Run any Skill in Manus with one click

$pwd:

cadence-lang

Name: Cadence Lang
Author: onflow

// Comprehensive guide for writing correct, secure, and idiomatic Cadence smart contract code on the Flow blockchain. Covers language fundamentals (resources, contracts, transactions, interfaces, accounts, references, imports), access control and entitlements, capabilities, pre/post conditions, security best practices, anti-patterns to avoid, and proven design patterns. TRIGGER when: writing or debugging Cadence code, asking about Cadence syntax, access(self), access(all), entitlements, resources, move operator (<-), capabilities, references, pre/post conditions, storage paths, "how do I write cadence", "cadence error", "compile error in .cdc", "what does access(self) mean", "how do resources work", "capability-based security". DO NOT TRIGGER when: building NFT/FT token contracts (use cadence-tokens), setting up flow.json or FCL (use flow-project-setup), reviewing existing code for vulnerabilities (use cadence-audit), generating new contracts from scratch (use cadence-scaffold).

Run Skill in Manus

$ git log --oneline --stat

stars:5

forks:1

updated:May 6, 2026 at 17:34

File Explorer

16 files

SKILL.md

readonly

name

cadence-lang

description

Comprehensive guide for writing correct, secure, and idiomatic Cadence smart contract code on the Flow blockchain. Covers language fundamentals (resources, contracts, transactions, interfaces, accounts, references, imports), access control and entitlements, capabilities, pre/post conditions, security best practices, anti-patterns to avoid, and proven design patterns. TRIGGER when: writing or debugging Cadence code, asking about Cadence syntax, access(self), access(all), entitlements, resources, move operator (<-), capabilities, references, pre/post conditions, storage paths, "how do I write cadence", "cadence error", "compile error in .cdc", "what does access(self) mean", "how do resources work", "capability-based security". DO NOT TRIGGER when: building NFT/FT token contracts (use cadence-tokens), setting up flow.json or FCL (use flow-project-setup), reviewing existing code for vulnerabilities (use cadence-audit), generating new contracts from scratch (use cadence-scaffold).

Cadence Language Guide

Write secure, correct Cadence code by following these rules. Cadence uses resource-oriented programming, capability-based security, and explicit access control.

Key Principles

Secure by default — start with access(self), expand only when needed
Resource safety — resources exist in one place, must be explicitly moved (<-) or destroyed
Capability-based security — access delegated through unforgeable, revocable capabilities
Explicit over implicit — force developers to make security decisions
Document generated code — follow the Cadence documentation conventions in the relevant reference docs

Navigation Map

Read the relevant reference file based on your task:

Task	Reference
Import patterns, flow.json setup	imports.md
Resource lifecycle, move operator	resources.md
Contract structure, init, deployment	contracts.md
Transaction phases, entitlements	transactions.md
Documentation conventions	documentation.md
Interfaces, intersection types	interfaces.md
Account storage, keys, capabilities	accounts.md
References, authorized refs	references.md
Access modifiers, visibility rules	access-control.md
Entitlements, mappings, Identity, sets	entitlements.md
Capabilities, security model	capabilities.md
Pre/post conditions, `before()`	conditions.md
Security best practices	security-best-practices.md
Anti-patterns to avoid	anti-patterns.md
Design patterns	design-patterns.md

For security-sensitive tasks, also read security-best-practices.md and anti-patterns.md.

Companion Skills

This skill provides the language foundation. Other skills build on it:

cadence-testing — Use alongside when writing tests for Cadence code. Tests are Cadence too and must follow every rule in this skill.
cadence-tokens — Use alongside this skill when building NFT/FT contracts. Token contracts must follow all rules here plus token-specific standards.
cadence-audit — Use to verify code follows the security rules and patterns documented here.
cadence-scaffold — Use to generate contracts/transactions that follow these rules by default.
flow-cli — Use to deploy and test the Cadence code written with this skill's guidance.
flow-react-sdk — Use when the Cadence scripts/transactions will be called from React hooks.

related-skills.json

same repository

cadence-scaffold.md

from "onflow/flow-ai-tools"

