greatpie contributor

Smart Contract Audit Skills

greatpie/smart-contract-audit-skill·1 plugin

Run a script-backed Solidity/EVM audit workflow in Claude Code—from environment setup through findings, patches, exploit scaffolds, and structured reports.

Overview

smart-contract-audit-skills is a plugin marketplace for the Ship phase that delivers a script-backed EVM/Solidity auditing workflow with detection, patch checks, exploits, and structured reports.

What is this marketplace?

  • Out-of-box auditing workflow for Solidity/EVM repositories
  • Environment bootstrap plus automated vulnerability detection
  • Patch validation and exploit scaffolding steps
  • Structured report generation aligned with EVMbench methodology
  • Bundled smart-contract-audit skill with script-backed execution (strict mode off)
  • Marketplace bundles 1 plugin (smart-contract-audit)
  • Metadata version 1.0.0; skill path ./skills/smart-contract-audit; plugin strict mode false

Compatible agents: Claude Code, Cursor, Codex

Community signal: 101 GitHub stars.

What problem does it solve?

Solo builders lack a consistent, agent-driven path to audit Solidity repos and document vulnerabilities before users or attackers find them.

Who is it for?

Indie protocol or Web3 developers auditing their own contracts in Claude Code before release or after material code changes.

Skip if: Non-EVM projects, teams needing formal third-party certification only, or beginners without Solidity tooling experience.

What do I get? / Deliverables

After install, you can run an end-to-end audit routine that produces validated patch guidance, exploit scaffolds, and structured security reports for your EVM codebase.

  • Bootstrapped audit environment for the target repository
  • Vulnerability findings with patch validation and exploit scaffolds where applicable
  • Structured security audit report suitable for pre-ship review

Plugins in this marketplace

1 plugin — install individually after you add the marketplace.

PluginVersion
Smart Contract AuditScript-backed, out-of-box auditing workflow for Solidity/EVM repositories. Covers environment bootstrap, vulnerability detection, patch validation, exploit scaffolding, and structured report generation based on EVMbench methodology.

Recommended Marketplaces

AuthZed
Authzed Marketplaceauthzed/authzed-marketplace
AuthZed Marketplace is the vendor-maintained Claude Code catalog for SpiceDB and AuthZed authorization work. Indie SaaS 2 stars
Chainguard
Chainguard Pluginschainguard-demo/claude-plugins
chainguard-plugins is Anthropic’s official Chainguard plugin marketplace for Claude Code, bundling documentation access 7 stars
Empathic
Clashempathic/clash
Clash is a Claude Code plugin marketplace from Empathic that adds permission enforcement for agent tool usage. Solo buil30 stars
Anthropic
Claude For Legalanthropics/claude-for-legal
claude-for-legal is Anthropic’s official Claude Code plugin marketplace bundling thirteen legal-focused plugins for team8.2k stars
Anthropic
Claude For Legalgtgspot/clegal
claude-for-legal (market id gtgspot/clegal) is a thirteen-plugin Claude marketplace framed with Anthropic’s marketplace
trumb
Claude Nginx Hardeningtrumb/claude-nginx-hardening
claude-nginx-hardening is a Claude Code plugin marketplace by trumb that packages one development-category plugin for op1 stars

Journey fit

Idea
Validate
Build
Ship
Launch
Grow
Operate
Primary fit
ShipSecurity

Ship/security is the canonical shelf because the marketplace exists to harden contracts before mainnet and produce audit-grade evidence. Security subphase matches vulnerability detection, patch validation, exploit scaffolding, and EVMbench-style reporting.

How it compares

Security-audit skill marketplace for EVM repos, not a frontend OG or general productivity plugin bundle.

Common Questions / FAQ

Who is Smart Contract Audit Skills for?

It is for developers maintaining Solidity/EVM repositories who want an agent-guided audit pipeline with reporting rather than ad-hoc manual review.

When should I use Smart Contract Audit Skills?

Use it in Ship before mainnet or major releases, and again after substantive contract changes when you need detection, patch validation, and documented findings.

How do I add Smart Contract Audit Skills to my agent?

Install the greatpie/smart-contract-audit-skill marketplace in Claude Code, enable the smart-contract-audit plugin, and point it at your EVM repository root.

This week for builders

Five minutes, every Monday — the tools, releases and tactics for shipping solo.

unsubscribe anytime.