Skip to main content

cosmos-vulnerability-scanner

cosmos-vulnerability-scanner

Catalogue généré le 2026-05-11

En une phrase

Scans Cosmos SDK blockchains for 9 consensus-critical vulnerabilities including non-determinism, incorrect signers, ABCI panics, and rounding errors.

Quand l'utiliser

  • Use when auditing Cosmos chains or CosmWasm contracts.

Comment l'invoquer

  • Slash command : /cosmos-vulnerability-scanner (si exposé dans ton CLI)
  • Phrases déclencheurs : voir la description complète ci-dessous
  • Auto-invocation : sur demande explicite

Description complète

Scans Cosmos SDK blockchains for 9 consensus-critical vulnerabilities including non-determinism, incorrect signers, ABCI panics, and rounding errors. Use when auditing Cosmos chains or CosmWasm contracts.

Pour aller plus loin

Cosmos Vulnerability Scanner

1. Purpose

Systematically scan Cosmos SDK blockchain modules and CosmWasm smart contracts for platform-specific security vulnerabilities that can cause chain halts, consensus failures, or fund loss. This skill encodes 9 critical vulnerability patterns unique to Cosmos-based chains.

2. When to Use This Skill

  • Auditing Cosmos SDK modules (custom x/ modules)
  • Reviewing CosmWasm smart contracts (Rust)
  • Pre-launch security assessment of Cosmos chains
  • Investigating chain halt incidents
  • Validating consensus-critical code changes
  • Reviewing ABCI method implementations

3. Platform Detection

File Extensions & Indicators

  • Go files: .go, .proto
  • CosmWasm: .rs (Rust with cosmwasm imports)

Language/Framework Markers

Project Structure

  • x/modulename/ - Custom modules
  • keeper/keeper.go - State management
  • types/msgs.go - Message definitions

(extrait — voir le SKILL.md complet pour la suite)

Source

  • Plugin : trailofbits/building-secure-contracts
  • Nom interne : cosmos-vulnerability-scanner
  • Fichier : /home/thymon/.claude/plugins/cache/trailofbits/building-secure-contracts/1.0.1/skills/cosmos-vulnerability-scanner/SKILL.md