← Back to Skills

Solidity Security

🌐Community
by wshobson · vlatest · Repository

Identifies common Solidity vulnerabilities like reentrancy, overflows, and front running in smart contracts.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add solidity-security npx -- -y @trustedskills/solidity-security
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "solidity-security": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/solidity-security"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

The solidity-security skill helps identify and mitigate security vulnerabilities in Solidity smart contracts. It analyzes contract code to detect common issues such as reentrancy, overflow/underflow, improper access control, and unsafe external calls.

When to use it

  • Before deploying a new Solidity-based decentralized application (dApp) to ensure its security.
  • During audits or code reviews of existing smart contracts.
  • When integrating third-party contracts into your project and want to assess their safety.
  • To automate routine security checks as part of a CI/CD pipeline for blockchain projects.

Key capabilities

  • Detection of reentrancy vulnerabilities
  • Identification of overflow and underflow issues
  • Analysis of access control mechanisms
  • Recognition of unsafe external calls or delegatecall usage

Example prompts

  • "Analyze this Solidity contract for security vulnerabilities."
  • "Check if this smart contract is susceptible to reentrancy attacks."
  • "Review the code for improper access controls and suggest fixes."

Tips & gotchas

  • Ensure that the provided Solidity code is complete and includes all relevant dependencies.
  • This skill may not detect logic flaws or business-specific vulnerabilities, so it should be used alongside manual review or advanced tools.
View Repository →

Tags

🛡️

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
wshobson
Installs
2.9k
Repository (canonical source) →

🌐 Community

Passed automated security scans.