AuditAI: Automating and Facilitating the Audit of Smart Contracts with Contextual Reports Generated by AI
Abstract
Smart contract security remains a major challenge in blockchain development, often limited by manual audits and static analysis tools.This paper introduces AuditAI, a platform that combines the Slither static analyzer with Large Language Models (LLMs) served via Groq Artificial Intelligence (AI) to detect vulnerabilities and generate contextualized, customizable audit reports. By merging formal analysis with natural language interpretation, AuditAI enhances the clarity and accessibility of security assessments. Preliminary results indicate improvements, in both the efficiency and interpretability of smart contract audits, while acknowledging the persistent challenges in automated vulnerability detection.
Keywords:
Blockchain Security, Smart Contract Auditing, Blockchain, Smart Contract Security, Slither, Generative Artificial Intelligence, Large Language Models (LLMs), Groq AI, Static Analysis, Contextualized Reports, Audit Automation, Solidity, Vulnerability Detection
References
David, I., Zhou, L., Qin, K., Song, D., Cavallaro, L., and Gervais, A. (2023). Do you still need a manual smart contract audit? arXiv preprint arXiv:2306.12338.
di Angelo, M., Durieux, T., Ferreira, J. F., and Salzer, G. (2023). SmartBugs 2.0: An execution framework for weakness detection in Ethereum smart contracts. In Proceedings of the 38th IEEE/ACM International Conference on Automated Software Engineering (ASE), pages 2102–2105. IEEE Computer Society.
Dinis, J. T. S. (2022). Automatic bug prioritization of SmartBugs reports using machine learning. PhD thesis, Instituto Superior Técnico, Universidade de Lisboa.
Feist, J., Grieco, G., and Groce, A. (2019). Slither: A static analysis framework for smart contracts. In Proceedings of the 2nd International Workshop on Emerging Trends in Software Engineering for Blockchain (WETSEB), pages 8–15. IEEE.
Ferreira, J. F., Cruz, P., Durieux, T., and Abreu, R. (2020). SmartBugs: A framework to analyze Solidity smart contracts. In Proceedings of the 35th IEEE/ACM International Conference on Automated Software Engineering, pages 1349–1352.
Groq Inc. (2024). About us - groq. Accessed: 2024-03-01.
Jiang, B., et al. (2022). Systematic vulnerability assessment in smart contract ecosystems. In Proceedings of the ACM Conference on Computer and Communications Security (CCS), pages 187–201.
Palladino, E. (2023). A statistical analysis of blockchain vulnerability patterns. International Journal of Blockchain Studies, 12(3), 45–62.
Revol, S., van der Auwera, J., and Domaschka, J. (2021). Comparison of Ethereum smart contract vulnerability detection tools. arXiv preprint arXiv:2105.06940.
Zeppelin (2017). On the parity wallet multisig hack. Accessed: 2024-04-01.
di Angelo, M., Durieux, T., Ferreira, J. F., and Salzer, G. (2023). SmartBugs 2.0: An execution framework for weakness detection in Ethereum smart contracts. In Proceedings of the 38th IEEE/ACM International Conference on Automated Software Engineering (ASE), pages 2102–2105. IEEE Computer Society.
Dinis, J. T. S. (2022). Automatic bug prioritization of SmartBugs reports using machine learning. PhD thesis, Instituto Superior Técnico, Universidade de Lisboa.
Feist, J., Grieco, G., and Groce, A. (2019). Slither: A static analysis framework for smart contracts. In Proceedings of the 2nd International Workshop on Emerging Trends in Software Engineering for Blockchain (WETSEB), pages 8–15. IEEE.
Ferreira, J. F., Cruz, P., Durieux, T., and Abreu, R. (2020). SmartBugs: A framework to analyze Solidity smart contracts. In Proceedings of the 35th IEEE/ACM International Conference on Automated Software Engineering, pages 1349–1352.
Groq Inc. (2024). About us - groq. Accessed: 2024-03-01.
Jiang, B., et al. (2022). Systematic vulnerability assessment in smart contract ecosystems. In Proceedings of the ACM Conference on Computer and Communications Security (CCS), pages 187–201.
Palladino, E. (2023). A statistical analysis of blockchain vulnerability patterns. International Journal of Blockchain Studies, 12(3), 45–62.
Revol, S., van der Auwera, J., and Domaschka, J. (2021). Comparison of Ethereum smart contract vulnerability detection tools. arXiv preprint arXiv:2105.06940.
Zeppelin (2017). On the parity wallet multisig hack. Accessed: 2024-04-01.
Published
2025-05-19
How to Cite
CARRERA, Lívia; CORDEIRO, Ramón; ABELÉM, Antônio.
AuditAI: Automating and Facilitating the Audit of Smart Contracts with Contextual Reports Generated by AI. In: BLOCKCHAIN WORKSHOP: THEORY, TECHNOLOGY AND APPLICATIONS (WBLOCKCHAIN), 8. , 2025, Natal/RN.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2025
.
p. 140-153.
DOI: https://doi.org/10.5753/wblockchain.2025.9134.
