feat: add 40 DeFi/L2/behavioral attack vectors (170 → 210)#14
Open
sanbir wants to merge 1 commit intopashov:mainfrom
Open
feat: add 40 DeFi/L2/behavioral attack vectors (170 → 210)#14sanbir wants to merge 1 commit intopashov:mainfrom
sanbir wants to merge 1 commit intopashov:mainfrom
Conversation
New attack-vectors-5.md with 40 vectors covering gaps in three areas: - DeFi protocol economics (V171–V192): liquidation incentive insufficiency, cherry-picked collateral seizure, interest accrual during pause, liquidation bonus exceeding collateral, multi-decimal confusion, L2 sequencer grace period, dust loan griefing - Staking/reward manipulation (V180–V190): first-depositor reward stealing, flash deposit/withdraw griefing, reward dilution via direct transfer, stale reward index, precision loss zeroing small stakers - Modern EVM & library (V193–V210): EIP-1153 transient storage reentrancy in delegatecall, Uniswap V4 hook callback auth, OZ v4→v5 _beforeTokenTransfer→_update confusion, on-chain quoter slippage, inconsistent whenNotPaused coverage, storage bloat DoS Also: - 5th vector-scan agent to distribute 210 vectors evenly (~42 each) - Two confidence score deductions: token behavior (-10), external precondition (-10) — reduces noise from low-value findings Sources: auditmos/skills, quillai-network/qs_skills, carni-ships/SolidSecs, ethskills, sainikethan/nemesis-auditor, max-taylor/Claude-Solidity-Skills, alt-research/SolidityGuard, trailofbits/skills Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Pull Request
Type of Change
Summary
Adds 40 new attack vectors (V171–V210) in a new
attack-vectors-5.mdfile, expanding coverage from 170 to 210 vectors. Also adds a 5th vector-scan agent and two new confidence score deductions.The new vectors target three gaps in the current set:
_beforeTokenTransfersilently stops), on-chain quoter-based slippage manipulation, inconsistentwhenNotPausedcoverage.Changes
solidity-auditor/references/attack-vectors/attack-vectors-5.md— 40 vectors (V171–V210)attack-vectors-{1,2,3,4}.md: total count 170→210, file numbering X/4→X/5SKILL.md: 4→5 vector-scan agents (Agent 5 getsattack-vectors-5.md), Agent 5→Agent 6 for adversarial reasoningjudging.md: two new confidence deductions:Testing
Ran
/solidity-auditoragainst a lending protocol codebase (~1,800 LOC). Agent 5 correctly triaged vectors from the new file and surfaced findings related to liquidation incentive gaps (V171) and interest accrual during pause (V176). The two new confidence deductions correctly reduced scores for token-assumption and oracle-dependent findings.Checklist