Scan upgradeable proxy smart contracts for vulnerabilities like storage layout collisions, uninitialized implementations, function selector clashes, delegatecall issues, and upgrade path safety problems across Transparent, UUPS, Beacon, Diamond (EIP-2535), and Minimal proxy patterns.
Own this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimOwn this plugin?
Verify ownership to unlock analytics, metadata editing, and a verified badge. GitHub access is read-only (username + org membership).
Sign in to claimBased on adoption, maintenance, documentation, and repository signals. Not a security audit or endorsement.
'%20stop-opacity%3D'0.16'%2F%3E%3Cstop%20offset%3D'1'%20stop-color%3D'rgb(200%2C90%2C60)'%20stop-opacity%3D'0.03'%2F%3E%3C%2FlinearGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D'320'%20height%3D'200'%20fill%3D'url(%23g)'%2F%3E%3Ccircle%20cx%3D'250'%20cy%3D'56'%20r%3D'92'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.06'%2F%3E%3Ccircle%20cx%3D'64'%20cy%3D'172'%20r%3D'58'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.05'%2F%3E%3C%2Fsvg%3E)
npx claudepluginhub quillai-network/quillshield_skills --plugin proxy-upgrade-safetyDetects unsafe external call patterns and token integration vulnerabilities in smart contracts. Covers unchecked call return values, fee-on-transfer tokens, rebasing tokens, missing ERC20 return values (USDT), ERC-777 callback risks, unsafe approve patterns, return data bombs, and pull vs push payment analysis. Addresses OWASP SC06.
quillai-networkDetects logic vulnerabilities in smart contracts by analyzing guard-state consistency patterns. Uses the Consistency Principle to find functions that bypass security checks (require, modifiers) established by the contract's own patterns.
quillai-networkDetects input validation failures and arithmetic vulnerabilities in smart contracts — the #1 direct exploitation cause at 34.6% of cases. Covers missing zero-checks, precision loss from division-before-multiplication, rounding direction exploitation, ERC4626 inflation attacks, unsafe casting, dust amount exploitation, and Solidity 0.8+ edge cases in unchecked blocks.
quillai-networkBlue-team release-gate skill for smart contract systems. Classifies projects, reviews deployment and upgrade execution paths, inspects CI/CD and dependency trust boundaries, evaluates signer/admin operational security, and produces evidence-based release blockers, warnings, and release verdicts.
quillai-networkDetects Denial of Service and griefing vulnerabilities in smart contracts — OWASP SC10. Covers unbounded loops, block gas limit exhaustion, external call failure DoS, insufficient gas griefing (63/64 rule), storage bloat, timestamp griefing, self-destruct force-feeding, and push vs pull payment pattern analysis.
quillai-networkSystematic detection of all reentrancy variants in smart contracts — classic, cross-function, cross-contract, and read-only reentrancy. Verifies CEI pattern compliance, traces external call positions relative to state changes, and detects callback-based attack vectors through ERC-777/ERC-1155 hooks.
quillai-networkAI-powered smart contract security auditor with parallel hunt lanes, Devil's Advocate verification, static analysis (Slither, Aderyn), fuzz testing (Echidna, Medusa), symbolic execution (Halmos), Solodit intelligence, and interactive Map-Hunt-Attack methodology
ArchethectComprehensive smart contract security toolkit based on Trail of Bits' Building Secure Contracts framework. Includes vulnerability scanners for 6 blockchains and 5 development guideline assistants.
trailofbitsAudits Solidity codebases for smart contract vulnerabilities using a four-phase workflow covering 36 vulnerability classes.
trailofbitsSolidity static analyzer with AI-powered security skills for auditing and developing secure smart contracts
slvDevTrack new token launches, detect rugpulls, and analyze contract security for early-stage crypto projects
jeremylongshore