Claudit
FreeNot checkedEnables searching over 20,000+ smart contract audit findings from Solodit, with filters for severity, firm, tags, and more. Designed for use with AI coding agen
About
Enables searching over 20,000+ smart contract audit findings from Solodit, with filters for severity, firm, tags, and more. Designed for use with AI coding agents like Claude Code and Codex CLI.
README
claudit
Smart contract security findings for AI coding agents
Search Solodit's 20,000+ audit findings from Claude Code and Codex CLI.
npm version license node giveth

Quick Start
curl -fsSL https://raw.githubusercontent.com/marchev/claudit/main/install.sh | sh
The installer detects Claude Code and/or Codex CLI, prompts for your Solodit API key, and registers the MCP server.
Then just ask:
> Find 5 solo findings by 0x52 at Sherlock
Manual install
Claude Code
claude mcp add --scope user --transport stdio solodit \
--env SOLODIT_API_KEY=sk_your_key_here \
-- npx -y @marchev/claudit@latest
# (Optional) Install companion skill
mkdir -p ~/.claude/skills/solodit
curl -fsSL https://raw.githubusercontent.com/marchev/claudit/main/.claude/skills/solodit/SKILL.md \
-o ~/.claude/skills/solodit/SKILL.md
Codex CLI
codex mcp add solodit \
--env SOLODIT_API_KEY=sk_your_key_here \
-- npx -y @marchev/claudit@latest
Tools
search_findings
Search across all findings with filters.
| Parameter | Type | Description |
|---|---|---|
keywords |
string |
Text search in title and content |
severity |
string[] |
HIGH MEDIUM LOW GAS (case-insensitive) |
firms |
string[] |
Audit firm names |
tags |
string[] |
Vulnerability tags |
language |
string |
Programming language |
protocol |
string |
Protocol name (partial match) |
reported |
string |
30 60 90 alltime |
sort_by |
string |
Recency Quality Rarity |
sort_direction |
string |
Desc (default) Asc |
page |
int |
Page number (default 1) |
page_size |
int |
Results per page (default 10, max 100) |
advanced_filters |
object |
See below |
Advanced filters
| Field | Type | Description |
|---|---|---|
quality_score |
number |
Minimum quality score (0-5) |
rarity_score |
number |
Minimum rarity score (0-5) |
user |
string |
Finder/auditor handle |
min_finders |
number |
Minimum number of finders |
max_finders |
number |
Maximum number of finders |
reported_after |
string |
ISO date string |
protocol_category |
string[] |
Protocol categories |
forked |
string[] |
Forked protocol names |
get_finding
Get full details for a specific finding by numeric ID, Solodit URL, or slug.
get_filter_options
List all valid filter values — firms, tags, categories, languages — with finding counts.
Examples
Search Solodit for oracle manipulation HIGH severity findings
Find all Sherlock findings about flash loans
What reentrancy issues exist in lending protocols?
Show me solo findings by 0x52
Get recent HIGH severity Solidity findings sorted by quality
Configuration
Update API key
Claude Code:
claude mcp remove solodit
claude mcp add --scope user --transport stdio solodit \
--env SOLODIT_API_KEY=sk_new_key \
-- npx -y @marchev/claudit@latest
Codex CLI:
codex mcp remove solodit
codex mcp add solodit \
--env SOLODIT_API_KEY=sk_new_key \
-- npx -y @marchev/claudit@latest
Cursor MCP
{
"mcpServers": {
"solodit": {
"command": "npx",
"args": ["-y", "@marchev/claudit@latest"],
"env": {
"SOLODIT_API_KEY": "sk_new_key"
}
}
}
}
Uninstall
Claude Code:
claude mcp remove solodit
rm -rf ~/.claude/skills/solodit
Codex CLI:
codex mcp remove solodit
Development
git clone https://github.com/marchev/claudit.git
cd claudit
npm install
npm run build
# Test locally
SOLODIT_API_KEY=sk_your_key node dist/index.js
Support
Claudit is a solo-maintained public good for Ethereum security. If it saves you time or finds bugs for you, consider supporting its continued development on Giveth:
MIT License
Install Claudit in Claude Desktop, Claude Code & Cursor
unyly install clauditInstalls into Claude Desktop, Claude Code, Cursor & VS Code — handles npx, uvx and build-from-source repos for you.
First time? Get the CLI: curl -fsSL https://unyly.org/install | sh
Or configure manually
Run in your terminal:
claude mcp add claudit -- npx -y @marchev/clauditFAQ
Is Claudit MCP free?
Yes, Claudit MCP is free — one-click install via Unyly at no cost.
Does Claudit need an API key?
No, Claudit runs without API keys or environment variables.
Is Claudit hosted or self-hosted?
A hosted option is available: Unyly runs the server in the cloud, no local setup required.
How do I install Claudit in Claude Desktop, Claude Code or Cursor?
Open Claudit on unyly.org, pick your client tab (Claude Desktop, Claude Code, Cursor) and press Install — the config is generated automatically, no JSON editing.
Related MCPs
GitHub
PRs, issues, code search, CI status
by GitHubFilesystem
Secure file operations with configurable access controls.
Memory
Knowledge graph-based persistent memory system.
Template MCP Server
A CLI tool to create a new Model Context Protocol server project with TypeScript support, dual transport options, and an extensible structure
by mcpdotdirectCompare Claudit with
Not sure what to pick?
Find your stack in 60 seconds
Author?
Embed badge for your README
Browse similar
All development MCPs
