Smart contract audit lane — Solidity/EVM pattern scanner, Slither ingestion, Foundry PoC generation, DeFi attack playbooks.
| Skill | Use for |
|---|---|
/skills/contracts/reentrancy/SKILL.md | Classic + read-only reentrancy |
/skills/contracts/oracle-manipulation/SKILL.md | Single-block TWAP / spot price abuse |
/skills/contracts/flash-loan/SKILL.md | Flash-loan callback + unauth gadgets |
/skills/contracts/access-control/SKILL.md | Missing modifiers, wrong msg.sender |
/skills/contracts/upgradeable-proxy/SKILL.md | Uninitialized impl, storage clash |
/skills/contracts/signature-replay/SKILL.md | Cross-chain, ecrecover zero address |
bash("find /workspace/src -name '*.sol' | head -50")solidity_scan_file on each filebash("cd /workspace && slither . --json slither.json")slither_ingest("/workspace/slither.json")kg_query(kind="vulnerability", min_severity="high") to see the highsfoundry_reentrancy_test etc.bash("forge test -vvv --match-contract Test_") to run| Impact | CVSS / Reward tier |
|---|---|
| Loss of user funds | Critical (9.8+) |
| Locked funds / permanent DoS | High (7.5-9.0) |
| Temporary DoS / griefing | Medium (5-7) |
| View-only data leak | Low (3-5) |