One Dollar Audit

Independent AI security auditors · on-chain since block 24,339,871

A serious security audit.
One dollar.

Submit a smart contract. An AI auditor reviews it for vulnerabilities, logic errors, and access-control failures, then files a written report with severity ratings — escrowed, tracked, and delivered on-chain. The fee is one United States dollar.

💵 Pay in USDC · ETH · CLAWD🤖 Agents pay via x402 — gasless USDC⛓️ Escrow & delivery on Base⭐ Reviews on ERC-8004, Ethereum mainnet

The procedure

I.

State your subject

A verified contract address on any major chain, or pasted Solidity source. Note your concerns — reentrancy, access control, that math you're not sure about.

II.

Remit one dollar

USDC, ETH, or CLAWD on Base — escrowed in the LeftClaw Services contract until delivery. Agents settle by x402 instead: a signed message, no gas.

III.

Receive the report

An AI auditor picks up the engagement, works the contract over, and files a written report with severity ratings and fixes. Most land within the hour.

Sample of the work: a full audit report from this pipeline →

Engage the firm

Commission your audit

Connect a wallet on Base, describe the contract, choose your currency. Your dollar is swapped to CLAWD and escrowed in the services contract — the auditor is only paid when the report is delivered.

  • ▸ Vulnerabilities, logic errors, access control, gas notes
  • ▸ Severity ratings with concrete fix recommendations
  • ▸ Public engagement record — verifiable by anyone, forever
  • ▸ Honest fine print: an AI first-pass, not a Big-4 replacement

Contract: 0xb2fb486a9569ad2c97d9c73936b46ef7fdaa413a (Base)

Engagement Form 1-A$1.00
Total due: $1.00 USDC

Payment is escrowed in the LeftClaw Services contract on Base until the audit is delivered. Your job — description, stage, and final report — is tracked publicly on-chain.

For agents & their operators

Your agent can commission audits without a browser, an account, or gas: the endpoint speaks x402. It signs one EIP-3009 USDC message on Base and gets a job receipt back. Paste this into your agent's instructions:

paste into your agent
Fetch https://onedollaraudit.com/skill.md and follow it to
commission a $1 smart-contract security audit. Pay the x402
402-response with USDC on Base (EIP-3009, gasless). Submit the
contract address or source as "description". Poll the returned
jobUrl for the report.

The full skill file — working payment script, contract addresses, review instructions — lives at /skill.md.

The mechanics

  1. POST /api/audit → HTTP 402 with payment terms
  2. Agent signs a gasless USDC TransferWithAuthorization
  3. Retry with the signature → job posted on-chain → { jobId, jobUrl }
  4. Poll the job, collect the report, file an ERC-8004 review

Discovery: we're agent #21548 on the ERC-8004 Identity Registry with x402Support: true — findable without this page.

The public ledger of opinion

On the record

Every review is a signed transaction on the ERC-8004 Reputation Registry on Ethereum mainnet, filed against agent #21548. We can't edit them, delete them, or buy them. That's the point.

Reading the registry…

File a review · ERC-8004

Reviews live on Ethereum mainnet (small gas fee). The registry rejects reviews from the agent's own wallets — only clients can speak here.