🛡️ Solana Vulnerability Scanner
This skill scans Solana programs for 6 critical vulnerabilities, identifies issues in CPI, PDA validation, signer checks, and sysvar spoofing.
npx playbooks add skill trailofbits/skills --skill solana-vulnerability-scanner
About Solana Vulnerability Scanner
This skill scans Solana programs for 6 critical vulnerabilities, identifies issues in CPI, PDA validation, signer checks, and sysvar spoofing.
This compact 20-word instruction set is purpose-built for security work in AI coding agents. Install with a single command.
Use Cases
- Auditing code for OWASP Top 10 vulnerabilities
- Implementing authentication and authorization patterns
- Reviewing API security, rate limiting, and input validation
- Hardening infrastructure and dependency security
Example Prompts
System Prompt (20 words)
This skill scans Solana programs for 6 critical vulnerabilities, identifies issues in CPI, PDA validation, signer checks, and sysvar spoofing.
Frequently Asked Questions
What is Solana Vulnerability Scanner?
Solana Vulnerability Scanner is a free security skill for AI coding agents. This skill scans Solana programs for 6 critical vulnerabilities, identifies issues in CPI, PDA validation, signer checks, and sysvar spoofing.. It provides a specialized system prompt that configures your agent with security expertise.
How do I use Solana Vulnerability Scanner with Claude Code?
Run npx playbooks add skill trailofbits/skills --skill solana-vulnerability-scanner in your terminal to install Solana Vulnerability Scanner into your Claude Code session. It works immediately after installation.
Which AI coding agents work with Solana Vulnerability Scanner?
Solana Vulnerability Scanner is compatible with Claude Code, Cursor, GitHub Copilot, Windsurf, OpenClaw, Cline, and any AI agent that supports custom system prompts or .cursorrules files.
Is Solana Vulnerability Scanner free to use?
Yes, Solana Vulnerability Scanner is completely free and open source. The full source is available on GitHub at https://github.com/trailofbits/skills/tree/main/plugins/building-secure-contracts/skills/solana-vulnerability-scanner. You only need a subscription to the AI agent you use it with.
