-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathaction.yml
More file actions
69 lines (63 loc) · 2.16 KB
/
Copy pathaction.yml
File metadata and controls
69 lines (63 loc) · 2.16 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
name: 'Automated Smart Contract Auditor Pro'
description: 'AI-powered Solidity & Rust security scanner. Detects reentrancy, flash loans, MEV, gas waste. Inline PR comments. Slither + Foundry + Solana. Free tier available.'
author: 'Maxwell VOSS'
branding:
icon: 'zap'
color: 'purple'
inputs:
contract_address:
description: 'The smart contract address or file to scan (optional, if omitted it scans the whole repo)'
required: false
default: ''
wallet_address:
description: 'Your Web3 wallet address to unlock AI Validation Pro features via crypto payment'
required: false
default: ''
rpc_url:
description: 'RPC URL for Base or Polygon to verify the subscription on-chain'
required: false
default: 'https://mainnet.base.org'
github_token:
description: 'GitHub token for inline PR comments'
required: false
default: ${{ github.token }}
enterprise_key:
description: 'Enterprise license key for fiat/Stripe subscriptions (B2B SaaS)'
required: false
default: ''
fuzz_runs:
description: 'Number of fuzz runs for Foundry'
required: false
default: '256'
runs:
using: "composite"
steps:
- name: Set up Python
uses: actions/setup-python@v5
with:
python-version: '3.11'
cache: 'pip'
- name: Install Slither & Solc
shell: bash
run: |
pip install --upgrade pip
pip install slither-analyzer solc-select requests web3 eth-account
solc-select install 0.8.24
solc-select use 0.8.24
- name: Install Foundry
uses: foundry-rs/foundry-toolchain@v1
- name: Run Solidity Security Scanner PRO
shell: bash
env:
GITHUB_TOKEN: ${{ inputs.github_token }}
WORKSPACE: ${{ github.workspace }}
FUZZ_RUNS: ${{ inputs.fuzz_runs }}
WALLET_ADDRESS: ${{ inputs.wallet_address }}
ENTERPRISE_KEY: ${{ inputs.enterprise_key }}
run: |
python ${{ github.action_path }}/security_scanner.py \
"${{ inputs.contract_address }}" \
"${{ inputs.wallet_address }}" \
"${{ inputs.rpc_url }}" \
"${{ inputs.github_token }}" \
"${{ inputs.enterprise_key }}"