// Auto-loaded by access-control-auditor agent during Phase 2. Provides detection patterns for: missing modifiers, privilege escalation, tx.origin phishing, OR/AND logic errors, missing two-step transfer. Core artifact: Permission Matrix.
Auto-loaded by cross-chain-auditor agent during Phase 2. Provides detection patterns for: missing source chain/address validation, replay attacks, message ordering, chain-specific code, finality assumptions. Core artifact: Cross-Chain Message Flow diagram.
Auto-loaded by oracle-auditor agent during Phase 2. Provides detection patterns for: stale prices, deprecated Chainlink functions, L2 sequencer downtime, decimal mismatches, spot price manipulation, oracle DoS. Core artifact: Oracle Integration Matrix.
Auto-loaded by reentrancy-auditor agent during Phase 2. Provides detection patterns for: CEI violations, cross-function/cross-contract reentrancy, read-only reentrancy, token callback exploits (ERC721/777/1155). Core artifact: State Timeline map.
Auto-loaded by token-auditor agent during Phase 2. Provides detection patterns for: fee-on-transfer, rebasing tokens, ERC777 hooks, ERC721/1155 callbacks, missing return values, blacklist/pausable, low decimals. Core artifact: Token Compatibility Matrix.
Auto-loaded by access-control-auditor agent during Phase 2. Provides detection patterns for: UUPS/Transparent/Beacon proxy vulnerabilities, storage collision, initialization issues, function selector clashing, upgrade authorization. Core artifact: Proxy Architecture Map.
Auto-loaded by defi-auditor agent during Phase 2 when analyzing lending protocols. Provides patterns for: liquidation logic, interest rate models, collateral management, health factor calculations, bad debt handling. Core vulnerabilities: self-liquidation, precision loss, oracle manipulation, collateral factor attacks.
| name | access-control |
| description | Auto-loaded by access-control-auditor agent during Phase 2. Provides detection patterns for: missing modifiers, privilege escalation, tx.origin phishing, OR/AND logic errors, missing two-step transfer. Core artifact: Permission Matrix. |
| user-invocable | false |
OWASP SC01:2025 - Access Control is #1 vulnerability class in OWASP Smart Contract Top 10 (2025), with $1.2B+ in cumulative losses through 2025, including the Bybit hack ($1.4B) and multiple privilege escalation exploits.
Understanding root causes helps detect vulnerabilities more effectively.
Developer thinks "only admin can call this" but forgets to add modifier.
// Developer INTENDED: only admin
// ACTUAL: anyone can call
function setPrice(uint256 newPrice) external {
price = newPrice; // @audit No modifier!
}
Detection: Find external/public functions without modifiers, then verify intent.
external/public means "anyone can call" - not a permission system.
// Visibility is NOT access control
function withdraw() public { // @audit public ≠ "user's own funds"
// Without checks, ANYONE withdraws ANYONE's funds
}
Detection: Every state-changing external/public function needs explicit permission checks.
Who is "admin"? What can they do? Often undocumented.
// VULNERABLE: Admin powers undefined
function emergencyWithdraw() external onlyAdmin {
// Can admin steal all user funds?
// Is this documented? Intended?
}
Detection: Map all admin powers. Flag undocumented capabilities as centralization risks.
Admin can create admins → single key compromise = total system takeover.
// VULNERABLE: Flat admin hierarchy
function addAdmin(address newAdmin) external onlyAdmin {
admins[newAdmin] = true; // @audit Compromised admin adds attacker
}
Detection: Trace role grant paths. Flag self-granting or circular hierarchies.
Build this for every contract:
| Contract | Function | Sensitivity | Required Role | Actual Check | Gap? |
|---|---|---|---|---|---|
| Vault | withdraw | CRITICAL | User (own funds) | None | YES |
| Vault | setFee | HIGH | Admin | onlyOwner | No |
| Vault | pause | HIGH | Guardian | onlyAdmin | WRONG ROLE |
| Token | mint | CRITICAL | Minter | None | YES |
| Level | Examples | Impact if Missing |
|---|---|---|
| CRITICAL | withdraw, transfer, mint, upgrade | Direct fund loss |
| HIGH | pause, setFee, setOracle | Protocol malfunction |
| MEDIUM | setParameter, whitelist | Degraded operation |
| LOW | view, pure functions | Information leak |
Root Cause: Intent-Implementation Gap
// VULNERABLE: Anyone can call
function setPrice(uint256 newPrice) external {
price = newPrice; // @audit Anyone can manipulate price!
}
function withdrawAll() external {
payable(msg.sender).transfer(address(this).balance); // @audit No modifier!
}
Search Queries:
Grep("function.*external(?!.*view)(?!.*pure)", glob="**/*.sol")
Grep("function.*public(?!.*view)(?!.*pure)", glob="**/*.sol")
Verification Questions:
Root Cause: Broken Permission Hierarchy
// VULNERABLE: Admin can add arbitrary admins
function addAdmin(address newAdmin) external {
require(admins[msg.sender], "Not admin");
admins[newAdmin] = true; // @audit Compromised admin adds attacker
}
// VULNERABLE: Self-grant role
function grantRole(bytes32 role, address account) public {
_grantRole(role, account); // @audit No permission check!
