anticode-audit
v1.0.1
Published
AI Smart Contract Auditor — analyze Solidity contracts for vulnerabilities, gas optimizations, and security risks
Maintainers
josemiguel3125-sketchsReadme
🔍 anticode-audit — AI Smart Contract Auditor
Audita contratos Solidity al instante. Detecta reentrancy, access control, unchecked calls, y más — con AI analysis de Gemini/Groq.
Quick Start
npx anticode-audit audit ./contracts/MyToken.solFeatures
- Static analysis: Reentrancy, tx.origin, unchecked calls, visibility, gas optimization
- AI-powered: Gemini + Groq analizan el contrato para vulnerabilidades no obvias
- Multiple formats: Markdown, JSON, HTML
- CI/CD ready: GitHub Action que corre en cada PR
- BYOK: Bring your own API keys — corre con tus propias credenciales
- Free tier: Static analysis sin API keys. AI analysis con Gemini free tier.
Usage
# CLI
npx anticode-audit audit ./contracts/MyToken.sol
npx anticode-audit audit ./contracts/ --recursive --format html --output audit.html
npx anticode-audit quick ./contracts/MyToken.sol
# GitHub Action
# .github/workflows/audit.yml
- uses: josemiguel3125-sketch/live-agent-os-infra/.github/actions/anticode-audit@main
with:
files: "contracts/**/*.sol"
fail-on: "high"Output Example
📊 Results:
Critical: 1 | High: 2 | Medium: 1 | Low: 2 | Info: 2
Score: 64/100
### 🟠 HIGH — Reentrancy en withdraw()
Llamada externa sin protección. Usa ReentrancyGuard de OpenZeppelin.Pricing
- Free: CLI + static analysis (sin límite)
- Free: GitHub Action (BYOK)
- Pro $12/mo: AI analysis + dashboard + team management (próximamente)
Parte del ecosistema Antigravity Connect IA