Create detectors for semantic changes due to Solidity IR

crytic / slither

Static Analyzer for Solidity and Vyper

https://blog.trailofbits.com/2018/10/19/slither-a-solidity-static-analysis-framework/

GNU Affero General Public License v3.0

5.33k stars 968 forks source link

Create detectors for semantic changes due to Solidity IR #1169

Open montyly opened 2 years ago

montyly commented 2 years ago

https://docs.soliditylang.org/en/v0.8.13/ir-breaking-changes.html#semantic-only-changes

0.8.13 allows to use of the new IR pipeline, but comes with risks due to semantics changes. We should create detectors to help developers to review if they can use the new version without impacting their contracts.

We can make these detectors directly public to help a larger audience.

0xalpharush commented 2 years ago

This is an example of it causing issues https://github.com/ethereum/solidity/issues/13311

0xalpharush commented 7 months ago

Also https://github.com/ethereum/solidity/issues/14987 https://github.com/ethereum/solidity/issues/14982