Does it provide code for fixing the issues?

Yes, it provides exact remediation guidance and specific steps to fix identified issues, along with suggestions for tests to add to your suite.

Can I use this for production-grade audits?

This skill is a powerful tool for internal reviews and pre-audits. While highly detailed, it should complement, not replace, a final review by human security professionals for high-stakes deployments.

What types of vulnerabilities does the auditor look for?

The skill checks for a wide range of issues including reentrancy, access control flaws, arithmetic errors, MEV exposure, oracle manipulation, and ERC standard compliance.

What information do I need to provide for an audit?

You should provide the smart contract code or a diff, and ideally specify the target chain, scope, and your project's risk tolerance for the most accurate results.

Smart Contract Auditor

Name: Smart Contract Auditor
Author: andreolf

byandreolf

•

Seguridad y Pruebas

Performs rigorous security audits on smart contracts with severity-rated findings and deployment recommendations.

The Smart Contract Auditor skill transforms Claude into a senior security researcher, providing a systematic approach to identifying vulnerabilities in blockchain code. It generates comprehensive audit reports that include executive risk summaries, categorized findings (Critical to Low), and a Go/No-Go recommendation based on the project's risk tolerance. By evaluating access controls, reentrancy risks, and arithmetic safety, it ensures developers can ship secure code with actionable remediation steps and proof-of-concept exploit scenarios.

Características Principales

01Executive risk summaries with top-three threat identification

02Go/No-Go deployment readiness assessments with conditional shipping requirements

03Automated severity-rated vulnerability detection from Critical to Low

044 GitHub stars

05Comprehensive security checklists covering Reentrancy, MEV, and Oracles

06Actionable remediation guidance and Proof-of-Concept (PoC) steps

Casos de Uso

01Rapid vulnerability assessment during the development lifecycle

02Generating standardized security audit reports for internal documentation

03Pre-deployment security reviews for Ethereum or EVM-compatible contracts

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add andreolf/playbooks-plugin audit-contract

For use in Claude.ai and ChatGPT

Download Skill