analyze-unverified-contract

Analyzes unverified smart contracts to generate structured markdown reports detailing their functions and interfaces.

Install this skill

44/100

Security score

The analyze-unverified-contract skill was audited on May 28, 2026 and we found 4 security issues across 3 threat categories, including 1 critical. Review the findings below before installing.

Categories Tested

Security Issues

high line 41

Template literal with variable interpolation in command context

SourceSKILL.md

41	- Set `$SHORT` once (the first 8 hex chars of `ADDRESS` in lowercase — used by every output filename in steps 4–7): `SHORT="$(printf '%s' "${ADDRESS#0x}" \| tr '[:upper:]' '[:lower:]' \| cut -c1-8)"

critical line 62

Piping content to bash shell

SourceSKILL.md

62	Docs: <https://github.com/Jon-Becker/heimdall-rs/wiki/modules>. Install: `command -v heimdall \|\| curl -L https://get.heimdall.rs \| bash`. Don't proceed without it.

high line 62

Curl to non-GitHub URL

SourceSKILL.md

62	Docs: <https://github.com/Jon-Becker/heimdall-rs/wiki/modules>. Install: `command -v heimdall \|\| curl -L https://get.heimdall.rs \| bash`. Don't proceed without it.

low line 62

External URL reference

SourceSKILL.md

62	Docs: <https://github.com/Jon-Becker/heimdall-rs/wiki/modules>. Install: `command -v heimdall \|\| curl -L https://get.heimdall.rs \| bash`. Don't proceed without it.

Scanned on May 28, 2026

View Security Dashboard

Installation guide →

GitHub Stars 204

Rate this skill

Categorydevelopment

UpdatedJune 15, 2026

openclaw api backend backend-developer data-engineer ml-ai-engineer development

lifinance/contracts