CLI Options

Below are options which may be included with the aderyn CLI command.

aderyn [OPTIONS]

`aderyn <ROOT>`

- Detects if the current directory is a Foundry project and runs the Aderyn static analyser over it.

Input:

aderyn .

`--help`

Outputs the options and arguments available when using Aderyn.

Rust based Solidity AST analyzer

Usage: aderyn [OPTIONS] <ROOT>

Arguments:
  <ROOT>  Foundry or Hardhat project root directory (or path to single solidity file)

Options:
  -o, --output <OUTPUT>    Desired file path for the final report (will overwrite existing one) [default: report.md]
  -s, --scope <SCOPE>      List of path strings to include, delimited by comma (no spaces). Any solidity file path not containing these strings will be ignored
  -e, --exclude <EXCLUDE>  List of path strings to exclude, delimited by comma (no spaces). Any solidity file path containing these strings will be ignored
  -n, --no-snippets        Do not include code snippets in the report (reduces report size in large repos)
  -h, --help               Print help
  -V, --version            Print version

`-o, --output <OUTPUT>`

- The default output is report.md. This can be renamed to anything you'd like. Currently supported formats include Markdown and JSON. JSON is particularly useful in CI/CD pipelines to compile properties from the generated report.

Examples:

aderyn . -o my-report.json

aderyn . -o my-report.md

`-s, --scope <SCOPE>`

A string, or list of strings separated by commas that pertain to the filenames/directories in scope. These are the files/directories that Aderyn will be run on.

Note: strings passed to the scope command are case-sensitive.

Examples will be based on the blow repo:

├── src
│   ├── interfaces
│   │   ├── IFlashLoanReceiver.sol
│   │   ├── IPoolFactory.sol
│   │   ├── ITSwapPool.sol
│   │   └── IThunderLoan.sol
│   ├── protocol
│   │   ├── AssetToken.sol
│   │   ├── OracleUpgradeable.sol
│   │   └── ThunderLoan.sol
│   └── upgradedProtocol
│       └── ThunderLoanUpgraded.sol

Input:

aderyn -s src/interfaces

Output:

Filepath

nSLOC

Input:

aderyn --scope Thund

Output:

Filepath

nSLOC

`-e, --exclude <EXCLUDE>`

the opposite of --scope, this will exclude any files or directories that contain the passed string.

Input:

aderyn -e Thunder

Output:

Filepath

nSLOC

`-n, --no-snippets`

The default behavior is to include the line number, as well as snippets of code where the vulnerability is detected within the generated report. This can potentially take up a lot of space in the report. This option will disable the snippets, leaving the line number readouts only.

Input (default):

aderyn -s Thunder`

Found in src/protocol/ThunderLoan.sol Line: 239

    function setAllowedToken(IERC20 token, bool allowed) external onlyOwner returns (AssetToken) {

Input (no-snippets):

aderyn -s Thunder -n
aderyn -s Thunder --no-snippets

Output:

Found in src/protocol/ThunderLoan.sol Line: 239

`aderyn --version`

Outputs the current version of Aderyn installed

Input:

aderyn -v
aderyn --version

Output:

aderyn 0.0.13

`aderyn registry`

Output the list of detectors.

Input:

aderyn registry

Output:

Detector Registry

Name                             Title

Low

centralization-risk            - Centralization Risk for trusted owners
solmate-safe-transfer-lib      - Solmate's SafeTransferLib does not check for token contract's existence
avoid-abi-encode-packed        - `abi.encodePacked()` should not be used with dynamic types when passing the result to a hash function such as `keccak256()`
ecrecover                      - `ecrecover` is susceptible to signature malleability
...

High
...

PreviousQuickstart NextWhat is a Detector?

Last updated 1 month ago