智能合约安全技能：漏洞检测、审计方法与事件响应全指南

smart-contract-security by pluginagentmarketplace/custom-plugin-blockchain

187 周安装量

1 GitHub Stars

GitHub

安装命令

npx skills add https://github.com/pluginagentmarketplace/custom-plugin-blockchain --skill smart-contract-security

区块链 DeFi 安全

🇨🇳中文介绍

智能合约安全技能

掌握智能合约安全，包括漏洞检测、审计方法和事件响应流程。

快速开始

# 调用此技能进行安全分析
Skill("smart-contract-security", topic="vulnerabilities", severity="high")

涵盖主题

1. 常见漏洞

识别并防范：

重入攻击 ：违反 CEI 模式
访问控制 ：缺少修饰符
预言机操纵 ：闪电贷攻击
整数问题 ：精度损失

2. 审计方法

系统化审查流程：

手动审查 ：逐行分析
静态分析 ：自动化工具
模糊测试 ：基于属性的测试
形式化验证 ：数学证明

3. 安全工具

必备工具集：

Slither ：快速静态分析
Mythril ：符号执行
Foundry ：模糊测试、不变性测试
Certora ：形式化验证

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

严重：重入攻击

// VULNERABLE
function withdraw(uint256 amount) external {
    (bool ok,) = msg.sender.call{value: amount}("");
    require(ok);
    balances[msg.sender] -= amount;  // After call!
}

// FIXED: CEI Pattern
function withdraw(uint256 amount) external {
    balances[msg.sender] -= amount;  // Before call
    (bool ok,) = msg.sender.call{value: amount}("");
    require(ok);
}

高危：缺少访问控制

// VULNERABLE
function setAdmin(address newAdmin) external {
    admin = newAdmin;  // Anyone can call!
}

// FIXED
function setAdmin(address newAdmin) external onlyOwner {
    admin = newAdmin;
}

高危：未检查返回值

// VULNERABLE
IERC20(token).transfer(to, amount);  // Ignored!

// FIXED: Use SafeERC20
using SafeERC20 for IERC20;
IERC20(token).safeTransfer(to, amount);

中危：精度损失

// VULNERABLE: Division before multiplication
uint256 fee = (amount / 1000) * rate;

// FIXED: Multiply first
uint256 fee = (amount * rate) / 1000;

代码编译无警告
测试通过且覆盖率良好
文档已审查

遵循 CEI 模式
存在重入防护
管理员函数有访问控制
输入验证完整

预言机陈旧性检查
滑点保护
闪电贷抵抗
三明治攻击预防

# Slither - Fast vulnerability detection
slither . --exclude-dependencies

# Mythril - Symbolic execution
myth analyze src/Contract.sol

# Semgrep - Custom rules
semgrep --config "p/smart-contracts" .

// Foundry fuzz test
function testFuzz_Withdraw(uint256 amount) public {
    amount = bound(amount, 1, type(uint128).max);

    vm.deal(address(vault), amount);
    vault.deposit{value: amount}();

    uint256 before = address(this).balance;
    vault.withdraw(amount);

    assertEq(address(this).balance, before + amount);
}

function invariant_BalancesMatchTotalSupply() public {
    uint256 sum = 0;
    for (uint i = 0; i < actors.length; i++) {
        sum += token.balanceOf(actors[i]);
    }
    assertEq(token.totalSupply(), sum);
}

严重性	影响	示例
严重	直接资金损失	重入攻击、未受保护的初始化
高危	重大损害	访问控制、预言机操纵
中危	有条件的影响	精度损失、时间问题
低危	轻微问题	缺少事件、命名问题

# Monitor for suspicious activity
cast logs --address $CONTRACT --from-block latest

// Emergency pause
function pause() external onlyOwner {
    _pause();
}

评估损害范围
协调披露事宜
部署经过审计的修复

陷阱	风险	预防措施
仅测试正常路径	遗漏边界情况	对边界进行模糊测试
忽略集成	外部调用风险	审查所有依赖项
信任 block.timestamp	矿工操纵	仅用于长时间范围

绑定代理 ：06-smart-contract-security
相关技能 ：solidity-development, defi-protocols

SWC Registry: 常见弱点枚举
Rekt News: 黑客攻击事后分析
Immunefi: 漏洞赏金计划

版本	日期	变更
2.0.0	2025-01	生产级，包含工具和方法论
1.0.0	2024-12	初始版本

🇺🇸English

Smart Contract Security Skill

Master smart contract security with vulnerability detection, auditing methodology, and incident response procedures.

