alt-research/entry-point-analyzer
.claude/skills/solidity-guard/skills/entry-point-analyzer/SKILL.md
Analyzes Solidity contract entry points to map attack surface. Identifies all external/public functions, categorizes by privilege level, maps access control, and detects authorization patterns. Use as first step in any audit.
$ install --global
skillsauthnpx skillsauth add alt-research/solidityguard entry-point-analyzerInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 20, 2026, 3:21 PM1.8s1 file scanned
SKILL.md
- name:
- entry-point-analyzer
- description:
- |
Entry Point Analyzer
1. Purpose
Map the complete attack surface of Solidity contracts by analyzing all entry points. This is the essential first step in any security audit.
2. When to Use
- Start of any audit (ALWAYS use first)
- Understanding unfamiliar codebase
- Mapping privilege boundaries
- Creating audit scope document
3. Analysis Workflow
Step 1: Detect Framework
# Check for Foundry
ls foundry.toml
# Check for Hardhat
ls hardhat.config.js hardhat.config.ts
# Check Solidity version
rg "pragma solidity" contracts/
Step 2: Extract All Entry Points
# Find all external/public functions
rg "function.*external|function.*public" contracts/ --type sol
# Find all state-changing functions
rg "function.*(external|public)" contracts/ -A 5
# Find constructors and initializers
rg "constructor|initialize" contracts/
Step 3: Categorize Functions
| Category | Examples | Risk Level | |----------|----------|------------| | Admin | initialize, setAdmin, pause, upgrade | CRITICAL | | Financial | deposit, withdraw, transfer, swap, borrow | CRITICAL | | State Mutation | update, set, modify, approve | HIGH | | View/Pure | get, view, balanceOf, totalSupply | LOW | | User Action | claim, stake, vote, mint | MEDIUM |
Step 4: Map Access Control
For each function, extract:
## Function: withdraw(uint256 amount)
- **Visibility**: external
- **Modifiers**: onlyOwner, nonReentrant
- **State Changes**: balances mapping, totalDeposits
- **External Calls**: token.transfer()
- **Events**: Withdrawal(sender, amount)
- **Risk Level**: CRITICAL
Step 5: Identify Privilege Boundaries
┌─────────────────────────────────────────────┐
│ OWNER ONLY │
│ pause(), unpause(), setFee(), upgrade() │
├─────────────────────────────────────────────┤
│ AUTHORIZED ROLES │
│ withdraw(), liquidate(), harvest() │
├─────────────────────────────────────────────┤
│ ANY USER │
│ deposit(), swap(), getPrice() │
└─────────────────────────────────────────────┘
4. Output Format
# Entry Point Analysis: [Contract Name]
## Contract Information
- **Name**: [Contract Name]
- **Address**: [If deployed]
- **Framework**: Foundry / Hardhat
- **Solidity Version**: [Version]
- **Inheritance Chain**: [Parent contracts]
## Functions Summary
| Function | Visibility | Modifiers | State Changes | Risk |
|----------|-----------|-----------|---------------|------|
| initialize | external | initializer | owner, settings | CRITICAL |
| deposit | external | nonReentrant | balances, supply | CRITICAL |
| withdraw | external | onlyOwner | balances, supply | CRITICAL |
| getBalance | view | — | none | LOW |
## Attack Surface Map
### Critical Entry Points (Require Deep Review)
1. `withdraw` - Fund extraction, reentrancy risk
2. `initialize` - Proxy initialization, reinit risk
3. `swap` - Price manipulation, slippage
### Red Flags
- [ ] Function with no access modifier
- [ ] Financial operation without nonReentrant
- [ ] Admin function without timelock
- [ ] Unprotected initializer
- [ ] Missing zero-address checks
5. Integration
After Entry Point Analysis
- vulnerability-scanner - Scan each entry point
- reentrancy-auditor - Check all external calls
- access-control-reviewer - Validate authorization
- defi-analyzer - Analyze DeFi interactions
Related Skills
alt-research/solidityguard
tools
VerifiedTrustedCommunity
Advanced Solidity/EVM smart contract security auditor with 104 vulnerability patterns, multi-tool integration, and professional report generation.
93SKILL.mdUpdated Apr 3, 2026
alt-research/solidity-vulnerability-scanner
development
VerifiedTrustedCommunity
Comprehensive Solidity contract security scanner detecting 104 vulnerability patterns across reentrancy, access control, arithmetic, DeFi, proxy, and token categories. Integrates Slither, Aderyn, and Mythril with manual analysis.
83SKILL.mdUpdated Apr 3, 2026
alt-research/storage-analyzer
testing
VerifiedTrustedCommunity
Analyzes storage layout, proxy patterns, and state variable security in Solidity contracts. Detects storage collisions, uninitialized pointers, and upgrade risks. Use when auditing proxy/upgradeable contracts.
83SKILL.mdUpdated Apr 3, 2026
alt-research/spec-compliance
development
VerifiedTrustedCommunity
Validates Solidity implementation against specification documents. Extracts behavior from docs (README, specs, NatSpec) and verifies code matches documented intent. Uses Trail of Bits methodology for divergence detection.
83SKILL.mdUpdated Apr 3, 2026