Smart Contract Auditing is Not Fun
While I did build GhostsOfEpochsPast, I'm not a smart contract auditor. Although a foundational level of smart contract security is integral as a smart contract developer, but it's a whole different ball game to being an auditor.
A 10x engineer is not a 10x auditor. I'm not a smart contract auditor, and I don't want to be one.
Building Is More Fun
I don't mean content, as I'm terrible at that. I mean building things. I've had to overcome a lot of obstacles to get to where I am today, and I'm still not where I want to be but I'm getting there.
Building for me is an expression of creativity, of which I have very few although it is a passion for almost the same reason that I enjoyed in my previous career which was taking something that is ineffective, broken, or just plain bad and making it better. Which sounds a lot like auditing as I write this lmao.
But I've found that I enjoy creating something from nothing even more. Software, Smart Contracts, this blog and my successful future me (manifesting it) all from nothing but my mind and a keyboard, I love that.
Why Development And Not Auditing?
With most things, different strokes for different folks, and by that I mean depending on who/where you source your smart contract auditing resources from you'll get a varied response on "how to be a become a good smart contract auditor".
- Get into the mindset of a hacker
- Isolate smart contract interconnectivity weaknesses
- Understand any external smart contract vulnerabilities
- Muscle memory from revision and practice
All of these are great, but in comparison to building something, it's just not as fun. I'm not saying that it's not important, it's just not for me. It is a service that is essential to the ecosystem, and I'm glad that there are people out there that do it. Though in comparison to being a good builder:
- Get into the mindset of a user
- Develop a user experience that is intuitive
- Understand the user's needs and your product's value
- Creating something that is useful and enjoyable
I'm not saying that building is better than auditing, I'm saying that I prefer it. So having a solid understanding of smart contract security is important to me, but I don't want to be an auditor.
The Pay Is Good
I'm not going to lie, the pay is silly good for smart contract auditors. Especially the good ones, and I'm not talking about the ones that found two duplicate mediums and a handful of gas issues and wants to sell you a course on how to be a smart contract auditor.
There is saying that has been in the crypto space since I can remember, something along the lines of "Came for the money, stayed for the tech" or "Came for the tech, stayed for the money". My point is that the money is good, but it's not everything.
I'm not saying that I don't want to make money, I do, but I want to make money doing something that I truly enjoy something that does not feel like a grind, write code is that for me, not reviewing it.
You should not become a smart contract auditor just because the money is good, you should become a smart contract auditor because you enjoy it. Because It. Is. A. Grind.
If I said anything that is incorrect, of interest, or you have any questions, please reach out to me on Twitter. I would love to hear from you!