Is this a replacement for a manual security audit?

No, while it provides an excellent automated baseline for catching common mistakes, it should be used as a supplement to professional manual code reviews.

Does it work with PyTeal and TEAL?

Yes, it is designed to audit both raw TEAL and PyTeal-based Algorand projects.

What types of Algorand vulnerabilities does this skill detect?

It scans for 11 specific issues including rekeying attacks, unchecked transaction fees, missing field validations, and unauthorized access control.

Who developed this vulnerability scanner?

The skill utilizes security best practices and patterns curated by Trail of Bits, a leading cybersecurity research firm.

Algorand Vulnerability Scanner

Name: Algorand Vulnerability Scanner
Author: plurigrid

byplurigrid

•

セキュリティとテスト

Audits Algorand smart contracts for security vulnerabilities including rekeying attacks and access control issues.

The Algorand Vulnerability Scanner is a specialized security tool designed for developers and auditors working with TEAL and PyTeal smart contracts. Developed by Trail of Bits, it automatically scans code for 11 critical vulnerability patterns such as unchecked transaction fees, missing field validations, and rekeying exploits. By integrating these checks directly into your workflow, it helps ensure that decentralized applications on the Algorand blockchain are robust and protected against common attack vectors before deployment.

主な機能

01Validates access control and missing field requirements

02Detects 11 common Algorand smart contract vulnerabilities

038 GitHub stars

04Provides industry-standard security auditing patterns

05Supports TEAL and PyTeal project structures

06Identifies rekeying attacks and unchecked transaction fees

ユースケース

01Identifying logic flaws in PyTeal scripts during the development process

02Automating vulnerability scanning within a local Algorand development environment

03Performing a security audit on a new Algorand smart contract before deployment

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add plurigrid/asi algorand-vulnerability-scanner

For use in Claude.ai and ChatGPT

Download Skill