CtrlK
BlogDocsLog inGet started
Tessl Logo

solidity-security

Master smart contract security best practices to prevent common vulnerabilities and implement secure Solidity patterns. Use when writing smart contracts, auditing existing contracts, or implementing security measures for blockchain applications.

66

Quality

Does it follow best practices?

Impact

No eval scenarios have been run

SecuritybySnyk

Advisory

Suggest reviewing before use

SKILL.md
Quality
Evals
Security

Quality

Content

72%

Reviews the quality of instructions and guidance provided to agents. Good implementation is clear, handles edge cases, and produces reliable results.

The content is actionable and well-structured with a clean one-level reference, but it lacks a sequenced audit workflow with validation checkpoints and carries some verbosity in its code examples.

Suggestions

Add a numbered audit workflow with explicit validation/verification checkpoints (e.g., run tests, review findings, re-verify fixes) to raise workflow_clarity.

Trim boilerplate from the code blocks (e.g., NatSpec headers, deployment setup) to tighten conciseness without losing the security patterns.

Make the link to references/details.md an explicit markdown link and note what each referenced section covers to aid navigation.

DimensionReasoningScore

Conciseness

The body is mostly efficient, but the full documented 'WellDocumentedContract' and lengthy Hardhat test block include padding (NatSpec headers, setup boilerplate) that could be tightened while preserving the security lessons.

2 / 3

Actionability

Provides fully executable, copy-paste-ready Hardhat test code and a complete Solidity contract example demonstrating the CEI pattern, matching the anchor for specific executable examples.

3 / 3

Workflow Clarity

A multi-step security/audit process is implied but never sequenced, and there are no validation checkpoints or feedback loops for risky operations like auditing or batch testing, capping this dimension at 2.

2 / 3

Progressive Disclosure

The body is a concise overview that clearly signals a single one-level-deep reference to 'references/details.md' (a real file), with well-organized sections for easy navigation.

3 / 3

Total

10

/

12

Passed

Description

85%

Based on the skill's description, can an agent find and select it at the right time? Clear, specific descriptions lead to better discovery.

The description is specific, complete, and clearly scoped to Solidity security, with an explicit 'Use when' trigger. It could be strengthened by adding natural trigger variations naming specific vulnerability types users would mention.

Suggestions

Add concrete trigger terms users would naturally say, such as 'reentrancy', 'integer overflow', or 'access control' to improve trigger_term_quality.

Consider mentioning 'Ethereum' or 'DeFi' explicitly to widen natural keyword coverage.

DimensionReasoningScore

Specificity

Lists multiple concrete actions including 'prevent common vulnerabilities', 'implement secure Solidity patterns', and 'auditing existing contracts', matching the anchor for listing several specific concrete actions.

3 / 3

Completeness

Explicitly answers both what it does ('prevent common vulnerabilities', 'implement secure Solidity patterns') and when to use it via a clear 'Use when writing smart contracts, auditing existing contracts...' clause.

3 / 3

Trigger Term Quality

Contains relevant natural terms like 'writing smart contracts' and 'auditing existing contracts', but lacks common variations such as named vulnerability types (reentrancy, overflow) or 'Ethereum', so coverage is incomplete relative to the top anchor.

2 / 3

Distinctiveness Conflict Risk

The Solidity/blockchain security niche is clearly delimited with distinct triggers that are unlikely to overlap with unrelated skills.

3 / 3

Total

11

/

12

Passed

Validation

100%

Checks the skill against the spec for correct structure and formatting. All validation checks must pass before discovery and implementation can be scored.

Validation16 / 16 Passed

Validation for skill structure

No warnings or errors.

Repository
wshobson/agents
Reviewed

Table of Contents

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.