Is this a replacement for a professional smart contract audit?

No, while this skill significantly improves code quality and catches common errors, it is designed for secure development and pre-audit preparation. Critical contracts should always undergo a manual professional audit.

Can this skill help reduce smart contract transaction costs?

Absolutely. It includes specific optimization techniques like storage variable packing, using calldata for function arguments, and leveraging events for non-essential data storage.

How does this skill help prevent reentrancy attacks?

The skill identifies vulnerable code where external calls occur before state updates and provides refactoring guidance using the Checks-Effects-Interactions pattern or OpenZeppelin's ReentrancyGuard.

Does it support the latest versions of Solidity?

Yes, it prioritizes Solidity 0.8.0+ built-in safety features, such as automatic overflow/underflow checks, while providing legacy SafeMath patterns for older versions.

Solidity Security & Audit Patterns

Name: Solidity Security & Audit Patterns
Author: HermeticOrmus

byHermeticOrmus

•

セキュリティとテスト

Implements industry-standard security patterns and audits Solidity smart contracts to prevent vulnerabilities like reentrancy and access control flaws.

This skill equips Claude with the expertise to write, review, and optimize Ethereum smart contracts using professional-grade security standards. It provides deep guidance on implementing the Checks-Effects-Interactions pattern, preventing reentrancy attacks, managing robust access control, and optimizing gas usage without compromising contract integrity. Whether you are building DeFi protocols, NFT projects, or blockchain-based games, this skill helps ensure your code is production-ready and resistant to common attack vectors through automated checklists and secure implementation patterns.

主な機能

01Implementation of secure patterns like Checks-Effects-Interactions and Pull-over-Push.

024 GitHub stars

03Robust access control templates using Ownable and Role-Based Access Control (RBAC).

04Comprehensive security checklists for pre-audit code preparation and testing.

05Automated vulnerability detection for reentrancy and overflow/underflow issues.

06Gas optimization strategies including storage packing and calldata usage.

ユースケース

01Refactoring legacy Solidity code to utilize modern security features in version 0.8.0+.

02Implementing emergency stop mechanisms (circuit breakers) for high-stakes DeFi protocols.

03Auditing existing smart contracts for potential security exploits before mainnet deployment.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add hermeticormus/claude-code-game-development solidity-security

For use in Claude.ai and ChatGPT

Download Skill