smartAudit project

[ferasalsaab]

Project Abstract

The smartAudit project aims to develop a comprehensive smart contract auditing platform for the Polkadot ecosystem. The platform will utilize both static and dynamic analysis techniques to identify vulnerabilities and security risks in smart contracts deployed on the Polkadot network. It will offer user-friendly interfaces, detailed vulnerability reports, and recommendations for contract improvements, empowering developers to build secure and reliable decentralized applications.

Grant Level: Level 2 (Up to $30,000, 3 approvals)

Application Checklist

• The application template has been copied and aptly renamed (smartAudit.md).
• I have read the application guidelines.
• Payment details have been provided (BTC address: 0x1234567890abcdefg).
• The software delivered for this grant will be released under the Apache 2.0 license specified in the application.
• The initial PR contains only one commit (squash and force-push if needed).
• The grant will only be announced once the first milestone has been accepted (see the announcement guidelines).
• I prefer the discussion of this application to take place in a private Element/Matrix channel. My username is: @ferasalsaab:matrix.org (using the Element homeserver).

[CLAassistant]

All committers have signed the CLA.

[Noc2]

Thanks for the application. However, we usually don't support a grant's initial "Project Planning and Architecture" phase and expect teams already to have a concrete technical plan. For example, could you add the programming language, the details of the static analysis, the smart contract language you want to support, etc., to the milestone deliverables? Additionally we usually don't support the deployment of the software but rather focus on the open source software development. Also, deliverables like "Bug Fixes and Optimization" could theoretically mean anything (e.g., add one line of code) and therefore need to be further specified. Let me know if you have any questions.

[github-actions]

Thank you for submitting a grant application.

We've assessed your submission and have found that it requires a higher level of technical detail in order to be considered for review. We encourage you to expand on it by providing a more precise specification/technical details. The section on project details in the application template is a good reference as to what type of information we expect applicants to provide, and these category-specific requirements contain more precise guidelines depending on what type of software you're building.

An area of the application that we often find to be insufficiently elaborated are the milestone deliverables. At a minimum, please indicate what languages/technologies you will be using to implement each deliverable, and provide a technical summary of its expected functionality. Note that deliverables should be tangible, reusable by other teams and in most cases not already present in the ecosystem. If they are, you will need to provide a comparison to existing implementations and explain why it makes sense to fund your approach. Also see our FAQ for a breakdown of what we fund and what we don't.

Let us know as soon as you're done with your changes, and we'll give your application another look!

[github-actions]

The applicant has requested the discussion of the application to happen in a private chat room.

[takahser]

@ferasalsaab on top of the points @Noc2 already has made, we'd usually ask for wireframes for any ui-based deliverables.

[semuelle]

I'm closing this application due to inactivity. Please let me know if you want to continue working on it, @ferasalsaab.