A comprehensive tool for analyzing and identifying security vulnerabilities in blockchain smart contracts.
Fluffy Bassoon aims to provide critical insights into the security posture of blockchain smart contracts, enabling proactive risk mitigation and enhancing the overall security landscape of blockchain applications.
- Static Code Analysis: Detect vulnerabilities in smart contract code.
- Dynamic Testing: Execute smart contracts in a controlled environment to identify runtime vulnerabilities.
- Vulnerability Reporting: Generate detailed reports on identified vulnerabilities.
- Mitigation Recommendations: Provide actionable recommendations for fixing vulnerabilities.
- Python: Core language for the application.
- Vyper: Smart contract programming language.
- Truffle: Development framework for Ethereum.
- Solidity: Smart contract programming language (if applicable).
- Python 3.8+
- Vyper
- Docker
- Clone the repository:
git clone https://github.com/canstralian/fluffy-bassoon.git cd fluffy-bassoon - Set up a virtual environment and activate it:
python -m venv venv source venv/bin/activate # On Windows use `venv\Scripts\activate`
- Install the required dependencies:
pip install -r requirements.txt
Create a .env file in the root directory and add the necessary environment variables:
DATABASE_URL=<your_database_url>
API_KEY=<your_api_key>To start the application, run:
python main.pyTo run the tests, use:
pytest --cov=.We welcome contributions! Please read our Contributing Guidelines for more details.
- Follow us on Twitter.
This project is licensed under the MIT License - see the LICENSE file for details.
- Integration with additional blockchain networks.
- Advanced reporting features.
- Real-time monitoring and alerts.
This tool is provided as-is, without warranty of any kind. Use at your own risk.