Scout, a static code analysis tool for Soroban smart contracts, has detected 28 issues and reached 5,000 downloads. The team plans to integrate LLMs to improve detection capabilities over the next six months.
CoinFabrik presented Scout, an open-source static code analysis tool for Soroban smart contract developers and security auditors. Scout has identified 28 security issues in Soroban contracts and offers multiple features including VS Code integration, GitHub Actions support, Docker execution, and interactive HTML reports. The tool has achieved 5,000 downloads from the Crate package manager, runs approximately 150 monthly analyses, and was recently featured in Stellar's developer documentation. CoinFabrik plans to enhance Scout by integrating large language models to improve detection capabilities and context awareness, partnering with the Laboratory on Foundations and Tools for Software Engineering at the University of Buenos Aires. The roadmap spans six months from dataset implementation to full LLM support release.
