Stats
Actions
Tags
From openzeppelin-skills
Sets up Starknet Cairo smart contract projects: scaffolds with Scarb/starknet-foundry, adds OpenZeppelin deps to Scarb.toml, covers imports and components.
How this skill is triggered — by the user, by Claude, or both
Slash command
/openzeppelin-skills:setup-cairo-contractsThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Install toolchain and create a project:
Install toolchain and create a project:
curl --proto '=https' --tlsv1.2 -sSf https://sh.starkup.sh | sh
scarb new my_project --test-runner=starknet-foundry
This scaffolds a complete Starknet project with snforge testing preconfigured.
Look up the current version from https://docs.openzeppelin.com/contracts-cairo before adding. Add to Scarb.toml:
Full library (umbrella package):
[dependencies]
openzeppelin = "<VERSION>"
Individual packages (faster builds — only compiles what you use):
[dependencies]
openzeppelin_token = "<VERSION>"
openzeppelin_access = "<VERSION>"
Available individual packages: openzeppelin_access, openzeppelin_account, openzeppelin_finance, openzeppelin_governance, openzeppelin_interfaces, openzeppelin_introspection, openzeppelin_merkle_tree, openzeppelin_presets, openzeppelin_security, openzeppelin_token, openzeppelin_upgrades, openzeppelin_utils.
openzeppelin_interfacesandopenzeppelin_utilsare versioned independently. Check the docs for their specific versions. All other packages share the same version.
The import path depends on which dependency is declared:
openzeppelin = "..."): use openzeppelin:: as the rootopenzeppelin_token = "..."): use the package name as the root// Individual packages
use openzeppelin_token::erc20::{ERC20Component, ERC20HooksEmptyImpl};
use openzeppelin_access::ownable::OwnableComponent;
use openzeppelin_upgrades::UpgradeableComponent;
// Umbrella package equivalents
use openzeppelin::token::erc20::{ERC20Component, ERC20HooksEmptyImpl};
use openzeppelin::access::ownable::OwnableComponent;
use openzeppelin::upgrades::UpgradeableComponent;
Components are integrated via the component! macro, embedded impls, and substorage:
component!(path: ERC20Component, storage: erc20, event: ERC20Event);
#[abi(embed_v0)]
impl ERC20MixinImpl = ERC20Component::ERC20MixinImpl<ContractState>;
impl ERC20InternalImpl = ERC20Component::InternalImpl<ContractState>;
npx claudepluginhub openzeppelin/openzeppelin-skills --plugin openzeppelin-skillsAuthors Cairo smart contracts on Starknet, including storage, events, interfaces, and OpenZeppelin component composition with security patterns.
Upgrades Cairo smart contracts on Starknet using OpenZeppelin's UpgradeableComponent via replace_class_syscall. Covers class model vs EVM proxies, access control, storage compatibility, and testing.
Scans Cairo/StarkNet smart contracts for 6 critical vulnerabilities: felt252 arithmetic overflow, L1-L2 messaging issues, address conversion problems, signature replay, and storage collisions.