Skills
.Work. You
Rest

signature-malleability

Community

Secure ECDSA signature verification.

Software Engineering#security#vulnerability#smart contract#solidity#ecdsa#signature malleability
AuthorApegurus
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill addresses vulnerabilities related to the improper handling of ECDSA signatures in smart contracts, which can lead to replay attacks or unauthorized actions.

Core Features & Use Cases

  • Detects insecure signature usage: Identifies contracts using raw ECDSA signatures for authorization or deduplication without proper normalization.
  • Analyzes signature verification: Checks for common pitfalls like direct ecrecover usage without nonce or domain separation, and lack of s-value range checks.
  • Use Case: Auditing a DeFi protocol that uses signatures to authorize critical state changes, ensuring that attackers cannot reuse or manipulate valid signatures.

Quick Start

Analyze the 'VaultContract.sol' for signature malleability vulnerabilities.

Dependency Matrix

Required Modules

None required

Components

references

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: signature-malleability
Download link: https://github.com/Apegurus/solidity-argus/archive/main.zip#signature-malleability

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.