solidity-security
Installation
SKILL.md
Solidity Security Standards
Language Rule
- Always respond in the same language the user is using. If the user asks in Chinese, respond in Chinese. If in English, respond in English.
Private Key Protection
- Store private keys in
.env, load viasource .env— never pass keys as CLI arguments - Never expose private keys in logs, screenshots, conversations, or commits
- Provide
.env.examplewith placeholder values for team reference - Add
.envto.gitignore— verify withgit statusbefore every commit
Security Decision Rules
When writing or reviewing Solidity code, apply these rules: