auditing-foundry-smart-contract-security

Pass

Audited by Gen Agent Trust Hub on Jun 20, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructions facilitate the installation of the Foundry toolkit via a shell script located at https://foundry.paradigm.xyz. This is the official and standard installation method provided by Paradigm, a well-recognized entity in the blockchain research and development space.
  • [COMMAND_EXECUTION]: The included orchestrator script scripts/agent.py executes several security analysis utilities (Slither, Aderyn, Mythril, and Forge). These commands are invoked using subprocess.run with argument lists rather than shell execution, which effectively prevents command injection vulnerabilities.
  • [COMMAND_EXECUTION]: The skill provides structured guidance for running command-line tools such as forge for property-based testing, cast for secure wallet interactions, and gitleaks for detecting sensitive information in the codebase.
  • [EXTERNAL_DOWNLOADS]: The skill mentions the installation of various security-focused Python and Node.js packages (e.g., slither-analyzer, mythril, @cyfrin/aderyn) through official package registries such as PyPI, Cargo, and NPM.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 20, 2026, 03:33 PM
Security Audit — agent-trust-hub — auditing-foundry-smart-contract-security