Solidity Security Checklist - 8 Critical Vulnerabilities

Common Solidity Vulnerabilities Checklist

Check these 8 vulnerabilities before deploying any smart contract. Free reference.

1. Reentrancy

• Checks-Effects-Interactions pattern
• ReentrancyGuard from OpenZeppelin
• Avoid external calls before state changes

2. Overflow/Underflow

• Use Solidity 0.8+ (built-in checks)
• SafeMath for older versions

3. Access Control

• Ownable or AccessControl (OpenZeppelin)
• Never use tx.origin for auth

4. Flash Loan Attacks

• Use TWAP oracles
• Circuit breakers for price changes

5. Front-Running (MEV)

• Commit-reveal schemes
• Flashbots integration

6. Oracle Manipulation

• Chainlink oracles only
• Validate stale data

7. Denial of Service

• No unbounded loops
• Pull-over-push payments

8. Unsafe Delegatecall

• Never delegatecall to untrusted addresses
• EIP-1967 proxy storage

Production-Ready Smart Contract Templates

15+ audited Solidity templates: ERC-20, NFT, DeFi staking, DAO, vesting. Deploy scripts + tests + React frontend. Pay what you want ($1+).