Select Branch

After picking the repository, choose the branch you want to scan. Use the dropdown and click "Next".

When to pin a commit hash

By default, AuditAgent scans the latest commit on the selected branch. You can also enter a specific commit hash when you need a reproducible scan. Common cases include scanning a release tag for an audit, comparing the same codebase before and after a fix, or wiring AuditAgent into a CI pipeline that targets a known commit.

Reproducible scans

A branch HEAD shifts as new commits land. A commit hash is permanent, so it's the right choice when you want the scan to be exactly reproducible months later.

Pick the contract language

The dropdown has three options.

solidity for EVM contracts
cairo for Starknet contracts
rust (solana) for Solana programs

The selection filters which files appear at the next step and tells the agent which language conventions to apply when reading the code. If you pick cairo but your repository only contains .sol files, the Scope step will show no contracts.

For more on each ecosystem, see Which ecosystems we support.

Select Branch

When to pin a commit hash​

Pick the contract language​

When to pin a commit hash

Pick the contract language