Skills

entry-point-analyzer

Installation
Summary

Smart contract entry point detector for security audit surface mapping.

  • Identifies all state-changing, externally callable functions across Solidity, Vyper, Solana, Move, TON, and CosmWasm codebases; excludes view/pure/read-only functions
  • Classifies functions by access level: public (unrestricted), role-restricted (admin, governance, guardian, etc.), contract-only (callbacks), and review-required patterns
  • Integrates with Slither for Solidity when available; falls back to manual parsing for all supported languages
  • Generates structured markdown audit reports with summary tables, per-role breakdowns, and file-level analysis to guide security review priorities
SKILL.md

Entry Point Analyzer

Systematically identify all state-changing entry points in a smart contract codebase to guide security audits.

When to Use

Use this skill when:

  • Starting a smart contract security audit to map the attack surface
  • Asked to find entry points, external functions, or audit flows
  • Analyzing access control patterns across a codebase
  • Identifying privileged operations and role-restricted functions
  • Building an understanding of which functions can modify contract state

When NOT to Use

Do NOT use this skill for:

  • Vulnerability detection (use audit-context-building or domain-specific-audits)
  • Writing exploit POCs (use solidity-poc-builder)
  • Code quality or gas optimization analysis
Related skills

More from trailofbits/skills

Installs
2.4K
Repository
trailofbits/skills
GitHub Stars
5.1K
First Seen
Jan 19, 2026
Security Audits
Gen Agent Trust HubPass
SocketPass
SnykPass