Metropolis Wants to Make It Easier To Spot Faulty Smart Contract Permissions

Exclusive: No technical expertise required to visualize smart contract permissions

article-image

OV11/Shutterstock modified by Blockworks

share

Smart contract permissions have been at the center of many hacks in the cryptocurrency ecosystem since their inception.

From recent the Wormhole counter exploit to Euler finance’s hack and the bZx DAO ruling, identifying faulty smart contract permissions could help protect the broader cryptocurrency ecosystem.

Metropolis, a company committed to protect on-chain permissions, said it hopes to achieve this with the launch of “The Podarchy Explorer,” a spatial interface that allows users to visualize smart contract permissions.

“We’ve been doing a lot of thinking on how we can bring faulty permissions to the surface, because they pose both a security risk in terms of basic user funds, but they also undermine ownership itself,” Chase Chapman, governance researcher at Metropolis, told Blockworks. 

Using the platform, users can search any on-chain entity — including externally owned accounts (EOAs), multisigs, and smart contracts — and identify all relevant connections and permissions. 

“Governance tokens don’t mean anything if they don’t have permissions to govern,” Chapman said. “The Podarchy Explorer will surface those permissions and easily identify faulty permissions without having to deep dive into code.”

Specifically, the company has indexed two widely adopted vectors for on-chain control: Safe membership and OpenZeppelin access control. It intends this to enable users to search up any wallet and addresses associated with Safe membership and help them to view its permissions over associated smart contracts.

“The Metropolis team anticipates the Podarchy Explorer will reveal some major flaws and anti-patterns across the ecosystem, which is ultimately positive, as hidden faulty permissions are posing a massive threat to the entire space,” Chapman said.


Start your day with top crypto insights from David Canellis and Katherine Ross. Subscribe to the Empire newsletter.

Explore the growing intersection between crypto, macroeconomics, policy and finance with Ben Strack, Casey Wagner and Felix Jauvin. Subscribe to the Forward Guidance newsletter.

Get alpha directly in your inbox with the 0xResearch newsletter — market highlights, charts, degen trade ideas, governance updates, and more.

The Lightspeed newsletter is all things Solana, in your inbox, every day. Subscribe to daily Solana news from Jack Kubinec and Jeff Albus.

Tags

Upcoming Events

Salt Lake City, UT

MON - TUES, OCT. 7 - 8, 2024

Blockworks and Bankless in collaboration with buidlbox are excited to announce the second installment of the Permissionless Hackathon – taking place October 7-8 in Salt Lake City, Utah. We’ve partnered with buidlbox to bring together the brightest minds in crypto for […]

Salt Lake City, UT

WED - FRI, OCTOBER 9 - 11, 2024

Permissionless is a conference for founders, application developers, and users. Come meet the next generation of people building and using crypto.

Javits Center North | 445 11th Ave

Tues - Thurs, March 18 - 20, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

recent research

Monad Report Graphic.png

Research

Monad represents an ambitious attempt to address the scalability challenges faced by existing EVM chains. By leveraging innovative consensus and execution mechanisms, including pipelined consensus-execution and optimistic parallel execution, Monad aims to achieve performance metrics of 10,000 TPS and 1-second finality while maintaining full EVM compatibility. This approach positions Monad as a potential evolution of the Ethereum ecosystem, offering enhanced scalability without sacrificing the familiar developer or user experience.

article-image

Bitwise took the initial steps for an XRP ETF Wednesday

article-image

Plus, enrollment for the Donald Trump-backed crypto project is underway

article-image

On Solana so far, there are two main competitors: Jito and Solayer

article-image

Plus, Sui-eet liquidity surge and USDC’s new home on Base

article-image

The Web3 community is stacking bricks when it should be building bridges