EatTheBlocks Forum

Smart contract audit

So let’s say my friend is making this interesting dapp with NFTs, and it has a lot of convoluted logic within. I asked him if (before he goes live with real $$$) he considered having a smart contract audit. He says, nah, we’re using ERC standards throughout (as I understand, ERC20 and ERC721) so it’s already audited. That sounds dangerous to me. Sure, those standards exist but the smart contract that someone writes could still be flawed. Anyone care to speak from experience on something like this?