An interesting [study]( was conducted by the University of Illinois on smart contract engineers’ security practices. I was dismayed, but not overly shocked, to learn that 83% of smart contract engineers “did not claim security as a top priority.”
This is becoming more obvious with all the smart contract hacks and bug exploits that have occurred.
Smart contract development is hard. It is more difficult than other types of software development that I’ve seen. It’s a new programming paradigm where we’re still learning the best practices and the security holes to watch out for.
I love seeing more people get into web3, especially on the tech side, but solidity is not the best language for a new developer to start with. The most expensive engineers are those who are inexperienced and maybe a little sloppy. The DeFi protocols and bridges that have suffered from hacks are extremely aware of this now. You get what you pay for, and education and practical experience are important.
As DeFi users, we need to be really careful on which projects, and therefore which developers, we trust with our funds.