AuditFlow
Run an audit
Skip to main content
Mantle · Turing Test 2026 · Track 05

Audit any Solidity repo.Ship the fixes.

Connect GitHub, paste a repo. AuditFlow routes it through a full audit arsenal + Mantle L2 detectors, writes a Code4rena-style report, and opens a validated auto-fix PR.

Run an audit
Audits Run audit
High severity+2
6
across 3 contracts
Auto-fix PRs+4
4
validated & opened
Repos audited+12%
128
this week
Severity tierslive
5
H · M · L · QA · Gas
Findings by audit
Last 12 audits · severity stacked
7d30d
High Medium Low
  • Slither
  • Aderyn
  • Audit arsenal
  • LLM detectors
  • Mantle L2
  • Foundry
  • Octokit
  • DeepSeek
  • Code4rena

Afullauditarsenal.StaticanalyzersandLLMsecuritydetectors,orchestratedbysignal,deduped,andgradedintoaCode4rena-stylereportwithvalidatedauto-fixpullrequests,tunedforMantleSoliditycode.

Built for real audits

Not a wrapper — a full orchestration pipeline.

A full arsenal, one orchestrator

Static analyzers and LLM security detectors, with Mantle L2 checks — routed by signal, deduped, graded.

› clone github.com/owner/vault
› route · signals: reentrancy, oracle
› slither ✓ aderyn ✓ mantle ✓
› reentrancy-scan (1/12)
› access-control (2/12)
› oracle-flashloan (3/12)
› report · 11 findings
High 6Medium 1Low 1QA 2Gas 1

Mantle L2 detectors generic auditors miss

MNT gas token vs ERC-20 ETH, L1 data-fee accounting, blockhash RNG on L2, PUSH0 / evmVersion, non-Mantle hardcoded addresses.

Validated auto-fix PR

Every fix must apply cleanly and compile before it enters the PR. Bad diffs are rejected, never committed.

git apply ✓ · forge build ✓

Zero disk hoarding

Repos are shallow-cloned, audited, then deleted the instant the report is built. PRs use a fresh transient clone.

clone → audit → delete

How it works

From a GitHub URL to a validated pull request — on a free engine, with nothing hoarded on disk.

Run an audit
  1. Connect & paste

    OAuth your GitHub and drop a Solidity repo URL. AuditFlow shallow-clones it and detects contracts + build framework. No setup.

  2. Route & audit

    A signal-based router picks the relevant audit tools and runs them with Slither, Aderyn, and Mantle L2 detectors in parallel, deduped.

  3. Report & ship

    Get a Code4rena-style report graded by severity, pick the fixes, and open a validated auto-fix PR. The clone is deleted the instant the report is built.

Frequently Asked Questions

Everything you need to know

Can't find the answer you're looking for? Reach out!

What does AuditFlow actually do?

You connect GitHub and paste a Solidity repo. AuditFlow clones it, routes it through its audit arsenal + static analyzers + Mantle L2 detectors, produces a Code4rena-style report graded by severity (High/Medium/Low/QA/Gas), and can open a validated auto-fix pull request on the repo.