cosmos-vulnerability-scanner
cosmos-vulnerability-scanner
Catalogue généré le 2026-05-11
En une phrase
Scans Cosmos SDK blockchains for 9 consensus-critical vulnerabilities including non-determinism, incorrect signers, ABCI panics, and rounding errors.
Quand l'utiliser
- Use when auditing Cosmos chains or CosmWasm contracts.
Comment l'invoquer
- Slash command :
/cosmos-vulnerability-scanner(si exposé dans ton CLI) - Phrases déclencheurs : voir la description complète ci-dessous
- Auto-invocation : sur demande explicite
Description complète
Scans Cosmos SDK blockchains for 9 consensus-critical vulnerabilities including non-determinism, incorrect signers, ABCI panics, and rounding errors. Use when auditing Cosmos chains or CosmWasm contracts.
Pour aller plus loin
Cosmos Vulnerability Scanner
1. Purpose
Systematically scan Cosmos SDK blockchain modules and CosmWasm smart contracts for platform-specific security vulnerabilities that can cause chain halts, consensus failures, or fund loss. This skill encodes 9 critical vulnerability patterns unique to Cosmos-based chains.
2. When to Use This Skill
- Auditing Cosmos SDK modules (custom x/ modules)
- Reviewing CosmWasm smart contracts (Rust)
- Pre-launch security assessment of Cosmos chains
- Investigating chain halt incidents
- Validating consensus-critical code changes
- Reviewing ABCI method implementations
3. Platform Detection
File Extensions & Indicators
- Go files:
.go,.proto - CosmWasm:
.rs(Rust with cosmwasm imports)
Language/Framework Markers
Project Structure
x/modulename/- Custom moduleskeeper/keeper.go- State managementtypes/msgs.go- Message definitions
(extrait — voir le SKILL.md complet pour la suite)
Source
- Plugin :
trailofbits/building-secure-contracts - Nom interne :
cosmos-vulnerability-scanner - Fichier :
/home/thymon/.claude/plugins/cache/trailofbits/building-secure-contracts/1.0.1/skills/cosmos-vulnerability-scanner/SKILL.md