Stellar Community Fund

By Scout

Scout - Soroban Smart Contract

SCF #20

$50.0K

Legacy v5.0 Activation Award

Awarded

Scout is a static analyzer that assists smart contract developers in detecting security issues and deviations from best practices.

Products & Services

Scout is an extensible open-source tool intended to assist Soroban smart contract developers and auditors in detecting common security issues and deviations from best practices. Smart Contract security has an indisputable importance. Bugs should not be included after development is finished, and should therefore be detected during development. Moreover, developers may be inexperienced in Stellar development and security, and in need of a good companion to help them learn security while they code. Scout will help developers and auditors identify and correct bugs and vulnerabilities in smart contracts during development, improving the security of smart contracts before deployment. This tool will aid developers in writing secure and more robust smart contracts, benefiting the overall Stellar community by sharing best practices and raising the security standard. Scout will be developed using Dylint, a tool for running Rust lints. For a set of relevant vulnerabilities, we will generate smart contracts that include them and develop a lint that detects them. We will further experiment with other smart contracts to remove false positive alarms. We will also build integration with VS Code, including output for PDF, JSON, and other formats, as well as documentation for users and contributors.

Requested Budget

$50.0K

Team

CoinFabrik is a pioneering research, development, and security auditing company with a distinct focus on Web3 technologies. Established in 2014, our extensive portfolio comprises over 500 projects related to Web3, spanning the globe. Ranging from dynamic startups to industry giants, our expertise extends across a spectrum of cutting-edge technologies -Stellar being one of them.

Scout for Soroban has been developed thanks to the support of the SCF and its grants program, and we're proud to say that since its launch it has had great acceptance in the Soroban community.