whatisgithub

What is ai-contractauditor?

0xmayurrr/ai-contractauditor — explained in plain English

Analysis updated 2026-05-18

1TypeScriptAudience · developerComplexity · 2/5LicenseSetup · easy

In one sentence

A web app that scans Solidity smart contracts for security bugs and auto-generates fixed code.

Mindmap

mindmap
  root((SMART_AUDIT))
    What it does
      Scans Solidity code
      Security score
      Auto fix generation
    Tech stack
      TypeScript
      Next.js
    Use cases
      Pre review audit
      API integration
      Compare fixed code
    Audience
      Solidity developers
      Smart contract teams

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Paste Solidity contract code and get a security score with a letter grade in seconds.

USE CASE 2

Get auto-generated fixed code for detected vulnerabilities like reentrancy or integer overflow.

USE CASE 3

Call the audit API programmatically from another tool or AI agent, no API key needed.

What is it built with?

TypeScriptNext.js

How does it compare?

0xmayurrr/ai-contractauditor0xkinno/neuralvault4ssh1/portora-v2
Stars111
LanguageTypeScriptTypeScriptTypeScript
Setup difficultyeasyhardmoderate
Complexity2/54/53/5
Audiencedeveloperdeveloperpm founder

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · easy Time to first run · 5min

No API keys needed, runs fully locally after npm install.

Use freely for any purpose, including commercial use, as long as you keep the copyright notice.

So what is it?

SMART_AUDIT, also called AI-ContractAuditor, is a web app that checks Solidity smart contract code for common security problems and suggests fixes. You paste your contract code into the editor, run an audit, and within about two seconds it reports which vulnerabilities it found, gives the contract a security score from zero to one hundred with a letter grade, and can generate a corrected version of the code with comments explaining the changes. It looks for six specific kinds of problems: reentrancy attacks, unsafe use of tx.origin for authorization, missing access control, integer overflow, unsafe external calls, and unchecked low level calls. After an audit, you can compare the original and fixed code side by side, download the full report as a PDF, or generate a shareable link that encodes the report so others can view it without needing your account. The app also has a documented API, reachable at a single POST endpoint, that returns the same audit results as structured JSON. This is meant to let other tools or AI agents send contract code and get findings back programmatically, without needing an API key or external service. Past audits are saved to the browser's local storage so you can look back at your history and see stats over time. The project was built as an assignment submission for a forward deployed engineer role and is built with Next.js and TypeScript. It works out of the box: after cloning the repository and running the install and start commands, you can open it locally without setting up any API keys. It is aimed at Solidity developers and smart contract teams who want a quick first pass security check before deeper manual review.

Copy-paste prompts

Prompt 1
Help me clone and run AI-ContractAuditor locally to audit a Solidity contract.
Prompt 2
Explain the six vulnerability types AI-ContractAuditor checks for in Solidity code.
Prompt 3
Show me how to call the /api/audit endpoint with a sample contract and read the JSON response.
Prompt 4
Walk me through comparing the original and auto-fixed code in AI-ContractAuditor's diff view.

Frequently asked questions

What is ai-contractauditor?

A web app that scans Solidity smart contracts for security bugs and auto-generates fixed code.

What language is ai-contractauditor written in?

Mainly TypeScript. The stack also includes TypeScript, Next.js.

What license does ai-contractauditor use?

Use freely for any purpose, including commercial use, as long as you keep the copyright notice.

How hard is ai-contractauditor to set up?

Setup difficulty is rated easy, with roughly 5min to a first successful run.

Who is ai-contractauditor for?

Mainly developer.

Open on GitHub → Ask about another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.