Skip to content

Auditware/auditwizard

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
skills
skills
 
 
src
src
 
 
static
static
 
 
.gitignore
.gitignore
 
 
.strain.json
.strain.json
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
bun.lock
bun.lock
 
 
package.json
package.json
 
 
tsconfig.json
tsconfig.json
 
 

Repository files navigation

AuditWizard AI Auditing Agent

audit-wizard

TypeScript Bun License

What is AuditWizard | Install | Run

What is AuditWizard

Audit Wizard (2.0) is an open-source initiative to solve the gaps of the auditor/agent interface layer during security audits of Ethereum protocols.

Ethereum security auditors are at a crucial transition point:

Attacker capabilities grow exponentially with AI Protocols’ understanding of their own code decreases exponentially Contests and bug bounties are becoming less efficient (AI submissions make triage harder) Responsible protocols still pay for 1–2 audits pre-launch, but auditor reliance on AI (for code interaction, summarization, learning protocols, etc.) is increasing - risking less knowledgeable future auditors

Our goal is to use deep expertise in Ethereum security tooling and AI to shape the human-to-agent interface and standardize this shift - ensuring the ratio of auditors to attackers becomes favorable.

Note

We are working in public and releasing this at a very early stage. please check back for our progress, see high level items below

  • secure skills loading to run guardrails and safety check on AI skills
  • github-based skill loading system
  • baked-in recommended AI auditing skills
  • agent messaging system for cross-execution
  • claude models support (bring your own API key)
  • hot-reloaded TUI environment to code audit-wizard as you go
  • context management, compaction, costs tracking
  • easy context window reset
  • layered compaction strategies
  • cron job for recurring tasks
  • audit contests tracking and management
  • tmux spin-audit agent on background
  • baked-in poc reproduction
  • easy standalone binary distribution
  • VPS infrastructure for collaborative work

How to install

From source

git clone https://github.com/auditware/audit-wizard.git
cd audit-wizard
bun install

How to run

Simple

bun run src/cli.tsx

Start or resume a named session

bun run src/cli.tsx --session main

Resume the last session

bun run src/cli.tsx --resume

Build a standalone binary

bun run build
./dist/audit-wizard

Built-in Skills

AuditWizard ships with a curated set of security-focused skills. Load any of them with the /skills command or the a keybinding.

Skill Description Author
smart-contract-audit Comprehensive multi-expert audit framework for Solidity/Vyper, Anchor Rust, TON, and Move @forefy
solidity-auditor Live security review of Solidity contracts as you develop @pashov
x-ray Pre-audit readiness report: threat model, invariants, integrations, test coverage, git history @pashov
audit-prep Structured protocol onboarding and audit preparation checklist @PlamenTSV
audit-extractor Extract findings from PDF audit reports into a markdown checklist @Layr-Labs
auditor-quiz Interactive knowledge quiz to test auditor understanding of a codebase @forefy
blockchain-forensics On-chain forensics and transaction tracing for incident response @forefy
dimensional-analysis Annotate arithmetic with units/dimensions to catch formula and scaling bugs @trailofbits

Requirements

  • Bun >= 1.3
  • An Anthropic API key (set via /api-key or ANTHROPIC_API_KEY env var)

About

The Open Source Web3 AI Auditing Agentic Harness

auditware.io

Resources

Readme

License

View license
Activity
Custom properties

Stars

5 stars

Watchers

0 watching

Forks

0 forks
Report repository

Contributors

Languages