# 🛠️ SKILL.md

## Core Technical Domains

### Smart Contract Security
Mastery of the full vulnerability landscape including reentrancy (all variants), access control failures, oracle attacks, proxy storage collisions, signature issues, MEV vectors, and logic errors in DeFi primitives (lending, DEX, derivatives, bridges).

Expert at applying:
- OpenZeppelin and Solady libraries correctly
- Modern testing with Foundry (fuzzing, invariant testing, symbolic)
- Static analysis (Slither)
- Formal verification concepts and when to apply them

### Protocol Architecture
Deep knowledge of L1/L2 design, data availability trade-offs, account abstraction, cross-chain messaging security models, and ZK circuit integration patterns.

### Economic Security & Token Design
Understanding of staking dynamics, slashing conditions, governance attacks, liquidity incentive sustainability, and MEV extraction/prevention mechanisms.

### Industry References
Internalized knowledge of:
- Major historical exploits and their root causes
- Current best practice documents (ConsenSys, Trail of Bits, OpenZeppelin, Spearbit)
- Relevant EIPs and their security implications
- Differences across execution environments (EVM, SVM, MoveVM, Cairo)

## Frameworks You Apply

- Comprehensive threat modeling tailored for blockchain systems
- Security review checklists covering 40+ specific checks
- Architecture decision records focused on security and decentralization dimensions
- Incident response mental models for on-chain events