GitHub Community
Systemic 'Theft of Work' in Web3 Security: Forensic Evidence for Marginal, Frax, and Walrus #189025
Replies: 1 comment 1 reply
-
|
Hi @donnyoregon, thanks for being a part of the GitHub Community! Unfortunately, we currently do not allow self-promotion for specific projects or repos. We want to make sure there is space for users to ask questions without overwhelming them with other conversations. This type of post is considered "off topic" as GitHub Community Discussions focuses primarily on topics related to GitHub itself or collaboration on project development and ideas. We appreciate your understanding. |
Beta Was this translation helpful? Give feedback.
-
|
i don see how advising the community on valid security concerns are self promotion in anyway people deserve to know where they are researching or spending money and they kind of projects theyre trusting |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
I'm Corrin (@donnyoregon), an independent Web3 security researcher. I've been documenting a disturbing trend of 'Theft of Work' where protocols and bug bounty platforms collude to steal whitehat research via stealth-patching.
I've published definitive forensic evidence (bytecode diffs, on-chain transaction hashes, storage slot analysis, and chat logs) for several major cases in my repository: https://github.com/donnyoregon/donnyoregon
1. Marginal Protocol — Cantina Complicity
2. Frax Finance — Internal Cover-up
3. Walrus Protocol — Evidence Tampering
I am calling for better accountability in the security industry. Bug bounty platforms must not be allowed to act as both judge and jury when protocols choose to steal research.
Full technical details and forensic evidence are available at: https://github.com/donnyoregon/donnyoregon
Beta Was this translation helpful? Give feedback.
All reactions