Understanding the dual nonce system in ERC-4337 smart wallets, the differences between CREATE and CREATE2 for contract deployment, and the pitfalls encountered with EIP-7702 delegation.
2026, Feb 17 — 8 minute readA practical security analysis of EIP-7702 smart wallets covering initialization front-running, access control, signature replay, dual nonce systems, and residual risks inherent to EOA code delegation.
2026, Feb 17 — 15 minute readA technical comparison of ERC-20 token implementations across OpenZeppelin Contracts, Solady, and Solarity solidity-lib. Covers features, gas efficiency, architecture, extensibility, and selection criteria.
2026, Feb 13 — 17 minute readA technical comparison of ERC-1271 and ERC-7913 signature verification across OpenZeppelin v5.5.0, Solady v0.1.26, Coinbase Smart Wallet v1.1.0, and Solarity solidity-lib v3.3.2. Covers architecture, features, gas, and selection criteria.
2026, Feb 13 — 24 minute readThis article describes how CMTAT implements flexible access control by separating business logic from authorization policy, allowing deployments to choose between RBAC, ownership, OpenZeppelin AccessManager, or custom policies.
2026, Jan 27 — 13 minute readtechnical overview of Claude Code’s security model, including its permission system, sandboxing architecture, identity and access management (IAM), and operational best practices.
2026, Jan 13 — 5 minute readThis article is an overview of the OpenZeppelin ERC-4337 Account contract. The content is mainly based on the OpenZeppelin documentation.
2025, Dec 13 — 8 minute read