// Auto-loaded by access-control-auditor agent during Phase 2. Provides detection patterns for: UUPS/Transparent/Beacon proxy vulnerabilities, storage collision, initialization issues, function selector clashing, upgrade authorization. Core artifact: Proxy Architecture Map.
Auto-loaded by cross-chain-auditor agent during Phase 2. Provides detection patterns for: missing source chain/address validation, replay attacks, message ordering, chain-specific code, finality assumptions. Core artifact: Cross-Chain Message Flow diagram.
Auto-loaded by oracle-auditor agent during Phase 2. Provides detection patterns for: stale prices, deprecated Chainlink functions, L2 sequencer downtime, decimal mismatches, spot price manipulation, oracle DoS. Core artifact: Oracle Integration Matrix.
Auto-loaded by reentrancy-auditor agent during Phase 2. Provides detection patterns for: CEI violations, cross-function/cross-contract reentrancy, read-only reentrancy, token callback exploits (ERC721/777/1155). Core artifact: State Timeline map.
Auto-loaded by access-control-auditor agent during Phase 2. Provides detection patterns for: missing modifiers, privilege escalation, tx.origin phishing, OR/AND logic errors, missing two-step transfer. Core artifact: Permission Matrix.
Auto-loaded by token-auditor agent during Phase 2. Provides detection patterns for: fee-on-transfer, rebasing tokens, ERC777 hooks, ERC721/1155 callbacks, missing return values, blacklist/pausable, low decimals. Core artifact: Token Compatibility Matrix.
Auto-loaded by defi-auditor agent during Phase 2 when analyzing lending protocols. Provides patterns for: liquidation logic, interest rate models, collateral management, health factor calculations, bad debt handling. Core vulnerabilities: self-liquidation, precision loss, oracle manipulation, collateral factor attacks.
| name | upgradeability |
| description | Auto-loaded by access-control-auditor agent during Phase 2. Provides detection patterns for: UUPS/Transparent/Beacon proxy vulnerabilities, storage collision, initialization issues, function selector clashing, upgrade authorization. Core artifact: Proxy Architecture Map. |
| user-invocable | false |
2025-2026 Statistics: Proxy-related vulnerabilities caused $340M+ in losses, with initialization bugs and storage collision being the leading causes.
Proxies can't use constructors; initializers can be called multiple times.
// VULNERABLE: No initialization protection
contract ImplementationV1 {
address public owner;
function initialize(address _owner) external {
owner = _owner; // @audit Can be called by anyone, multiple times!
}
}
Attacker's view: "They forgot the initializer guard. I'll take ownership."
Upgrades must maintain exact storage slot ordering.
// V1 Storage
contract V1 {
address public owner; // slot 0
uint256 public balance; // slot 1
}
// V2 Storage - WRONG!
contract V2 {
uint256 public newVar; // slot 0 - COLLISION with owner!
address public owner; // slot 1
uint256 public balance; // slot 2
}
Implementation code runs with proxy's storage and context.
// VULNERABLE: selfdestruct in implementation
contract Implementation {
function destroy() external onlyOwner {
selfdestruct(payable(owner)); // @audit Destroys PROXY, not implementation!
}
}
Anyone can upgrade to malicious implementation.
// VULNERABLE: Missing access control on upgrade
contract UUPSVulnerable is UUPSUpgradeable {
function _authorizeUpgrade(address) internal override {
// @audit No onlyOwner check!
}
}
User → Proxy (storage + delegatecall) → Implementation (logic)
↓
Admin → ProxyAdmin (upgrade logic)
Key Features:
User → Proxy (storage + delegatecall) → Implementation (logic + upgrade)
Key Features:
User → Proxy → Beacon → Implementation
↑
Multiple proxies share beacon
Key Features:
For each proxy system, document:
| Component | Address | Type | Storage | Risk |
|---|---|---|---|---|
| Proxy | 0x1234... | TransparentProxy | User data | Storage collision |
| Implementation | 0x5678... | Logic V1 | None | selfdestruct |
| ProxyAdmin | 0x9abc... | Admin | None | Access control |
| Beacon | N/A | N/A | N/A | N/A |
Root Cause: Initialization vs Constructor
// VULNERABLE: Can be re-initialized
contract VaultV1 {
address public owner;
bool private _initialized; // @audit Wrong pattern
function initialize(address _owner) external {
require(!_initialized); // @audit Can be front-run!
