Skip to content

[contracts] Add Slither and static-analysis plan for v0 contracts #24

Open
Open
[contracts] Add Slither and static-analysis plan for v0 contracts#24
Labels
agent/contractsProtocol contracts workagent/reviewHQ, review, docs, process, and audit workflow workenhancementNew feature or requestpriority/p1Important next prioritytype/securitySecurity process, review, threat, or audit-related work
Milestone
V0 Review/Audit
@FlowmemoryAI

Description

@FlowmemoryAI
FlowmemoryAI
opened on May 13, 2026

Objective

Add a lightweight static-analysis plan for the v0 contracts foundation, including whether Slither should run locally, in CI, or both.

Context

The current foundation has Foundry tests but no static-analysis gate. Slither or equivalent checks should be evaluated before calling the contracts foundation audit-ready.

Scope

  • Evaluate Slither setup and dependency impact.
  • Decide whether CI should run static analysis now or later.
  • Avoid production deployment config, RPC secrets, or network setup.

Acceptance Criteria

  • Recommended static-analysis workflow is documented.
  • If CI is added, it is lightweight and does not require secrets.

Metadata

Metadata

Assignees

No one assigned

    Labels

    agent/contractsProtocol contracts workagent/reviewHQ, review, docs, process, and audit workflow workenhancementNew feature or requestpriority/p1Important next prioritytype/securitySecurity process, review, threat, or audit-related work

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions