contracts icon indicating copy to clipboard operation
contracts copied to clipboard

Published 20 hours ago verified publisher icon c-layer

Writing security test audits for contracts using the scribble framework from consensys.

Open GrandGarcon opened this issue 4 years ago • 2 comments

Hi @sirhill , greetings for the new version of C-Layer , i have been experimenting with

This new framework allows the way to convert the sol files into flattened code , writing the strict assertions , for instance checking the code for an particular RBACWith multisig.sol

    public PublicMultiSig(_threshold, _duration, _participants, _weights)
  {
    /// if_succeeds {:msg : "checking-with-participant-roles" }  returns "_approvers == onlyApprovers ;
    updateManyParticipantsRoles(
      _participants,
      _suggesters,
      _approvers,
      _executers
    );
  }

PS: i might be wrong with the previous example , but just wanted to give an indication of the capablities .

so i wanted to ask will you be eager to talk about the possiblity of doing strict assertion checks .

Cheers

GrandGarcon avatar Jan 17 '21 12:01 GrandGarcon

Hi @GrandGarcon,

It's definitely a bright idea! If you want to move forward, I suggest that maybe you experiment on one contract. RBACWithMultisig.sol or other multisig are a very good example, they are relatively simple and as well very critical.

Can you create a dedicated branch for experimenting with scribble ?

sirhill avatar Jan 17 '21 12:01 sirhill

Thanks for the response , ok sure thing . and credits to @bertux for the suggestion .

GrandGarcon avatar Jan 17 '21 12:01 GrandGarcon