owner = _owner;
_initialized = true;
}
}
Attack Flow:
Search Queries:
Grep("function initialize|initializer", glob="**/*.sol")
Grep("Initializable|_initialized|initializing", glob="**/*.sol")
Secure Pattern:
import "@openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol";
contract VaultV1 is Initializable {
address public owner;
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
_disableInitializers(); // Prevent implementation initialization
}
function initialize(address _owner) external initializer {
owner = _owner;
}
}
Root Cause: Storage Layout Mismatch
// V1
contract VaultV1 {
address public owner; // slot 0
uint256 public balance; // slot 1
}
// V2 - VULNERABLE
contract VaultV2 {
address public newAdmin; // slot 0 - OVERWRITES owner!
address public owner; // slot 1 - READS balance as address!
uint256 public balance; // slot 2
}
Attack Flow:
Search Queries:
Grep("pragma solidity|contract.*is.*Upgradeable", glob="**/*.sol")
Detection:
forge inspect Contract storage-layoutSecure Pattern:
// V2 - CORRECT: Append only
contract VaultV2 {
address public owner; // slot 0 - SAME
uint256 public balance; // slot 1 - SAME
address public newAdmin; // slot 2 - NEW at end
}
Root Cause: Unprotected Upgrade Function
// VULNERABLE: No access control
contract MyUUPS is UUPSUpgradeable {
function _authorizeUpgrade(address newImplementation) internal override {
// @audit Empty = anyone can upgrade!
}
}
// VULNERABLE: Wrong check
contract MyUUPS is UUPSUpgradeable {
function _authorizeUpgrade(address newImplementation) internal override {
require(msg.sender == owner); // @audit What if owner is uninitialized?
}
}
Attack Flow:
Search Queries:
Grep("_authorizeUpgrade|UUPSUpgradeable", glob="**/*.sol")
Grep("upgradeTo|upgradeToAndCall", glob="**/*.sol")
Secure Pattern:
function _authorizeUpgrade(address newImplementation) internal override onlyOwner {
// Additional checks possible
require(newImplementation != address(0), "Zero address");
}
Root Cause: Upgrade Logic Removed
// V1 - Has upgrade
contract VaultV1 is UUPSUpgradeable {
function _authorizeUpgrade(address) internal override onlyOwner {}
}
// V2 - VULNERABLE: No longer upgradeable!
contract VaultV2 {
// Forgot to inherit UUPSUpgradeable!
// Contract is now BRICKED - can never upgrade again
}
Search Queries:
Grep("is UUPSUpgradeable|is.*Upgradeable", glob="**/*.sol")
Root Cause: delegatecall Context
// VULNERABLE: selfdestruct destroys proxy's storage
contract Implementation {
function emergencyDestroy() external onlyOwner {
selfdestruct(payable(msg.sender));
// @audit This destroys the PROXY, not the implementation!
}
}
Attack Flow:
Note: selfdestruct is deprecated in Solidity 0.8.20+ but may still exist in older code.
Search Queries:
Grep("selfdestruct|SELFDESTRUCT", glob="**/*.sol")
Grep("delegatecall.*selfdestruct", glob="**/*.sol")
Root Cause: Proxy and Implementation Share Function Namespace
// Proxy has admin() at selector 0xf851a440
// If implementation has function with same selector, collision occurs
// DANGEROUS: Implementation function clashes with proxy admin function
contract Implementation {
// This selector might clash with proxy's admin()
function admin_() external returns (address) { // @audit Check selector!
return address(this);
}
}
Detection:
# Check function selectors
cast sig "admin()"
cast sig "functionName()"
Search Queries:
Grep("function admin|function upgrade|function implementation", glob="**/*.sol")
Root Cause: ProxyAdmin Access Control
// VULNERABLE: ProxyAdmin owner can be changed
contract MyProxyAdmin is ProxyAdmin {
// If ownership transferred to attacker...
