Skills
.Work. You
Rest

delegatecall-untrusted-callee

Community

Secure delegatecall usage

Software Engineering#security#vulnerability#auditing#smart contracts#solidity#delegatecall
AuthorApegurus
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps identify and prevent vulnerabilities arising from the misuse of delegatecall in Solidity smart contracts, specifically when the callee address is not properly validated.

Core Features & Use Cases

  • Delegatecall Analysis: Detects the use of delegatecall and analyzes the trust boundary of the callee address.
  • Vulnerability Detection: Flags instances where delegatecall might be used with untrusted or user-controlled addresses, leading to potential storage manipulation or contract hijacking.
  • Use Case: Auditing a proxy contract to ensure that the implementation address, which is set via delegatecall, cannot be changed by unauthorized users, thus preventing malicious upgrades.

Quick Start

Analyze the attached file 'VaultContract.sol' for delegatecall vulnerabilities.

Dependency Matrix

Required Modules

None required

Components

references

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: delegatecall-untrusted-callee
Download link: https://github.com/Apegurus/solidity-argus/archive/main.zip#delegatecall-untrusted-callee

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.