}
Search Queries:
Grep("grantRole|addAdmin|setAdmin", glob="**/*.sol")
Grep("_setupRole|_grantRole", glob="**/*.sol")
Verification Questions:
Root Cause: Confusing transaction origin with message sender
// VULNERABLE: Phishing via malicious contract
function withdraw() external {
require(tx.origin == owner); // @audit Phishing target!
// Attacker tricks owner to call malicious contract
// Malicious contract calls this function
// tx.origin is still owner!
}
Search Queries:
Grep("tx\\.origin", glob="**/*.sol")
Verification Questions:
Root Cause: Logic error in permission checks
// VULNERABLE: Should be AND, not OR
function sensitiveAction() external {
require(hasRole(ADMIN) || hasRole(GUARDIAN)); // @audit OR allows either
// Should require BOTH roles for high-sensitivity actions
}
// Also check for inverted logic
function withdraw() external {
require(!blacklisted[msg.sender]); // What if blacklist is empty?
}
Search Queries:
Grep("require.*\\|\\|", glob="**/*.sol")
Grep("require.*&&", glob="**/*.sol")
Verification Questions:
Root Cause: No confirmation for critical ownership changes
// VULNERABLE: Single transaction transfer
function transferOwnership(address newOwner) external onlyOwner {
owner = newOwner; // @audit Typo in address = permanent loss
}
// SECURE: Two-step pattern
function transferOwnership(address newOwner) external onlyOwner {
pendingOwner = newOwner;
}
function acceptOwnership() external {
require(msg.sender == pendingOwner);
owner = pendingOwner;
}
Search Queries:
Grep("transferOwnership|changeOwner|setOwner", glob="**/*.sol")
Grep("pendingOwner|acceptOwnership", glob="**/*.sol")
Verification Questions:
Root Cause: Misunderstanding of AccessControl patterns
// VULNERABLE: DEFAULT_ADMIN_ROLE can grant any role
// If compromised, attacker controls everything
contract Vault is AccessControl {
bytes32 public constant ADMIN_ROLE = keccak256("ADMIN");
constructor() {
_grantRole(DEFAULT_ADMIN_ROLE, msg.sender);
_grantRole(ADMIN_ROLE, msg.sender);
// @audit DEFAULT_ADMIN_ROLE can grant ADMIN_ROLE to anyone
}
}
Search Queries:
Grep("DEFAULT_ADMIN_ROLE|AccessControl", glob="**/*.sol")
Grep("_setRoleAdmin|getRoleAdmin", glob="**/*.sol")
Verification Questions:
Root Cause: Misunderstanding of EntryPoint trust model and Paymaster authorization
// VULNERABLE: Paymaster doesn't validate caller
contract BadPaymaster {
function validatePaymasterUserOp(
UserOperation calldata userOp,
bytes32 userOpHash,
uint256 missingAccountFunds
) external view returns (bytes memory context, uint256 validationData) {
// @audit No check that EntryPoint is canonical!
// @audit No validation of userOp.sender (account contract)
// Attacker can call this directly with arbitrary userOp
return ("", 0);
}
}
// VULNERABLE: EntryPoint not validated
contract BadAccount {
function validateUserOp(
UserOperation calldata userOp,
bytes32 userOpHash,
uint256 missingAccountFunds
) external returns (uint256 validationData) {
// @audit No check that msg.sender is canonical EntryPoint
// Attacker can call this with fake signature
require(isValidSignature(userOp.signature, userOpHash), "Invalid sig");
return 0;
}
}
// VULNERABLE: Bundler can manipulate gas
function executeUserOp(UserOperation calldata userOp) external {
// @audit No validation that bundler is trusted
// Bundler can submit UserOp with inflated gas, drain paymaster
}
Search Queries:
Grep("validatePaymasterUserOp|validateUserOp", glob="**/*.sol")
Grep("EntryPoint|IEntryPoint", glob="**/*.sol")
Grep("UserOperation|userOp", glob="**/*.sol")
Grep("Paymaster|paymaster", glob="**/*.sol")
Verification Questions:
For each external/public function:
Document admin powers that can harm users:
| Admin Power | Risk Level | Impact |
|---|---|---|
| Pause withdrawals | High | Users locked out |
| Change fee to 100% | Critical | Rug pull |
| Upgrade implementation | Critical | Arbitrary code execution |
| Mint unlimited tokens | Critical | Inflation attack |
| Whitelist addresses | Medium | Censorship |
| Change oracle | Critical | Price manipulation |
Flag as finding if:
# Find all entry points
Grep("function.*external|function.*public", glob="**/*.sol")
# Find modifiers
Grep("modifier\\s+\\w+", glob="**/*.sol")
Grep("onlyOwner|onlyAdmin|only\\w+", glob="**/*.sol")
# Find role management
Grep("grantRole|revokeRole|renounceRole", glob="**/*.sol")
Grep("transferOwnership|acceptOwnership", glob="**/*.sol")
# Find dangerous patterns
Grep("tx\\.origin", glob="**/*.sol")
Grep("selfdestruct|delegatecall", glob="**/*.sol")
| Excuse | Reality |
|---|---|
| "It's an internal function" | Internal functions can be called via public entry points |
| "Only admin can call this" | Admin keys get compromised; document the risk |
| "This is by design" | Document it as centralization risk if undocumented |
| "Low likelihood" | Access control bugs caused $953M in losses |
| "I'll check later" | Check NOW or miss critical vulnerabilities |
| "The modifier exists somewhere" | Verify it's actually applied to THIS function |
| "Frontend prevents this" | On-chain must be secure standalone |