Smart Contract Auditor

What it does

The smart-contract-auditor skill analyzes Solidity code for potential vulnerabilities and security flaws. It identifies common issues like reentrancy, integer overflows, and unchecked external calls. The tool provides detailed reports outlining the identified risks and suggests remediation strategies to improve contract safety.

When to use it

• Pre-deployment Security Checks: Before deploying a smart contract to a blockchain network, audit the code for vulnerabilities.
• Code Review Assistance: Help developers identify potential security issues during the development process.
• Vulnerability Research: Analyze existing contracts to discover and understand common attack vectors.
• Due Diligence: Evaluate the security posture of smart contracts before investing in or interacting with them.

Key capabilities

• Solidity code analysis
• Identification of reentrancy vulnerabilities
• Detection of integer overflows/underflows
• Unchecked external call detection
• Detailed vulnerability reports

Example prompts

• "Audit this Solidity smart contract for security vulnerabilities: [paste contract code]"
• "Analyze the following contract and identify potential reentrancy attacks: [paste contract code]"
• "Can you find any integer overflow issues in this smart contract? [paste contract code]"

Tips & gotchas

The skill's effectiveness depends on the quality of the provided Solidity code. Complex or obfuscated contracts may yield less accurate results, and manual review is always recommended alongside automated audits.