- DappSlap automates dApp creation using AI.
- Unverified smart contracts raise concerns.
- LLMs make mistakes too, and that raises concerns about dApps.
Since ChatGPT was released, there has been a craze for artificial intelligence (AI) applications. Large-scale language models like GPT-4 can output meaningful text, generate images, and even write code. The potential applications are endless, and the cryptocurrency industry is trying to leverage AI for its own purposes.
Dappslap, a Solana-based protocol, recently launched a platform that allows users to create dApps with one click using AI. However, experience with AI shows that these highly sensitive applications can have serious security vulnerabilities.
How Dappslap Works
Creating dApps has never been easier. At least in theory. Launched on September 10, Dappslap allows users to create dApps without any coding knowledge. All you have to do is fill out the prompts and submit.
Once submitted, users on the platform can view the prompt and decide if it is interesting. If it is interesting, they can purchase the underlying token. The system then uses the bonding curve to determine if there is enough interest in the dApp. If there is interest, Dappslap’s AI will generate the entire application, including smart contracts, DAOs, and websites.
Dappslap App Risks
So far, most of the apps and prompts on Dappslap are harmless, many of them simple games. Some of them require you to handle potentially sensitive user information or credentials. Other apps allow users to connect their wallets, creating more vulnerabilities.
For example, one user submitted a “Rizzler app” that was supposed to teach users social skills. However, this app would likely have to process user input, which could be sensitive. In this case, the user’s prompt did not include any personal information references and did not instruct the AI to process sensitive data.
One token that is off the bonding curve features AI-generated images and the Apple logo. Aside from the obvious copyright issues, the more concerning aspect is that the app allows users to link their wallets.
Connecting your wallet to unverified dApps is always risky, as dApps can contain malicious code. This is especially true for AI-generated applications, which can contain bugs that can result in total losses for traders.
Can AI really create functional apps?
It’s an interesting question whether AI will one day be able to create apps that work on their own. What we know for now is that it won’t. LLM can make mistakes, and often does.
As soon as ChatGPT was released, developers were using AI in their workflows. But as most of them said, LLM is not a replacement for skilled developers. And not everyone agrees on its effectiveness as a tool.
Some experienced developers have already abandoned Github Copilot in their workflows, while others have warned beginners not to rely on it too much.
Using AI as a development tool involves reviewing code, troubleshooting issues, and sometimes re-running prompts. However, all these steps are absent in Dappslap. For this reason, AI-generated dApps may not work or may behave unpredictably.
Could hackers use Dappslap?
The Dappslap website doesn’t provide any information on whether users will be able to edit the code directly, but according to several sponsored posts, the company plans to allow DAO participants to use AI to change the apps.
Allowing users to edit the code directly on unverified dApps and their websites is probably a good design choice. First, a malicious user can edit a smart contract with the ability to empty the wallet. On the front end, a malicious owner can edit a website to link to a malicious smart contract, thereby emptying the account.
On the other side
- Despite its shortcomings, AI holds significant potential for cryptography. First, potential applications include: Existing vulnerabilities In smart contracts.
- Many traders have tried using ChatGPT or similar tools. For trading. However, this tool is not yet developed enough for beginners to trade professionally.
Why this matters
AI-generated dApps that are not human-verified pose significant risks to traders. Smart contract vulnerabilities, bugs, and other issues can harm users who interact with them.
Learn more about ChatGPT and encryption:
ChatGPT and Crypto: Blockchain Booster or AI Nightmare?
Learn more about Crtl Wallet Investors:
Ctrl Wallet Venture Investors Show Their Commitment by Locking 32% of Tokens