skills/mukul975/anthropic-cybersecurity-skills/auditing-foundry-smart-contract-security/Gen Agent Trust Hub
auditing-foundry-smart-contract-security
Pass
Audited by Gen Agent Trust Hub on Jun 20, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructions facilitate the installation of the Foundry toolkit via a shell script located at
https://foundry.paradigm.xyz. This is the official and standard installation method provided by Paradigm, a well-recognized entity in the blockchain research and development space. - [COMMAND_EXECUTION]: The included orchestrator script
scripts/agent.pyexecutes several security analysis utilities (Slither, Aderyn, Mythril, and Forge). These commands are invoked usingsubprocess.runwith argument lists rather than shell execution, which effectively prevents command injection vulnerabilities. - [COMMAND_EXECUTION]: The skill provides structured guidance for running command-line tools such as
forgefor property-based testing,castfor secure wallet interactions, andgitleaksfor detecting sensitive information in the codebase. - [EXTERNAL_DOWNLOADS]: The skill mentions the installation of various security-focused Python and Node.js packages (e.g.,
slither-analyzer,mythril,@cyfrin/aderyn) through official package registries such as PyPI, Cargo, and NPM.
Audit Metadata