Substrate Vulnerability Scanner Skill

Trit: -1 (MINUS) Category: building-secure-contracts Author: Trail of Bits Source: trailofbits/skills License: AGPL-3.0

Description

Scans Substrate/Polkadot pallets for 7 critical vulnerabilities including arithmetic overflow, panic DoS, incorrect weights, and bad origin checks. Use when auditing Substrate runtimes or FRAME pallets. (project, gitignored)

When to Use

This is a Trail of Bits security skill. Refer to the original repository for detailed usage guidelines and examples.

See: https://github.com/trailofbits/skills

Related Skills

• audit-context-building
• codeql
• semgrep
• variant-analysis

SDF Interleaving

This skill connects to Software Design for Flexibility (Hanson & Sussman, 2021):

Primary Chapter: 3. Variations on an Arithmetic Theme

Concepts: generic arithmetic, coercion, symbolic, numeric

GF(3) Balanced Triad

substrate-vulnerability-scanner (−) + SDF.Ch3 (○) + [balancer] (+) = 0

Skill Trit: -1 (MINUS - verification)

Connection Pattern

Generic arithmetic crosses type boundaries. This skill handles heterogeneous data.