Zum Hauptinhalt springen
Dieser Inhalt ist noch nicht in Ihrer Sprache verfügbar und wird auf Englisch angezeigt.

Entry Point Analyzer

Plugin Verifiziert Aktiv
Teil von:Trailofbits

Analyzes smart contract codebases to identify state-changing entry points for security auditing. Detects externally callable functions that modify state, categorizes them by access level, and generates structured audit reports.

1 Skill 0 MCPs
Zweck

To automate the identification and classification of state-changing entry points in smart contract codebases, thereby streamlining the security auditing process and highlighting the critical attack surface.

Funktionen

  • Detects state-changing entry points in smart contracts
  • Classifies functions by access level (public, role-restricted, contract-only)
  • Supports multiple smart contract languages (Solidity, Vyper, etc.)
  • Generates structured markdown audit reports
  • Excludes read-only functions from analysis

Anwendungsfälle

  • Initiating a smart contract security audit
  • Mapping the attack surface of a smart contract
  • Identifying privileged operations and role-based access controls
  • Finding all externally callable functions that can modify contract state

Nicht-Ziele

  • Detecting specific vulnerabilities or exploit patterns
  • Performing code quality or gas optimization analysis
  • Analyzing non-smart-contract codebases
  • Identifying read-only functions or data retrieval methods

Trust

  • info:Issues Attention13 issues were opened and 4 closed in the last 90 days, indicating some engagement but also a potential for slower response times on open issues.

Installation

Zuerst Marketplace hinzufügen

/plugin marketplace add trailofbits/skills
/plugin install entry-point-analyzer@trailofbits

Enthält 1 Erweiterungen

Skill (1)

Entry Point Analyzer Skill

Analyzes smart contract codebases to identify state-changing entry points for security auditing. Detects externally callable functions that modify state, categorizes them by access level (public, admin, role-restricted, contract-only), and generates structured audit reports. Excludes view/pure/read-only functions. Use when auditing smart contracts (Solidity, Vyper, Solana/Rust, Move, TON, CosmWasm) or when asked to find entry points, audit flows, external functions, access control patterns, or privileged operations.

97

Qualitätspunktzahl

Verifiziert
96 /100
Analysiert about 17 hours ago

Vertrauenssignale

Letzter Commit3 days ago
GitHub-Inhaber trailofbits (opens in new tab)
Sterne5.2k
LizenzCC-BY-SA-4.0
Status
Quellcode ansehen

Ähnliche Erweiterungen

Property Based Testing

97

Property-based testing guidance for multiple languages and smart contracts

Plugin
trailofbits

Blockchain Web3

98

Smart contract development with Solidity, DeFi protocol implementation, NFT platforms, and Web3 application architecture

Plugin
wshobson

Dotforge

100

Node.js 20+ with Express/Fastify, TypeScript, and ESM module rules for Claude Code.

Plugin
luiseiman

Review Agent Governance

99

Require a human approval signal before an AI agent can post PR reviews, comments, merges, or writes to CI config. Cedar-gated, receipt-signed, designed for the Hermes-style failure mode where a review bot posts without oversight.

Plugin
wshobson

HubSpot Admin Skills

99

Complete HubSpot CRM administration toolkit — audit, clean, enrich, segment, automate, and maintain your database

Plugin
TomGranot

C4 Architecture

99

Comprehensive C4 architecture documentation workflow with bottom-up code analysis, component synthesis, container mapping, and context diagram generation

Plugin
wshobson