unbounded-return-data
CommunitySecure low-level calls against memory expansion.
Software Engineering#vulnerability#solidity#gas optimization#smart contract security#denial of service#low-level call
AuthorApegurus
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses a critical security vulnerability in smart contracts where low-level calls to untrusted addresses can lead to denial-of-service attacks due to excessive memory expansion.
Core Features & Use Cases
- Vulnerability Detection: Identifies contracts making
.call(),.delegatecall(), or.staticcall()to potentially attacker-controlled addresses without proper return data size restrictions. - Remediation Guidance: Provides code examples and strategies to safely bound return data using assembly or specialized libraries.
- Use Case: A security auditor can use this Skill to quickly scan a Solidity codebase for instances where a withdrawal or critical function relies on a callback to an external, potentially malicious contract, preventing catastrophic gas exhaustion.
Quick Start
Analyze the provided Solidity code for unbounded return data vulnerabilities in low-level calls.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: unbounded-return-data Download link: https://github.com/Apegurus/solidity-argus/archive/main.zip#unbounded-return-data Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.