Audit smart contracts for vulnerabilities in external calls and token integrations, detecting unchecked low-level calls, fee-on-transfer and rebasing tokens, ERC-777 callback risks, USDT return issues, unsafe approvals, and payment pattern flaws to ensure secure ERC20 handling.
Own this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimOwn this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimBased on adoption, maintenance, documentation, and repository signals. Not a security audit or endorsement.
npx claudepluginhub quillai-network/quillshield_skills --plugin external-call-safetyDetects price oracle manipulation and flash loan attack vectors in DeFi smart contracts. Classifies oracle trust models (Chainlink, TWAP, spot price), identifies stale price risks, circular dependencies, and flash loan atomicity exploitation patterns. Covers the #2 OWASP Smart Contract vulnerability category.
quillai-networkDetects logic vulnerabilities in smart contracts by analyzing guard-state consistency patterns. Uses the Consistency Principle to find functions that bypass security checks (require, modifiers) established by the contract's own patterns.
quillai-networkDetects input validation failures and arithmetic vulnerabilities in smart contracts — the #1 direct exploitation cause at 34.6% of cases. Covers missing zero-checks, precision loss from division-before-multiplication, rounding direction exploitation, ERC4626 inflation attacks, unsafe casting, dust amount exploitation, and Solidity 0.8+ edge cases in unchecked blocks.
quillai-networkDetects vulnerabilities in upgradeable proxy smart contracts — storage layout collisions, uninitialized implementations, function selector clashing, and upgrade path safety issues. Covers Transparent, UUPS, Beacon, Diamond (EIP-2535), and Minimal proxy patterns. Critical for the 54.2% of Ethereum contracts that use proxy architecture.
quillai-networkBlue-team release-gate skill for smart contract systems. Classifies projects, reviews deployment and upgrade execution paths, inspects CI/CD and dependency trust boundaries, evaluates signer/admin operational security, and produces evidence-based release blockers, warnings, and release verdicts.
quillai-networkSystematic detection of all reentrancy variants in smart contracts — classic, cross-function, cross-contract, and read-only reentrancy. Verifies CEI pattern compliance, traces external call positions relative to state changes, and detects callback-based attack vectors through ERC-777/ERC-1155 hooks.
quillai-networkAI-powered smart contract security auditor with parallel hunt lanes, Devil's Advocate verification, static analysis (Slither, Aderyn), fuzz testing (Echidna, Medusa), symbolic execution (Halmos), Solodit intelligence, and interactive Map-Hunt-Attack methodology
ArchethectComprehensive smart contract security toolkit based on Trail of Bits' Building Secure Contracts framework. Includes vulnerability scanners for 6 blockchains and 5 development guideline assistants.
trailofbitsTrack new token launches, detect rugpulls, and analyze contract security for early-stage crypto projects
jeremylongshoreSolidity static analyzer with AI-powered security skills for auditing and developing secure smart contracts
slvDevAudits Solidity codebases for smart contract vulnerabilities using a four-phase workflow covering 36 vulnerability classes.
trailofbits