from scv-scan98
Audit Solidity smart contract codebases for security vulnerabilities using a structured cheatsheet-driven sweep and selective deep validation, producing severit
scv-scan is a smart contract security auditing skill that guides an agent through a 4-phase audit: load a condensed vulnerability CHEATSHEET, perform a fast grep-based and structural sweep of the codebase, selectively deep-validate candidates against detailed reference files, and emit a severity-ranked report. The skill standardises evidence collection, false-positive checks, and remediation guidance so the agent can produce high-confidence findings suited for security review.
Use scv-scan when you need a systematic, repeatable security audit of a Solidity repository—especially before deployments, audits, or pull-request gating. It is ideal for audits where pattern-based detection plus manual semantic validation are required (reentrancy, access-control, integer issues, unsafe external calls).
references/ directory with CHEATSHEET.md and per-vulnerability reference files for deep validation.Works well with LLMs and agent runtimes that support file reading and structured reasoning (Claude/Claude Code, Cursor, GPT-based agents with repository access).
scv-scan is a Solidity smart contract vulnerability auditor using a structured 4-phase approach: load a cheatsheet, sweep codebase with grep and semantic analysis, deep-validate candidates against reference files, and produce a severity-ranked report. No scripts were bundled. The SKILL.md is well-written with clear progressive disclosure and detailed output contracts, making it ready to use out of the box.
No scripts present. SKILL.md-only skill with clean content. No security concerns whatsoever. Well-structured reference material approach with good separation between condensed cheatsheet and full reference files.
