solana-security

Audit Solana programs for security vulnerabilities using a 5-step framework.

• Systematic security review of Solana programs
• Identifies exploits, attack vectors, and bugs
• Applies to Anchor or native Rust programs
• Critical anti-patterns and secure practices

• 5-step review process with clear severity levels
• Critical, high, medium, low, and informational findings
• Mandatory use of checked arithmetic
• Strict account validation and ownership checks
• PDA security and CPI validation requirements
• Fuzz testing and event emission best practices

1. 1.Perform initial assessment of framework, structure, and complexity
2. 2.Systematically review each instruction for account, arithmetic, PDA, and CPI safety
3. 3.Detect common vulnerability patterns and architectural risks
4. 4.Generate a structured security report with severity levels and recommendations
5. 5.Apply guardrails: use checked arithmetic, validate owners, reload accounts