A Next.js-based web application for analyzing and visualizing vulnerabilities in Solidity smart contracts. Mandoscan provides an interactive interface for detecting security issues, viewing control flow graphs, and examining detailed vulnerability reports.

Mandoscan is a comprehensive smart contract security analysis tool built with Next.js 15, React, and Tailwind CSS. It enables developers to upload Solidity smart contracts, analyze them for vulnerabilities, and visualize the results through interactive graphs and detailed reports.

• Framework: Next.js 15.1.5
• Language: TypeScript 5.9.3
• Styling: Tailwind CSS 4.1.14
• UI Components: @heroui/react
• Authentication: react-oidc-context with AWS Cognito
• Visualization:
  • react-force-graph-3d for graph visualization
  • react-syntax-highlighter for code display
• Code Quality: ESLint, Prettier

• Node.js 18+
• npm, yarn, or pnpm package manager

1. Clone the repository:

git clone [email protected]:MANDO-Project/mandoscan.git
cd mandoscan

2. Install dependencies:

npm install
# or
yarn install
# or
pnpm install

3. Configure environment variables (if needed):

# Create .env.local file for environment-specific settings

Run the development server:

npm run dev
# or
yarn dev
# or
pnpm dev

Open http://localhost:3000 to view the application.

The development server includes:

• Hot module replacement for instant updates
• Fast refresh for component changes
• TypeScript type checking

npm run build
# or
yarn build
# or
pnpm build

The static site will be exported to the mando-tool directory (configured as distDir in next.config.mjs), and the final static export will be in the out directory.

After building, you can serve the static export:

npx serve out
# or use any static file server