Quick Start

# Invoke this skill for security analysis
Skill("smart-contract-security", topic="vulnerabilities", severity="high")

Topics Covered

1. Common Vulnerabilities

Recognize and prevent:

Reentrancy : CEI pattern violation
Access Control : Missing modifiers
Oracle Manipulation : Flash loan attacks
Integer Issues : Precision loss

2. Auditing Methodology

Systematic review process:

Manual Review : Line-by-line analysis
Static Analysis : Automated tools
Fuzzing : Property-based testing
Formal Verification : Mathematical proofs

3. Security Tools

Essential tooling:

Slither : Fast static analysis
Mythril : Symbolic execution
Foundry : Fuzzing, invariants
Certora : Formal verification

4. Incident Response

Handle security events:

Triage : Assess severity
Mitigation : Emergency actions
Post-mortem : Root cause analysis
Disclosure : Responsible reporting

Vulnerability Quick Reference

Critical: Reentrancy

// VULNERABLE
function withdraw(uint256 amount) external {
    (bool ok,) = msg.sender.call{value: amount}("");
    require(ok);
    balances[msg.sender] -= amount;  // After call!
}

// FIXED: CEI Pattern
function withdraw(uint256 amount) external {
    balances[msg.sender] -= amount;  // Before call
    (bool ok,) = msg.sender.call{value: amount}("");
    require(ok);
}

High: Missing Access Control

// VULNERABLE
function setAdmin(address newAdmin) external {
    admin = newAdmin;  // Anyone can call!
}

// FIXED
function setAdmin(address newAdmin) external onlyOwner {
    admin = newAdmin;
}

High: Unchecked Return Value

// VULNERABLE
IERC20(token).transfer(to, amount);  // Ignored!

// FIXED: Use SafeERC20
using SafeERC20 for IERC20;
IERC20(token).safeTransfer(to, amount);

Medium: Precision Loss

// VULNERABLE: Division before multiplication
uint256 fee = (amount / 1000) * rate;

// FIXED: Multiply first
uint256 fee = (amount * rate) / 1000;

Audit Checklist

Pre-Audit

Code compiles without warnings
Tests pass with good coverage
Documentation reviewed

Core Security

CEI pattern followed
Reentrancy guards present
Access control on admin functions
Input validation complete

DeFi Specific

Oracle staleness checks
Slippage protection
Flash loan resistance
Sandwich prevention

Security Tools

Static Analysis

# Slither - Fast vulnerability detection
slither . --exclude-dependencies

# Mythril - Symbolic execution
myth analyze src/Contract.sol

# Semgrep - Custom rules
semgrep --config "p/smart-contracts" .

Fuzzing

// Foundry fuzz test
function testFuzz_Withdraw(uint256 amount) public {
    amount = bound(amount, 1, type(uint128).max);

    vm.deal(address(vault), amount);
    vault.deposit{value: amount}();

    uint256 before = address(this).balance;
    vault.withdraw(amount);

    assertEq(address(this).balance, before + amount);
}

Invariant Testing

function invariant_BalancesMatchTotalSupply() public {
    uint256 sum = 0;
    for (uint i = 0; i < actors.length; i++) {
        sum += token.balanceOf(actors[i]);
    }
    assertEq(token.totalSupply(), sum);
}

Severity Classification

Severity	Impact	Examples
Critical	Direct fund loss	Reentrancy, unprotected init
High	Significant damage	Access control, oracle manipulation
Medium	Conditional impact	Precision loss, timing issues
Low	Minor issues	Missing events, naming

Incident Response

1. Detection

# Monitor for suspicious activity
cast logs --address $CONTRACT --from-block latest

2. Mitigation

// Emergency pause
function pause() external onlyOwner {
    _pause();
}

3. Recovery

Assess damage scope
Coordinate disclosure
Deploy fixes with audit

Common Pitfalls

Pitfall	Risk	Prevention
Only testing happy path	Missing edge cases	Fuzz test boundaries
Ignoring integrations	External call risks	Review all dependencies
Trusting block.timestamp	Miner manipulation	Use for long timeframes only

Cross-References

Bonded Agent : 06-smart-contract-security
Related Skills : solidity-development, defi-protocols

Resources

SWC Registry: Common weakness enumeration
Rekt News: Hack post-mortems
Immunefi: Bug bounties

Version History

Version	Date	Changes
2.0.0	2025-01	Production-grade with tools, methodology
1.0.0	2024-12	Initial release

Weekly Installs

162

Repository

pluginagentmark…ockchain

GitHub Stars

First Seen

Jan 21, 2026

Security Audits

Gen Agent Trust HubPass SocketPass SnykPass

Installed on

opencode116

codex109

gemini-cli107

github-copilot100

claude-code93

cursor91

Lark Mail CLI 使用指南：邮件管理、安全规则与自动化工作流

37,000 周安装

智能合约安全技能：漏洞检测、审计方法与事件响应全指南

🇨🇳中文介绍

智能合约安全技能

快速开始

涵盖主题

1. 常见漏洞

2. 审计方法

3. 安全工具

相关 Skills

4. 事件响应

漏洞速查表

严重：重入攻击

高危：缺少访问控制

高危：未检查返回值

中危：精度损失

审计清单

审计前

核心安全

DeFi 特定

安全工具

静态分析

模糊测试

不变性测试

严重性分类

事件响应

1. 检测

2. 缓解

3. 恢复

常见陷阱

交叉引用

资源

版本历史