Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/Sm4rty-1/awesome-tezos-security

This repository serves as a comprehensive resource that delves into the various security aspects of the Tezos blockchain and provides best practices for developing secure smart contracts. Feel free to contribute to the project. 🌐
https://github.com/Sm4rty-1/awesome-tezos-security

List: awesome-tezos-security

Last synced: 3 months ago
JSON representation

This repository serves as a comprehensive resource that delves into the various security aspects of the Tezos blockchain and provides best practices for developing secure smart contracts. Feel free to contribute to the project. 🌐

Awesome Lists containing this project

README 

        
# Awesome Tezos Security [![Awesome](https://cdn.rawgit.com/sindresorhus/awesome/d7305f38d29fed78fa85652e3a63e154dd8e8829/media/badge.svg)](https://github.com/sindresorhus/awesome)

This repository serves as a comprehensive resource that delves into the various security aspects of the Tezos blockchain and provides best practices for developing secure smart contracts.



## Tezos Smart contract Vulnerability List:

![](assets/Tezos-Attack-Vectors.png)



**PDF Version:** [Tezos-Attack-Vectors.pdf](assets/Tezos-Attack-Vectors.pdf)



### References:

[Common Tezos Smart contract Vulnerability ~ OpenTezos](https://opentezos.com/smart-contracts/avoiding-flaws/)



[Lilolang Security](https://ligolang.org/docs/tutorials/security/?lang=jsligo)



---



## Security checklist for Tezos smart contracts

- [TezosSecurityBaselineChecking](https://github.com/InferenceAG/TezosSecurityBaselineChecking)

- [TezosSecurity Checklist V1 by Inference](https://github.com/InferenceAG/TezosSecurityAssessmentChecklist/blob/master/publications/v1.0/Tezos%20smart%20contract%20security%20assessment%20checklist%20-%20v1.0.pdf)

- [TezosSecurity Checklist V1.1 by Inference](https://github.com/InferenceAG/TezosSecurityAssessmentChecklist/blob/master/publications/v1.1/Tezos%20smart%20contract%20security%20assessment%20checklist%20-%20v1.1.pdf)

- [TezosSecurity Checklist V1.2 by Inference](https://github.com/InferenceAG/TezosSecurityAssessmentChecklist/blob/master/publications/v1.2/Tezos%20smart%20contract%20security%20assessment%20checklist%20-%20v1.2.pdf)

- [TezosSecurity Checklist V2 by Inference](https://github.com/InferenceAG/TezosSecurityAssessmentChecklist/blob/master/publications/v2.0/Tezos%20smart%20contract%20security%20assessment%20checklist%20-%20v2.0.pdf)



---



## Tezos Audit Reports:

- [Inference Tezos Audit Reports](https://github.com/InferenceAG/ReportPublications)

- [LeastAuthority Tezos Audit Reports](https://medium.com/least-authority/https-medium-com-least-authority-five-security-audits-for-the-tezos-foundation-7e7375cf055b)

- [RAMP SECURITY AUDITS](https://github.com/RAMP-DEFI/RAMP_SECURITY_AUDITS_TEZOS/blob/main/Smart%20contract%20security%20audit%20report%20-%20RAMP_VERSION_TEZOS.pdf)

- [Runtime Verification Audit for Quipuswap](https://github.com/runtimeverification/publications/blob/main/reports/smart-contracts/Quipuswap.pdf)

- [Runtime Verification Audit for Quipuswap StableSwap AMM ](https://github.com/runtimeverification/publications/blob/main/reports/smart-contracts/quipuswap-stableswap.pdf)



## Tezos Formal Verification Reports:

- [Tezos Dexter V2](https://github.com/runtimeverification/publications/blob/main/reports/smart-contracts/Tezos-Dexter.pdf)

- [Tezos Liquidity Baking Contract](https://github.com/runtimeverification/publications/blob/main/reports/smart-contracts/Tezos-Dexter.pdf)



---



## Security Blogs:

- [Michelson code reviews](https://inference.ag/blog/2022-05-11-michelson/)

- [LigoLang Security](https://ligolang.org/docs/tutorials/security/)

- [Michelson Anti-Patterns](https://tezos.gitlab.io/developer/michelson_anti_patterns.html)

- [Testing and Debugging Ligo](https://ligolang.org/docs/advanced/testing?lang=jsligo)

---



## Gas Optimizations 

- [The Tezos gas model ](https://gitlab.com/tezos/tezos/-/blob/52a074ab3eb43ad0087804b8521f36cb517f7c28/docs/whitedoc/gas_consumption.rst)

- [Tezos Code Optimization](https://github.com/InferenceAG/TezosCodeOptimization)

- [Ligolang Gas Optimizations](https://ligolang.org/docs/tutorials/optimisation/?lang=jsligo)



---



## Video Tutorials: 

- [Tezos research and development Series by Nomadiclabs](https://www.youtube.com/watch?v=2jd-1VxzmQ0&list=PLfjHt2_9f_EwJh1Yr3zgRZnqrc-koohC7)

- [Building a dapp on Tezos in SmartPy - Part 1](https://www.youtube.com/watch?v=yZs06D4tjI4)

- [Building a dapp on Tezos in SmartPy - Part 2](https://www.youtube.com/watch?v=CCk5IO-IzZE&)

- [How to build a front-end of a Tezos dapp](https://www.youtube.com/watch?v=wN3OvPh0OzY)

- [Token Standards on Tezos FA1.2 & FA2](https://www.youtube.com/watch?v=zKCpbVQ1E14)

- [Building a dapp on Tezos in LIGO - Part 1](https://www.youtube.com/watch?v=IvZdupLVyGc)

- [Building a dapp on Tezos in LIGO - Part 2](https://www.youtube.com/watch?v=WRvRIHPjVBc)



---



## Miscellaneous Resources:

- [Awesome Tezos](https://github.com/kevinelliott/awesome-tezos)

- [Awesome SmartPy](https://github.com/JonathanReiss15/awesome-smartpy)

- [Open Tezos](https://opentezos.com/)

- [Tezos Developer Resources](https://tezos.gitlab.io/index.html)



---



### Official Resources and Community 🌐



- [Discord](https://discord.com/invite/udZwhQn)

- [Forum](https://forum.tezosagora.org/)

- [Telegram](https://t.me/tezosplatform)

- [Twitter](https://twitter.com/tezos)

- [Website](https://tezos.com/)

- [Developer Portal](https://tezos.com/developer-portal)

- [Source Code at GitLab](https://gitlab.com/tezos/tezos)