// Attacker can upgrade to malicious implementation
}
Search Queries:
Grep("ProxyAdmin|TransparentUpgradeableProxy", glob="**/*.sol")
Grep("changeProxyAdmin|transferOwnership", glob="**/*.sol")
Root Cause: Unnamespaced Storage in Upgradeable Contracts
ERC-7201 introduces namespaced storage to prevent collisions when inheriting from multiple upgradeable contracts. Without it, storage slots can collide across inheritance chains.
// VULNERABLE: Sequential storage without namespacing
contract VaultV1 {
address public owner; // slot 0
uint256 public balance; // slot 1
}
// When inherited by child contract, slots collide
contract ChildVault is VaultV1 {
address public admin; // slot 0 - COLLISION with owner!
uint256 public fee; // slot 1 - COLLISION with balance!
}
Attack Flow:
Secure Pattern (ERC-7201):
// @custom:storage-location erc7201:myprotocol.vault
contract VaultV1 is Initializable {
struct VaultStorage {
address owner;
uint256 balance;
}
bytes32 private constant VAULT_STORAGE_LOCATION =
keccak256(abi.encode(uint256(keccak256("myprotocol.vault")) - 1)) & ~bytes32(uint256(0xff));
function _getVaultStorage() private pure returns (VaultStorage storage $) {
assembly {
$.slot := VAULT_STORAGE_LOCATION
}
}
function initialize(address _owner) external initializer {
VaultStorage storage $ = _getVaultStorage();
$.owner = _owner;
}
}
Search Queries:
Grep("@custom:storage-location|erc7201|erc-7201", glob="**/*.sol")
Grep("keccak256.*abi.encode.*keccak256", glob="**/*.sol")
Grep("bytes32.*STORAGE_LOCATION", glob="**/*.sol")
Detection:
@custom:storage-location NatSpec annotations_disableInitializers()initialize() has initializer modifier@custom:storage-location annotations present_authorizeUpgrade has proper access controlupgradeTo is properly protectedselfdestruct in implementationdelegatecall to untrusted contracts// Reserve storage slots for future variables in base contracts
abstract contract BaseContractV1 is Initializable {
address public owner;
uint256[49] private __gap; // Reserve 49 slots
}
// When adding new variables, reduce gap
abstract contract BaseContractV2 is Initializable {
address public owner;
address public newAdmin; // Uses one gap slot
uint256[48] private __gap; // Now 48 slots
}
# Find proxy patterns
Grep("delegatecall|Proxy|proxy", glob="**/*.sol")
Grep("ERC1967|TransparentUpgradeable|UUPSUpgradeable", glob="**/*.sol")
# Find initialization
Grep("initialize|initializer|Initializable", glob="**/*.sol")
Grep("_disableInitializers|reinitializer", glob="**/*.sol")
# Find dangerous operations
Grep("selfdestruct|SELFDESTRUCT", glob="**/*.sol")
Grep("delegatecall\\(|staticcall\\(", glob="**/*.sol")
# Find upgrade functions
Grep("upgradeTo|upgradeToAndCall|_authorizeUpgrade", glob="**/*.sol")
Grep("changeProxyAdmin|setImplementation", glob="**/*.sol")
# Find storage patterns
Grep("__gap|storage.*gap", glob="**/*.sol")
| Excuse | Reality |
|---|---|
| "We'll initialize right away" | Attackers monitor mempool. They WILL front-run. |
| "Storage order is obvious" | Inheritance chains make it complex. Verify with tools. |
| "Nobody uses selfdestruct" | Legacy code exists. Check every implementation. |
| "Upgrades are rare" | One bad upgrade = total loss. Every upgrade matters. |
| "ProxyAdmin is secure" | ProxyAdmin controls millions. It's THE target. |
| "UUPS is simpler" | UUPS has unique risks. Don't assume safety. |