0x-shashi/skills/report-writer
skills/report-writer/SKILL.md
Generate professional audit reports with structured findings, severity classifications, proof-of-concept code, and actionable recommendations. Use when writing individual findings, composing full audit reports, or formatting results for Code4rena, Sherlock, or client engagements.
$ install --global
skillsauthnpx skillsauth add 0x-shashi/web3-audit-skills skills/report-writerInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
4 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
4
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Mar 23, 2026, 11:01 PM99.3s4 files scanned
SKILL.md
- id:
- report-writer
- title:
- Report Writer Skill
- category:
- methodology
- difficulty:
- intermediate
- last_updated:
- 2026-02-26
- description:
- >-
Report Writer Skill
Generate professional audit reports with structured findings, severity classifications, proof-of-concept code, and actionable recommendations. Based on industry standards from Trail of Bits, OpenZeppelin, Cyfrin, Spearbit, and Code4rena.
Report Components
| Component | Purpose | Length | |-----------|---------|--------| | Executive Summary | Non-technical overview for stakeholders | 1-2 paragraphs | | Scope | Files/contracts reviewed, commit hash, exclusions | Table | | Methodology | How the audit was conducted | 1 paragraph | | Finding Summary | Table of all findings by severity | Table | | Detailed Findings | Full write-up of each finding | Per finding | | Centralization Risks | Admin/owner privilege analysis | Section | | Gas Optimizations | Optional efficiency improvements | List | | Appendix | Tools used, out-of-scope items | Section |
Severity Classification
Based on the industry-standard Likelihood × Impact matrix:
| | Low Impact | Medium Impact | High Impact | |---|---|---|---| | High Likelihood | Medium | High | Critical | | Medium Likelihood | Low | Medium | High | | Low Likelihood | Info | Low | Medium |
Likelihood Assessment
| Level | Criteria | |-------|----------| | High | Exploitable by anyone, no special conditions, low cost | | Medium | Requires specific conditions, timing, or moderate skill | | Low | Requires unlikely conditions, high cost, or privileged access |
Impact Assessment
| Level | Criteria | |-------|----------| | High | Direct loss of funds, protocol takeover, permanent DoS | | Medium | Conditional fund loss, temporary DoS, incorrect state | | Low | Inconvenience, minor gas waste, edge case behavior |
Finding ID Convention
| Prefix | Severity | Example | |--------|----------|----------| | C | Critical | C-01, C-02 | | H | High | H-01, H-02 | | M | Medium | M-01, M-02 | | L | Low | L-01, L-02 | | I | Informational | I-01, I-02 | | G | Gas Optimization | G-01, G-02 |
Writing Quality Standards
Good Finding Characteristics
-
Specific title — Describes the vulnerability, not just the location
- BAD: "Issue in withdraw function"
- GOOD: "Missing reentrancy guard in withdraw() allows ETH drain via malicious token callback"
-
Clear description — A reader unfamiliar with the code can understand the issue
-
Precise location — Contract name, function, line numbers
-
Demonstrated impact — Concrete scenario showing what an attacker achieves
-
Working PoC — For Critical/High, a test case that proves exploitability
-
Actionable fix — Specific code change, not "fix the issue"
Resources
- Finding Templates
- Report Template
Workflows
- Report Workflow
Related Skills
0x-shashi/skills/variant-analysis
development
VerifiedTrustedCommunity
Systematically hunt for every variant of a discovered vulnerability across the entire codebase. Use when a bug is found and all instances of the same root cause pattern must be identified, or when performing variant analysis during competitive audits on Code4rena or Sherlock.
45SKILL.mdUpdated Mar 23, 2026
0x-shashi/skills/ton-scanner
testing
VerifiedTrustedCommunity
Use when the user wants to audit TON smart contracts for security vulnerabilities, scan FunC or Tact contracts for message chain replay, bounce handling, or gas issues, review TON DeFi protocols for actor-model concurrency flaws, or analyze asynchronous message passing security.
45SKILL.mdUpdated Mar 23, 2026
0x-shashi/skills/token-analyzer
tools
VerifiedTrustedCommunity
Analyze ERC20/ERC721/ERC1155 token implementations for non-standard behavior, fee-on-transfer mechanics, rebasing logic, blacklists, pausability, and integration risks. Use when reviewing protocols that interact with external tokens or implementing token-related features.
45SKILL.mdUpdated Mar 23, 2026
0x-shashi/skills/sui-scanner
testing
VerifiedTrustedCommunity
Use when the user wants to audit Sui Move smart contracts, scan Sui-specific patterns including object ownership, shared objects, or dynamic fields, review Sui DeFi protocols for object model security issues, or analyze Sui-specific transaction and consensus patterns.
45SKILL.mdUpdated Mar 23, 2026