Slither

Slither is a static analysis framework for Solidity. It runs a suite of vulnerability detectors and provides information about contract details.

前提条件

To use Slither analysis with Remix IDE efficiently, the following tools should be installed locally on your system:

Slither: Installing Slither
Solc: Installing Solidity
Solc-select: Solc Quickstart

使用方式

Slither analysis is available in Remix Desktop through the Solidity Static Analysis plugin and on Remix Web through RemixAI.

Remix Web

On Remix Web, Slither analysis is available through RemixAI. Open the RemixAI Assistant, describe your contract, and ask it to run a Slither analysis.

Here's an example prompt:

Run a Slither analysis on MyToken.sol and list any security vulnerabilities or warnings.

The Slither checkbox in the Solidity Static Analysis plugin will be greyed out on Remix Web.

Remix Desktop

If you load a local project in Remix Desktop, there will be an extra checkbox shown in Solidity Static Analysis plugin with the label Slither (On Remix Web, this option will be greyed out).

Slither checkbox in the Solidity Static Analysis plugin

The Slither Analysis report will be displayed on the Slither tab of the Solidity Static Analysis plugin, next to the Remix analysis report for better readability.

Slither analysis report in the Solidity Static Analysis plugin

The result of the analysis will be shown in the Remix IDE terminal.

Slither analysis result in the Remix IDE terminal

To only run Slither Analysis, deselect the Remix and Solhint checkboxes and click on "Analyze". Now it will show only the Slither Analysis report.

默认情况下，Remix不会显示外部库（如remix-tests.sol、hardhat/console.sol等）的警告信息。要查看这些警告信息，请勾选标签为“显示外部库”的复选框。

Slither analysis report showing warnings for external libraries

Slither

前提条件

使用方式

Remix Web

Remix Desktop

更多详细信息