0G Shield
AI-powered smart contract security auditor with verifiable on-chain attestations.
Videos
Tech Stack
Description
π‘οΈ 0G Shield
AI-powered smart contract security auditor with verifiable on-chain attestations.
πΈ Every day, millions of dollars are lost to rug pulls, honeypots, and exploitable smart contracts. Users have no fast, trustworthy way to verify whether a token is safe before interacting with it. Professional audits cost $50kβ$500k and take weeks.
β‘ 0G Shield changes this. Paste any Solidity contract β get an instant AI security analysis β receive a permanent, verifiable on-chain attestation that anyone can query and trust.
π How It Works
π Submit Solidity source code
β
βΌ
π Bytecode Verification
Fetches deployed bytecode from 0G Chain
and compares against submitted source
β
βΌ
π€ AI Security Analysis
Powered by 0G Compute Network
β’ Rug pull pattern detection
β’ Vulnerability scanning
β’ Access control analysis
β’ Security scoring (0β100)
β
ββββββββββ΄βββββββββ
βΌ βΌ
πΎ 0G Storage βοΈ 0G Chain
Full report On-chain
persisted attestation
β±οΈ Paste code. Get a score. Attest on-chain. Under 60 seconds.
π What We Detect
πͺ€ Rug Pull Patterns
Hidden mint functions, blacklist/whitelist abuse, adjustable sell taxes (owner sets to 99%), honeypot mechanics (buy but can't sell), fake renounce ownership, liquidity removal without timelocks, pause abuse, max-wallet bypass for the deployer.
π Vulnerabilities
Reentrancy attacks, unchecked external calls, delegatecall to untrusted contracts, tx.origin authorization, flash loan vectors, oracle manipulation, timestamp dependence.
π Access Control Issues
Centralization risks, missing modifiers on sensitive functions, unprotected initializers, missing event emissions for state changes.
β Bytecode Verification
When a deployed contract address is provided, 0G Shield fetches the on-chain bytecode via eth_getCode on 0G Chain and compares it against the compiled source β proving the code being audited is actually what's running on-chain. Audits are tagged with a verification level: β
Verified, β οΈ Unverified, or π Source Only.
π Deep 0G Integration
0G Shield is built natively on the 0G stack, using three core components in a tightly integrated pipeline:
βοΈ 0G Chain β Attestation Registry
The OGShield smart contract deployed on 0G Chain serves as a permanent, queryable registry of security attestations. Each attestation records:
π Security score (0β100)
β οΈ Risk levels (rug pull, vulnerability, access control)
π Verification level (bytecode match status)
ποΈ Report storage hash (pointer to full report on 0G Storage)
π Audited contract address
π Findings summary
π Any protocol, DEX, or user can call getAttestation(codeHash) or getScore(codeHash) to check a contract's security status β enabling composable trust. A DEX could require a minimum Shield score before listing a token. A launchpad could auto-scan every new deployment.
π€ 0G Compute β AI Audit Engine
Security analysis is powered by qwen-2.5-7b-instruct running on 0G's decentralized GPU marketplace via the OpenAI-compatible inference API. The model receives structured prompts with comprehensive vulnerability and rug pull detection criteria, returning JSON-formatted findings with severity ratings, descriptions, and remediation guidance.
πΎ 0G Storage β Decentralized Report Persistence
Full audit reports (source code, findings, scores, verification proofs) are stored as JSON files on 0G's decentralized storage network using the TypeScript SDK. The merkle root hash is recorded in the on-chain attestation, creating an immutable link between the on-chain score and the detailed off-chain report. Reports are retrievable via StorageScan.