Victoria d’Este
Printed: October 13, 2025 at 2:35 pm Up to date: October 13, 2025 at 2:35 pm
Edited and fact-checked:
October 13, 2025 at 2:35 pm
In Temporary
Veridise CEO Jon Stephens launched AuditHub, a platform reworking sensible contract and zero-knowledge safety from a one-time, automated course of to a steady, automated, and adaptive course of.
In an period the place $350 million in sensible contract exploits occurred in a single yr — together with assaults on initiatives that had already been audited — Veridise CEO Jon Stephens took the stage with a easy however pressing message: auditing alone just isn’t sufficient.
Stephens’ keynote, “AuditHub — Steady Safety for Web3,” launched a brand new platform that redefines how blockchain groups strategy sensible contract and zero-knowledge safety — turning what was as soon as a one-time audit right into a steady, automated, and adaptive course of.
The Drawback: Safety Occurs Too Late
Stephens started by outlining a well-known flaw in how Web3 initiatives are constructed.
“Safety is usually handled because the final step within the software program lifecycle,” he stated. “Groups plan, construct, take a look at, and solely then — proper earlier than launch — take into consideration safety.”
That reactive strategy, he defined, leaves initiatives uncovered. Even after audits, practically one-third of exploited contracts in 2024 had been audited, and plenty of extra suffered losses from “out-of-scope” code.
In a single case, a single ignored math library led to a $223 million exploit. “It’s not that the audits had been dangerous,” Stephens stated. “It’s that the method is damaged. We solely take a look at safety on the finish, when it’s already too late.”
The issue extends to zero-knowledge initiatives, which have gotten essential for privateness and scalability. Veridise’s inner examine discovered that 55% of audited ZK initiatives had not less than one essential vulnerability — twice as many as typical DeFi protocols.
Why Auditing Isn’t Sufficient
Stephens was candid in regards to the limits of present options.
“Audits are nice for locating bugs, however not for guaranteeing their absence.”
Conventional audits, he defined, are costly, rare, and sometimes constrained by scope. In the meantime, AI-based auditing instruments, whereas reasonably priced and quick, lack reliability. “AI is nice at recognizing widespread patterns,” he stated, “but it surely struggles with deep logic bugs — those that really trigger catastrophic failures.”
Static evaluation, fuzzing, and formal verification instruments exist, however they’re typically troublesome for builders to make use of and require specialised experience. “Formal verification has a fame drawback,” he famous. “It’s seen as gradual, complicated, and inaccessible.”
The Answer: Steady Safety
To bridge these gaps, Stephens unveiled AuditHub, Veridise’s new all-in-one safety platform designed particularly for Web3 initiatives.
“Our aim was to make high-assurance safety instruments as easy and seamless as a GitHub integration,” he stated.
AuditHub integrates a number of Veridise instruments — together with Vanguard, OrCa, and Picus — masking each sensible contracts and ZK circuits. The system makes use of static evaluation, fuzzing, and formal verification in live performance to offer steady suggestions all through all the improvement lifecycle.
The platform detects widespread vulnerabilities like reentrancy or non-deterministic ZK circuits — which accounted for many main exploits in 2024 — with out requiring extra developer enter.
Past that, it helps customized safety configurations, permitting builders to tailor scans to their particular enterprise logic. “We wished to maneuver away from generic evaluation and let groups outline what ‘protected’ means for his or her venture,” Stephens defined.
Automation Meets Professional Oversight
One in every of AuditHub’s standout options is its guided problem triage system. Reasonably than forcing builders to sift via lots of of false positives, it learns from their suggestions — marking comparable non-issues mechanically.
“It’s safety that learns as you go,” stated Stephens. “You inform AuditHub as soon as why one thing isn’t a bug, and it gained’t trouble you once more about the identical sample.”
All instruments function inside a unified framework, that means builders don’t have to configure each individually. The platform additionally integrates instantly into CI/CD pipelines, enabling “security-as-you-deploy.”
“As you push code or open a pull request, AuditHub runs scans and returns outcomes mechanically,” Stephens stated. “It’s proactive safety, constructed into your workflow.”
Velocity and Scale
AuditHub’s formal verification engine, Picus, has already demonstrated industry-leading efficiency. Stephens shared that it verified RISC Zero ZK circuit in below eight minutes, a activity that will usually take hours and even days.
“Velocity issues,” he emphasised. “If safety isn’t sooner than your dev cycle, it gained’t be used.”
By making superior verification instruments accessible and environment friendly, Veridise hopes to shut the hole between speedy improvement and strong safety — a stress that has plagued Web3 since its inception.
A New Paradigm: Safety from Day One
Stephens concluded by reframing safety not as a remaining checkbox, however as a steady loop.
“Safety shouldn’t be a gate on the finish — it ought to be a continuing companion from the primary line of code.”
With AuditHub, groups can now combine safety scans into early improvement, detect points earlier than they compound, and eradicate “out-of-scope” vulnerabilities altogether.
The consequence, he stated, is a future the place safety evolves alongside innovation, not behind it.
“Auditing will at all times matter,” Stephens stated. “However steady assurance — automated, adaptive, and embedded — is how we safe Web3 at scale.”
Disclaimer
Consistent with the Belief Challenge pointers, please observe that the data supplied on this web page just isn’t meant to be and shouldn’t be interpreted as authorized, tax, funding, monetary, or every other type of recommendation. It is very important solely make investments what you possibly can afford to lose and to hunt impartial monetary recommendation if in case you have any doubts. For additional data, we recommend referring to the phrases and situations in addition to the assistance and help pages supplied by the issuer or advertiser. MetaversePost is dedicated to correct, unbiased reporting, however market situations are topic to alter with out discover.
About The Writer
Victoria is a author on quite a lot of expertise subjects together with Web3.0, AI and cryptocurrencies. Her in depth expertise permits her to jot down insightful articles for the broader viewers.
Extra articles
Victoria d’Este
Victoria is a author on quite a lot of expertise subjects together with Web3.0, AI and cryptocurrencies. Her in depth expertise permits her to jot down insightful articles for the broader viewers.
