These tools are called automatically by your AI assistant based on your prompts. You do not need to call them directly. HiAUDIT exposes 15 tools total — 9 for smart contracts and 6 for web application code.
Solidity / Solana tools (9)
| Tool | Purpose |
|---|---|
hiauditagent_analyze | Run static analysis and return a compact summary of findings. |
hiauditagent_finding_details | Get full details, code snippets, and fix suggestions for a specific finding. |
hiauditagent_detectors | List all available security detectors with names and severities. |
hiauditagent_related_functions | Build a call graph (Mermaid) for a function, showing callers and callees. |
hiauditagent_contract_summary | Summarize a contract’s or program’s structure and interface. |
hiauditagent_storage_layout | Analyze the storage slot layout for upgrade safety. |
hiauditagent_access_control | Map permissions and flag unprotected functions. |
hiauditagent_inheritance_graph | Generate a dependency and inheritance diagram. |
hiauditagent_gas_report | Run focused gas (or compute-unit) optimization analysis. |
For Solana projects, each tool auto-detects the chain and dispatches to its Solana-specific implementation (account validation, CPI mapping, PDA handling, and more).
Web application tools (6)
| Tool | Purpose |
|---|---|
hiauditagent_web2_analyze | 4-phase detection across 11 languages (JS, TS, Python, Go, Rust, COBOL, and more). |
hiauditagent_web2_finding_details | Detailed findings with CWE / OWASP mappings, confidence scores, and code snippets. |
hiauditagent_web2_detectors | List all web application security detectors with descriptions and severity levels. |
hiauditagent_web2_taint | Source-to-sink data flow tracking across 12 frameworks. |
hiauditagent_web2_security | OWASP Top 10 2025 compliance and posture scoring. |
hiauditagent_web2_errors | Error-handling gap analysis (empty catch blocks, swallowed exceptions). |
Related
- Smart contract prompts and Web application prompts show which prompts trigger these tools.