting stuck

Severity: Critical

Context: Implementation.sol#L17

As stated in the README, every user will deploy its own Proxy.sol instance and every user will use the same shared Implementation.sol instance. Currently, Implementation.sol allows anyone to call its delegatecallContract method, which uses the delegatecall opcode to execute arbitrary code in the context of the Implementation.sol instance. A malicious user can call delegatecallContract method by passing it an address argument of the following smart contract's instance address: