Failures happen at the seams
Single-contract audits miss the composition layer. Real exploits live where oracle feeds meet vault accounting, where routers split fees, where solvers settle intents, and where governance steers capital it never custody'd.
Oracle & pricing seams
Stale feeds, EMA drift, deviation guards that halt too late — the price path is where CDPs and vaults silently become undercollateralized.
Vault & router accounting
Share inflation, tranche solvency, idle vs debt tracking — vaults fail when donations, rounding, or admin roles bypass the invariant you thought you had.
Solver, keeper & fee paths
Intent settlement, maker bleed, fee splits across protocols — value leaks at the handoff between contracts that each passed their own unit tests.
Five ways I help teams ship safer DeFi
Productized engagements — fixed scope, fixed price, settled in USDC. You work directly with the engineer who writes the code: no account managers, no offshore handoff.
Composition Mapping & Architecture Review
A graph-backed map of how your contracts, oracles, routers, roles, and accounting paths compose before mainnet.
- Architecture graph + seam map
- Threat model and trust-boundary notes
- Role/oracle/accounting risk flags
- Recorded walkthrough for your team
Audit-ready Built from the same graph workflow used on this stack.
Vyper 0.4 Migration Sprint
Move a Solidity/OpenZeppelin module to idiomatic Vyper 0.4 + Snekmate with tests and deployment notes.
- Solidity-to-Vyper design translation
- Snekmate module wiring
- Compile/test-green Moccasin project
- Migration notes and handoff
Vyper 0.4, Snekmate, Moccasin, titanoboa.
Invariant-First Security Review
An adversarial review centered on properties that must hold under real DeFi composition pressure.
- Line-by-line review
- Invariant/property analysis
- Severity-ranked report
- Fix-verification round
MEV / oracle / reentrancy focus · active on Cantina & HackenProof.
DeFi Protocol Architecture
Design stablecoin, vault, DEX, governance, and router systems so value paths are explicit before code hardens around them.
- System + economic/security model
- Composition and integration design
- MEV/oracle hardening plan
- Implementation roadmap
Based on the TARE / Keep / veForge / Coil composition work.
Deploy Gate / Watchtower Setup
Turn deploys and runtime drift into repeatable checks: source/bytecode verification, address-book baselines, and read-only watchtower alerts.
- Deploy verifier manifest and runbook
- Runtime watchtower baseline
- Overseer digest for security ops
- Alert triage and handoff notes
Deterministic/read-only agents; no fund control, no autonomous execution.
Built in the open, mapped at the seam level
A four-protocol Vyper flywheel on Sepolia, 700+ tests with stateful fuzzing, an internal composition review with disclosed risks — and a graph explorer you can click through.
Ecosystem explorer
Curated graph of TARE, Keep, veForge, Coil, routers, and agents — click any node for invariants, fuzz notes, and composition risks.
Open explorer → Case studiesFLYWHEEL 2.0 composition review
How four protocols compose through fee routers, surplus routing, vault allocation, and EIP-1271 market making — with H-1/H-2/M-1 findings disclosed.
Read case studies → ArchitectureStack & trust boundaries
FLYWHEEL 2.0 value flows, permissionless routers, and what the engine-only invariant does — and does not — cover.
View stack → BlueprintsSelf-serve Vyper packages
Compiling, test-green reference packages distilled from the live stack. Self-reviewed — not audited — with explicit mainnet warnings.
Browse products →Shipping something that can't afford a bug?
Tell me what you're building. You'll have a fixed-scope, fixed-price plan within 24 hours.
Book a call