Name: solidity-function-audit
Author: gonzaloetjo

solidity-audit-skills

Function-by-function security audit of your Solidity contracts, powered by Claude Code agents.

Captures design decisions before the audit — trade-offs don't get flagged as bugs
Parallel agents grouped by domain — one agent per domain, all domains run concurrently
Interactive post-audit review — classify findings, dispute false positives, get re-evaluation
Structured markdown output with per-domain files, an index, and a summary

Severity	Function	Finding
CRITICAL	`withdraw()`	Missing reentrancy guard allows drain via callback before balance update
CRITICAL	`setOracle()`	No access control — any caller can replace the price oracle
WARNING	`deposit()`	Underflow revert produces generic `Panic(0x11)` instead of custom error
INFO	`_stakeToShares()`	Rounding direction correctly protocol-favorable (DOWN on deposit)

Full per-function analysis format

Each function gets a standalone analysis block. Here's a trimmed example from a staking vault audit:

Rationale: Entry point for users to deposit native token and receive LST shares. Must correctly convert deposited stake to shares at the current exchange rate, protect against sandwich/frontrunning via slippage, and maintain share supply/pool accounting invariants.
State mutations:
- _mint(msg.sender, shares) -- increases totalSupply() and balanceOf(msg.sender) by shares
- address(this).balance is implicitly increased by msg.value at the start of the call
Dependencies:
- Reads: getTotalPooledStake(), totalSupply(), INITIAL_SHARES_OFFSET
- Calls: _stakeToShares(msg.value, preDepositStake), _mint(msg.sender, shares)
- Modifiers: nonReentrant, whenNotPaused
Findings:
1. WARNING -- Underflow revert acts as implicit insolvency guard. The subtraction getTotalPooledStake() - msg.value will revert with arithmetic underflow if getTotalPooledStake() < msg.value. The revert reason will be a generic Panic(0x11) rather than a descriptive custom error.
2. INFO -- Zero-share deposit protection. if (shares == 0) revert StakingVault__InvalidAmount() prevents dust deposits that produce zero shares.
3. INFO -- Slippage protection. minShares > 0 && shares < minShares check allows callers to skip by passing 0.
Verdict: SOUND

Stage	What happens	Mode	Output
0. Design decisions	Extract + confirm developer intent	Interactive	`stage0/`
0.5 Slither	Static analysis (if installed)	Orchestrator	`stage0/slither-findings.md`
1. Foundation	Map state variables, access control, external calls	Agents (parallel)	`stage1/`
2. Domain audit	Per-function analysis grouped by domain	Agents (parallel)	`stage2/domain-*.md`
3. Cross-cutting	Reentrancy paths, state consistency, math/rounding, adversarial sequencing	Agents (parallel)	`stage3/`
4. Human review	Classify findings: BUG, DESIGN, DISPUTED, DISCUSS	Interactive	`review/`
5. Re-evaluation	Re-analyze disputed findings with developer context	Agent (conditional)	`review/`

solidity-function-audit