onyx_contract_audit
ActiveTool of onyx-paid-mcp
Full smart-contract security audit for any Base address — source + DEPLOYED reality + AI, SIGNED. Fetches verified source, runs curated static vuln detectors (tx.origin auth, delegatecall, selfdestruct, unchecked calls, unprotected init, owner mint/pause/blacklist, mutable fees), AND flags the live on-chain risks a static audit misses — upgradeable proxies (owner can swap logic post-audit) and self-destructed contracts. Optional Claude deep-pass for novel bugs. Returns ALLOW/REVIEW/BLOCK + 0-100 risk score, every finding Ed25519-signed. Cheaper than a manual audit, and unlike one it audits the contract as actually deployed. (price: $0.50 USDC, tier: metered)
Parameters schema
{
"type": "object",
"required": [
"address"
],
"properties": {
"deep": {
"type": "boolean",
"default": true,
"description": "Run the optional AI deep-pass for novel/business-logic bugs (only fires if the server has an AI key configured; degrades gracefully otherwise)."
},
"address": {
"type": "string",
"description": "Contract address on Base mainnet (0x... 20-byte hex)."
}
}
}Parent server
onyx-paid-mcp
https://github.com/dimitrilaouanis-tech/onyx-mcp
2/7 registries