Skip to main content

Smart contract security checklist

smart contractssecuritysolidity
Intermediate
Trailofbits
Building secure contracts(opens in a new tab)
September 7, 2020
2 minute read minute read

Smart contract development checklist

Here's a high-level process we recommend following while you write your smart contracts.

Check for known security issues:

Consider special features of your contract:

Visually inspect critical security features of your code:

Document critical security properties and use automated test generators to evaluate them:

Finally, be mindful of issues that automated tools cannot easily find:

  • Lack of privacy: everyone else can see your transactions while they're queued in the pool
  • Front running transactions
  • Cryptographic operations
  • Risky interactions with external DeFi components

Ask for help

Ethereum office hours(opens in a new tab) run every Tuesday afternoon. These 1-hour, 1-on-1 sessions are an opportunity to ask us any questions you have about security, troubleshoot using our tools, and get feedback from experts about your current approach. We will help you work through this guide.

Join our Slack: Empire Hacking(opens in a new tab). We're always available in the #crytic and #ethereum channels if you have any questions.

Last edit: @sumitvekariya(opens in a new tab), August 29, 2024

Was this tutorial helpful?