I set a strict rule for myself: when I see a project say "Audited" and "Upgrade to multi-signature immediately," I don't get excited right away. I first check the original text on GitHub and the audit report. GitHub isn't about how many stars it has; I focus on two things: whether they are still actively making serious updates, and whether those changes have been reviewed by someone, not just one person pushing everything in one night. I also don't just look at the cover logo of the audit report; I look for "how the discovered issues were fixed later," whether there is a re-audit or supplementary explanation. Don't just brush it off with a bunch of "known risks are at your own risk." Upgrading to multi-signature is even more critical. I wait until they clearly explain the new signers, thresholds, and timelock in plain language. If they don't, I’d rather not touch it. Recently, with extreme fee rates and the ongoing arguments in the group about whether to continue squeezing the bubble or not, I’ve become more conservative: the more heated the debate, the more I treat "credibility" as the first threshold. That’s it for now.

View Original
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
  • Reward
  • Comment
  • Repost
  • Share
Comment
Add a comment
Add a comment
No comments
  • Pinned