Detector Intelligence

Vyper Guard detector catalog

Detector definitions are aligned to the current upstream references and implementation. Some checks use context-aware severity (for example, access-control-aware downgrades).

Critical

2

High

8

Medium

0

Low

2

missing_nonreentrantCRITICAL

Missing @nonreentrant

Flags external value transfer paths without reentrancy guard (can downgrade with strong access control).

Reentrancy

unsafe_raw_callHIGH

Unsafe raw_call

Detects raw_call usage without robust return-value checks.

External Call

missing_event_emissionLOW

Missing Event Emission

State-changing external functions with no event emission for observability.

Code Quality

timestamp_dependenceLOW

Timestamp Dependence

Finds short-window logic dependent on block.timestamp (timelock contexts are suppressed).

Timestamp

integer_overflowHIGH

Unsafe Arithmetic

Detects unsafe_* arithmetic usage that bypasses Vyper overflow protections.

Arithmetic

unprotected_selfdestructCRITICAL

Unprotected selfdestruct

Detects selfdestruct paths without explicit authorization checks.

Self-Destruct

dangerous_delegatecallHIGH

Dangerous delegatecall

Flags delegatecall patterns that may escalate to critical risk when unguarded.

Delegate Call

unprotected_state_changeHIGH

Unprotected State Change

Sensitive state writes without sufficient access control validation.

Access Control

send_in_loopHIGH

Value Transfer in Loop

send/raw_call inside loops that can cause denial-of-service behavior.

Denial of Service

unchecked_subtractionHIGH

Unchecked Subtraction

State subtraction paths missing clear precondition/underflow guards.

Input Validation

cei_violationHIGH

CEI Violation

External interaction occurs before state effects (Checks-Effects-Interactions violation).

Reentrancy

compiler_version_checkHIGH

Compiler Version Advisory

Checks pragma against known Vyper compiler advisories (HIGH/INFO depending on context).

Compiler Bug

Detector capability matrix

Confidence, suppression, and remediation metadata mirror upstream detector documentation and implementation behavior.

Smart Suppression

7/12

Dynamic Severity

3/12

Auto-Fix Full

8/12

Advisory/Partial

4/12

DetectorConfidenceSmart SuppressionDynamic SeverityAuto-Fix Profile
missing_nonreentrantHIGH/MEDIUMYesYesFULL
unsafe_raw_callMEDIUMYesNoFULL
missing_event_emissionMEDIUMNoNoFULL
timestamp_dependenceMEDIUMYesNoADVISORY
integer_overflowHIGHYesNoPARTIAL
unprotected_selfdestructHIGHNoNoFULL
dangerous_delegatecallHIGH/MEDIUMNoYesFULL
unprotected_state_changeHIGHNoNoFULL
send_in_loopHIGHYesNoADVISORY
unchecked_subtractionMEDIUMYesNoFULL
cei_violationHIGHNoNoADVISORY
compiler_version_checkHIGHYesYesFULL