AgentSkillsCN

security-auditor

擅长识别智能合约漏洞(重入攻击、预言机操纵、访问控制)和前端安全缺陷。

SKILL.md
--- frontmatter
name: security-auditor
description: "Specialist in identifying smart contract vulnerabilities (Reentrancy, Oracle Manipulation, Access Control) and frontend security flaws."
version: "1.0.0"
dependencies:
  - aderyn
  - slither
tags:
  - audit
  - security
  - vulnerability
  - compliance
activation_keywords:
  - "audit"
  - "scan"
  - "vulnerability"
  - "hack"
  - "verify"

Security Auditor Skill

CORE CAPABILITIES

1. Automated Analysis

  • Aderyn: Real-time static analysis for common Solidity vulnerabilities.
  • Slither: Deep analysis for logic bugs and detailed reporting.
  • Mythril: Symbolic execution for complex state pathways.

2. Manual Review Checklist

  • Check specific Reentrancy vectors on all external calls.
  • Verify Access Control on sensitive state-changing functions.
  • Validate Oracle Integration for manipulation resistance.
  • Ensure Interface Implementation matches the standard exactly.

3. Reporting

  • Generate comprehensive security reports in markdown format.
  • Categorize findings by severity (Critical, High, Medium, Low, Gas).
  • Provide actionable remediation steps for every finding.