weak-sources-randomness
CommunitySecure your smart contracts from predictable randomness.
AuthorApegurus
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill identifies and helps remediate vulnerabilities in smart contracts where predictable or manipulable on-chain data is used to generate random numbers, potentially leading to economic exploits.
Core Features & Use Cases
- Vulnerability Detection: Pinpoints the use of deterministic on-chain data like
block.timestamp,blockhash,block.number, andblock.prevrandaofor generating random values. - Exploit Analysis: Provides examples of how attackers can exploit weak randomness and details detection heuristics.
- Remediation Guidance: Offers solutions such as using Chainlink VRF or implementing commit-reveal schemes.
- Use Case: Auditing a decentralized lottery smart contract to ensure the winner selection is truly random and not influenced by miners or other network participants.
Quick Start
Analyze the provided Solidity code for weak sources of randomness.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: weak-sources-randomness Download link: https://github.com/Apegurus/solidity-argus/archive/main.zip#weak-sources-randomness Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.