Add riptide-assess skill: deterministic guided-sim risk assessment for Solana programs#151
Open
AiltonSavio wants to merge 1 commit into
Open
Add riptide-assess skill: deterministic guided-sim risk assessment for Solana programs#151AiltonSavio wants to merge 1 commit into
AiltonSavio wants to merge 1 commit into
Conversation
A Claude Code skill that turns a Solana program repo into a reproducible risk assessment, backed by deterministic guided LiteSVM simulations of the real on-chain program. One agent-led flow — Detect -> Scope -> Setup -> Run -> Surface -> Assess: detect the protocol family, scope what the guided sim must handle (typed args, oracle-account bytes, third-party/keeper actors, multi-instruction sequences), author and run the sim over a declared fixed-seed sweep, and emit an assessment (assessment.md + assessment.json) plus an executive brief with the exact commands to reproduce every figure. Self-contained kit: SKILL.md router with progressive-disclosure focused files (detect-and-scope, setup, run-and-assess, authoring-patterns, family-library, honesty, worst-case-playbook, resources), a bundled install.sh that bootstraps the Riptide CLI, an example input, README, and MIT LICENSE.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
riptide-assess
An agent skill that turns a Solana program repo into a reproducible risk assessment, backed by deterministic guided LiteSVM simulations of the real on-chain program
.so.Unlike static or symbolic tools that check whether a program's code is correct, riptide-assess answers the economic risk question: it constructs the external account bytes the program reads (oracle prices, attestations), drives the protocol's actual lifecycle under an exogenous stress swept over a declared fixed-seed region, and records where the deciding metric moves — surfacing failures that aren't code bugs (bad debt when a crash outruns liquidation, first-mover dilution under a stale NAV attestation, socialized loss on a perps gap).
Flow
One agent-led session — Detect → Scope → Setup → Run → Surface → Assess:
remaining_accounts, CPI bootstrapping), consulting a per-family library of known personas/invariants/stress scenarios.TODO(setup)seams.[sim.sweep]— smoke first, then the full sweep.assessment.md+assessment.jsonplus an executive brief, with a non-negotiable honesty discipline enforced as runtime gates (positive control, real-program execution, determinism).The output is simulation evidence over a declared region — not an audit signoff, formal verification, or a mainnet prediction — plus the exact commands to reproduce every figure.
Contents
Self-contained kit under
skills/riptide-assess-skill/:skill/SKILL.md— router (name + description +user-invocable: true) with progressive-disclosure focused files:detect-and-scope,setup,run-and-assess,authoring-patterns,family-library,honesty,worst-case-playbook,resources.install.sh— bootstraps the Riptide CLI (idempotent; wrapscurl -fsSL https://riptide.run/install | sh).examples/assessment-input.json,README.md,LICENSE(MIT).Prerequisites
The CLI is not on npm; it scaffolds a project-owned Rust crate that builds against a vendored runtime. Host needs
cargo/rustc,node >= 20, and the Solana SBF toolchain. The skill's First-Contact step auto-installs the CLI ifriptide --helpfails.Riptide is open source: https://github.com/riptidesim/riptide