Generate production-ready Cadence smart contracts, transactions, and DeFi transactions from scratch following security-first standards. Scaffolds secure code with proper access control, entitlements, events, storage paths, and phase discipline. TRIGGER when: creating new Cadence contracts, generating transactions, scaffolding DeFi transactions, building smart contracts from scratch, "generate contract", "create transaction", "scaffold", "new contract", "new transaction", "build a contract for", "write me a contract", "help me create a", "template for", "boilerplate", "starter contract", "create an NFT contract", "generate a transfer transaction". DO NOT TRIGGER when: reviewing or auditing existing code (use cadence-audit), asking about Cadence syntax or language rules (use cadence-lang), configuring flow.json (use flow-project-setup).

2026-05-065

cadence-testing.md

from "onflow/flow-ai-tools"

Guide for writing, running, and debugging unit tests for Cadence smart contracts using the built-in Cadence Testing Framework and `flow test`. Covers test file structure (_test.cdc, setup/beforeEach/tearDown), assertions and matchers, blockchain emulation (accounts, deployments, events, time manipulation), coverage reports, CI integration, and testing patterns. TRIGGER when: writing Cadence unit tests, debugging failing tests, using Test.assert / Test.expect / Test.assertEqual / Test.expectFailure, matchers (Test.equal, Test.beGreaterThan, etc.), Test.createAccount / Test.deployContract / Test.executeTransaction / Test.executeScript in tests, Test.moveTime, Test.eventsOfType in tests, Test.reset, `flow test`, `flow test --cover`, coverage reports, `_test.cdc`, "how do I test this contract", "test is flaky", "mock a capability in a test". DO NOT TRIGGER when: writing contract or transaction code itself (use cadence-lang), generating new contracts/transactions from scratch (use cadence-scaffold), auditing non-t

2026-04-235

cadence-audit.md

from "onflow/flow-ai-tools"

Comprehensive audit and review skill for Cadence smart contracts on the Flow blockchain. Identifies security vulnerabilities, bugs, code quality issues, and optimization opportunities. Produces severity-rated findings (Critical/High/Medium/Low) with actionable fixes. TRIGGER when: auditing, reviewing, or improving Cadence code, checking for security issues, performing code review on .cdc files, looking for anti-patterns or vulnerabilities, optimizing smart contract code, "review cadence", "audit cadence", "check cadence security", "validate cadence contract", "review my .cdc file", "security review", "code review", "find vulnerabilities", "check this contract", "is this code secure", "audit my project". DO NOT TRIGGER when: writing new contracts from scratch (use cadence-scaffold), asking about Cadence syntax or patterns (use cadence-lang), building token contracts (use cadence-tokens).

2026-04-205

cadence-tokens.md

from "onflow/flow-ai-tools"

Guide for developing NFT and Fungible Token contracts on the Flow blockchain using Cadence. Covers NonFungibleToken and FungibleToken interface conformance, MetadataViews integration for marketplace compatibility, collection patterns, minting, standard paths, event emission, and modular NFT architectures for complex traits and evolution. TRIGGER when: building NFT contracts, FT token contracts, implementing NonFungibleToken or FungibleToken interfaces, working with MetadataViews, creating collections, minting tokens, "create an NFT", "build a token contract", "mint NFT", "NFT collection", "fungible token vault", "royalties", "MetadataViews.Display", "NonFungibleToken.Collection", "token standards", "FungibleToken.Vault". DO NOT TRIGGER when: asking about general Cadence syntax or patterns (use cadence-lang), setting up flow.json or deploying (use flow-project-setup), auditing code (use cadence-audit).

