solidity-code-review

Apply this methodology when performing a security audit, peer review, or general assessment of Solidity smart contracts. It is designed to identify vulnerabilities, ensure adherence to best practices, and verify the robustness of the contract logic.

Before beginning the manual review, ensure the following items are addressed:

| Critical | Direct loss of funds, permanent contract lock, or total compromise. | Reentrancy, Unprotected withdraw, Logic error in transfer. | | High | Significant impact on system functionality or exploitable under realistic conditions. | Access control bypass, Unchecked external calls, Oracle manipulation. |

Solidity 的智慧合約程式碼審查和安全審計方法。在審查、稽核或評估 Solidity 代碼的安全性時使用。提供結構化審查流程、嚴重性分類、關鍵檢查領域和 OWASP SCWE 整合。觸發涉及程式碼審查、安全審計、漏洞評估、智慧合約審查或最佳實踐檢查的任務。 來源：whackur/solidity-agent-toolkit。