Add Oracle Aggregator and CCIP Integration
- Introduced Aggregator.sol for Chainlink-compatible oracle functionality, including round-based updates and access control. - Added OracleWithCCIP.sol to extend Aggregator with CCIP cross-chain messaging capabilities. - Created .gitmodules to include OpenZeppelin contracts as a submodule. - Developed a comprehensive deployment guide in NEXT_STEPS_COMPLETE_GUIDE.md for Phase 2 and smart contract deployment. - Implemented Vite configuration for the orchestration portal, supporting both Vue and React frameworks. - Added server-side logic for the Multi-Cloud Orchestration Portal, including API endpoints for environment management and monitoring. - Created scripts for resource import and usage validation across non-US regions. - Added tests for CCIP error handling and integration to ensure robust functionality. - Included various new files and directories for the orchestration portal and deployment scripts.
This commit is contained in:
defiQUG
60
scripts/security/slither-scan.sh
Executable file
60
scripts/security/slither-scan.sh
Executable file
@@ -0,0 +1,60 @@
|
||||
#!/usr/bin/env bash
|
||||
|
||||
set -e
|
||||
|
||||
# Slither static analysis for Solidity contracts
|
||||
# This script runs Slither on all Solidity contracts in the project
|
||||
|
||||
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
|
||||
source "$SCRIPT_DIR/../lib/init.sh"
|
||||
PROJECT_ROOT="$(cd "$SCRIPT_DIR/../.." && pwd)"
|
||||
CONTRACTS_DIR="$PROJECT_ROOT/contracts"
|
||||
OUTPUT_DIR="$PROJECT_ROOT/reports/slither"
|
||||
|
||||
|
||||
log_success "Running Slither static analysis..."
|
||||
|
||||
# Check if Slither is installed
|
||||
if ! command -v slither &> /dev/null; then
|
||||
log_warn "Slither not found. Installing..."
|
||||
pip install slither-analyzer
|
||||
fi
|
||||
|
||||
# Create output directory
|
||||
mkdir -p "$OUTPUT_DIR"
|
||||
|
||||
# Run Slither on contracts
|
||||
log_warn "Analyzing contracts in $CONTRACTS_DIR..."
|
||||
|
||||
cd "$PROJECT_ROOT"
|
||||
|
||||
# Run Slither with JSON output
|
||||
slither . \
|
||||
--json "$OUTPUT_DIR/slither-report.json" \
|
||||
--exclude-dependencies \
|
||||
--filter-paths "node_modules,lib" \
|
||||
|| true
|
||||
|
||||
# Run Slither with human-readable output
|
||||
slither . \
|
||||
--exclude-dependencies \
|
||||
--filter-paths "node_modules,lib" \
|
||||
> "$OUTPUT_DIR/slither-report.txt" \
|
||||
|| true
|
||||
|
||||
# Check for high-severity issues
|
||||
if [ -f "$OUTPUT_DIR/slither-report.json" ]; then
|
||||
HIGH_SEVERITY=$(jq '[.results.detectors[] | select(.impact == "High")] | length' "$OUTPUT_DIR/slither-report.json" 2>/dev/null || echo "0")
|
||||
|
||||
if [ "$HIGH_SEVERITY" -gt 0 ]; then
|
||||
log_error "⚠️ Found $HIGH_SEVERITY high-severity issues"
|
||||
echo "Review report: $OUTPUT_DIR/slither-report.json"
|
||||
exit 1
|
||||
else
|
||||
log_success "✓ No high-severity issues found"
|
||||
fi
|
||||
fi
|
||||
|
||||
log_success "Slither analysis complete"
|
||||
echo "Reports saved to: $OUTPUT_DIR"
|
||||
|
||||
Reference in New Issue
Block a user