2026-04-205

flow-cli.md

from "onflow/flow-ai-tools"

Complete reference for the Flow CLI — the command-line tool for developing, testing, and deploying on the Flow blockchain. Covers project initialization, account management, contract deployment, transaction sending, script execution, dependency management, key generation, scheduled transactions, and emulator usage. TRIGGER when: using the Flow CLI, running flow commands, "flow accounts get", "flow accounts create", "flow init", "flow project deploy", "flow scripts execute", "flow transactions send", "flow test", "flow emulator", "flow keys generate", "flow dependencies install", "flow accounts fund", "deploy contract to testnet", "how to create a Flow account", "check account balance on Flow", "run cadence script", "send a transaction", "flow accounts add-contract", "flow accounts staking-info". DO NOT TRIGGER when: writing Cadence contract code (use cadence-lang), building React frontends (use flow-react-sdk), auditing code (use cadence-audit).

2026-04-205

flow-defi.md

from "onflow/flow-ai-tools"

Architecture guide for building DeFi protocols on the Flow blockchain. Covers Flow's DeFi-specific advantages (MEV-free EVM, cross-VM atomic transactions, on-chain automation), core DeFi primitives (lending health factors, interest rate kink models, AMM type selection), liquidity bootstrapping strategy (veFLOW, Merkl, CL ranges, bootstrapping benchmarks), and the current Flow DeFi ecosystem map (existing protocols, missing primitives, opportunity analysis). TRIGGER when: designing a lending protocol on Flow, choosing AMM type for a DEX, liquidity bootstrapping strategy, veFLOW mechanics, "how does Flow DeFi work", "AMM types on Flow", "liquidity bootstrapping", "Flow DeFi ecosystem", "cross-VM composability for DeFi", "health factors", "interest rate curves", "collateral design", "DEX TVL", "Merkl integration", "missing DeFi primitives on Flow", "perp DEX on Flow", "launchpad on Flow", "COA pattern", "MEV-free EVM". DO NOT TRIGGER when: designing token economics (use flow-tokenomics), asking about Cadence syn

2026-04-205

package.json

"author": "onflow"

"repository": "onflow/flow-ai-tools"

View GitHub Repository View Creator Repositories

$ install --global

$ download --local

Run Skill in Manus

$ useful --forSOC

Software DevelopersComputer and Mathematical Occupations15-1252L4

name

cadence-lang

description

Cadence Language Guide

Write secure, correct Cadence code by following these rules. Cadence uses resource-oriented programming, capability-based security, and explicit access control.

Key Principles

Secure by default — start with access(self), expand only when needed
Resource safety — resources exist in one place, must be explicitly moved (<-) or destroyed
Capability-based security — access delegated through unforgeable, revocable capabilities
Explicit over implicit — force developers to make security decisions
Document generated code — follow the Cadence documentation conventions in the relevant reference docs

Navigation Map

Read the relevant reference file based on your task:

Task	Reference
Import patterns, flow.json setup	imports.md
Resource lifecycle, move operator	resources.md
Contract structure, init, deployment	contracts.md
Transaction phases, entitlements	transactions.md
Documentation conventions	documentation.md
Interfaces, intersection types	interfaces.md
Account storage, keys, capabilities	accounts.md
References, authorized refs	references.md
Access modifiers, visibility rules	access-control.md
Entitlements, mappings, Identity, sets	entitlements.md
Capabilities, security model	capabilities.md
Pre/post conditions, `before()`	conditions.md
Security best practices	security-best-practices.md
Anti-patterns to avoid	anti-patterns.md
Design patterns	design-patterns.md

For security-sensitive tasks, also read security-best-practices.md and anti-patterns.md.

Companion Skills

This skill provides the language foundation. Other skills build on it:

cadence-testing — Use alongside when writing tests for Cadence code. Tests are Cadence too and must follow every rule in this skill.
cadence-tokens — Use alongside this skill when building NFT/FT contracts. Token contracts must follow all rules here plus token-specific standards.
cadence-audit — Use to verify code follows the security rules and patterns documented here.
cadence-scaffold — Use to generate contracts/transactions that follow these rules by default.
flow-cli — Use to deploy and test the Cadence code written with this skill's guidance.
flow-react-sdk — Use when the Cadence scripts/transactions will be called from React hooks.

cadence-lang

Cadence Language Guide

Key Principles

Navigation Map

Companion Skills

More from this repository

More from this repository

Cadence Language Guide

Key Principles

Navigation Map

Companion Skills