solidity-code-review

Apply this methodology when performing a security audit, peer review, or general assessment of Solidity smart contracts. It is designed to identify vulnerabilities, ensure adherence to best practices, and verify the robustness of the contract logic.

Before beginning the manual review, ensure the following items are addressed:

| Critical | Direct loss of funds, permanent contract lock, or total compromise. | Reentrancy, Unprotected withdraw, Logic error in transfer. | | High | Significant impact on system functionality or exploitable under realistic conditions. | Access control bypass, Unchecked external calls, Oracle manipulation. |

Solidity 的智能合约代码审查和安全审计方法。在审查、审计或评估 Solidity 代码的安全性时使用。提供结构化审查流程、严重性分类、关键检查领域和 OWASP SCWE 集成。触发涉及代码审查、安全审计、漏洞评估、智能合约审查或最佳实践检查的任务。 来源：whackur/solidity-agent-toolkit。