But the main phenomenon is: it's 2024 out there, there is a horde of devs saying they are "into crypto" yet having no slightest clue about how to _properly_ validate the transactions on the blockchain of their choice.

This phenomenon is primarily driven by the fact that customer wallets offer too little control over the transactions. The aforementioned devs, who use the same wallets (because the proper ones with fine-grained control usually have too complicated UI), don't even expect atypical scenarios to happen because they think no wallet will let them happen. They also seem to have missed all information security courses, otherwise they would know this: validation always must happen on what theoretically can be sent, not on what usually is sent.

Yet they want us to use browser extensions and other inherently insecure bollocks. Good luck...