I believe one of the root causes of this issue—often overlooked by many—is the lack of strong guidance for IC development. There should be clear, community-recognized best practices and secure foundational infrastructure, such as Stable Structures, Internet Identity, etc.
I’m thinking of starting a new post to share some of my development experience on the IC over the past few years, including the libraries I’ve used most often, how to use them correctly, and what their limitations are.
Of course, this effort will likely need more than just me, but I’m willing to take the first step. I believe this would be beneficial for the long-term growth of the IC ecosystem. New developers could more easily get started with secure IC development by learning from the resources we compile.
Additionally, I think it would be valuable to have community-led audits or code walkthroughs of some of the core public libraries. This would help the community better understand how the infrastructure works and avoid potential development pitfalls ahead of time.
What do you think?