Can I use this with existing auditing tools like Slither?

Yes, the skill is designed to automatically check for Slither's presence and use its 'entry-points' printer as a foundation for analysis in Solidity projects.

Does this skill detect specific vulnerabilities like reentrancy?

No, this skill is specifically for mapping entry points and access controls. It is designed to be used as a discovery tool before performing specific vulnerability detection or exploit building.

Which smart contract languages are supported?

The skill supports a wide range of languages including Solidity (.sol), Vyper (.vy), Rust for Solana and CosmWasm, Move (Aptos/Sui), and TON (FunC/Tact).

Why does the tool exclude view and pure functions?

Read-only functions (view/pure) cannot directly modify the contract state or cause loss of funds. Excluding them allows auditors to focus on the functions that present the highest risk of state corruption or unauthorized transfers.

Smart Contract Entry Point Analyzer

Name: Smart Contract Entry Point Analyzer
Author: Blurjp

byBlurjp

0•

安全与测试

Identifies and categorizes state-changing entry points in smart contracts to map attack surfaces for security audits.

The Entry Point Analyzer is a specialized security tool designed to systematically scan smart contract codebases across multiple blockchain ecosystems, including Ethereum, Solana, and Move-based chains. It focuses exclusively on state-changing functions—the primary targets of most exploits—while filtering out read-only methods to reduce noise. By automatically detecting access control patterns and categorizing functions into Public, Role-Restricted, or Contract-Only levels, it provides security researchers and developers with a structured audit report that serves as a foundation for deep vulnerability analysis.

主要功能

01Automated Slither integration for advanced Solidity entry-point extraction

02Structured Markdown report generation for immediate inclusion in audit documentation

03Multi-language support for Solidity, Vyper, Rust (Solana), Move, TON, and CosmWasm

04Intelligent filtering that excludes view, pure, and read-only functions to focus on state risk

05Granular access control classification including Admin, Governance, and Guardian roles

060 GitHub stars

使用场景

01Mapping the attack surface of a complex DeFi protocol at the start of a security audit

02Reviewing privileged administrative operations and role-based access control (RBAC) implementations

03Onboarding developers to a new codebase by visualizing all possible external state interactions

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add blurjp/imageprepmcp entry-point-analyzer

For use in Claude.ai and ChatGPT

Download Skill