Hey Everybody! Sorry for the late response. I came with good news!
I finally finished the ScannerBot project.
And here is the presentation:
And here you can check the live demo: https://scannerbot.xyz/
2 Likes
Checked the video, thanks
Hi @strandgeek, after watching your demo video and the explanation, I discovered that you are using a language model instead to do a code analysis but not a Codex model. My question is, as language model is not optimum or suitable in this application, but why you still choose to apply it, and how you fine tune or using any pretrained LoRa (or other methods) to overcome this problem.
As when I throw the same question into ChatGPT, it do provide me the similar solution which in this case I can just use ChatGPT but not your project as it is much more mature in the space.
Hello @strandgeek ,
You have received an prize in your previous project, BlockMenu, but the latest questions about your project in the forum seem to remain unanswered. What do you plan to do differently to prevent this project from being like that? Good luck in advance
2 Likes
Thanks for you question @DreamVerser
Last days I was focused on finish the MVP for the ScannerBot and i didnāt have a chance de answer everyone here. But now, once the MVP is finished, I can answer everyone here.
Talking about my HackaTRON Season 4 (Previous) submission. I created BlockMenu thinking that the market today would be prepared to receive and adopt a restaurant app on Web3. It turns out that we still need to have much greater adoption in crypto/web3 so that we can get to the point where restaurants are interested in having this. Although I believe in the idea, I will leave this project on hold until the market is ready for it.
Meanwhile, I am dedicating all my resources (time and money) to technologies that are ready and necessary for the market. ScannerBot is one of them, a platform that has high potential for adoption, with its specific niche of companies and people that develop on TRON.
1 Like
Hi @fabsltsa ! Thanks for you question and for all your contributions on TRON ecosystem.
Yes, absolutely, having something like credits per use/pre-paid payment option would make sense on Business Model for ScannerBot.
As for now, Iām including a very cheap monthly plan with limited scans per month. That is because operational costs are usually calculated monthly: Infrastructure, Cloud Servers, etc. When we have a SaaS in place I can start thinking in other innovative payment options.
Hi @tanzhixuan.
The ScannerBot works first doing a Statical Analysis on code and then, doing an AI code analysis using GPT Models.
The Statical Analysis comes first because:
- Itās transparent and predictive: We know and we have a code for each vulnerability supported. (Itās not a black-box hidden in a AI Model)
- It has deterministic outputs
Here is the example for the Statical Analysis output:
When we have the Statical Analysis result, we finally scan the code using AI (GPT Models) to provide feedbacks, suggested changes to fix/improve the code and any additional comment related to the Smart Contract.
Here is the AI feedback from the provided Smart Contract + Statical Analysis result:
Iām not using Codex since the OpenAI marked it as deprecated as of March 2023 and they recommend the use of GPT models. (The GPT4 has really impressive results on Smart Contracts field)
All right, thanks for explanation. All the best! 
2 Likes
Very interesting and quite insightful. Keep it up
Is it really safe and assuring
Hi @strandgeek
Welcome & Thank You for Joining the S5 Hackathon!
Itās been great to see the community and your team engaging about your project - I also have a question in regards to the TRON AI ScannerBot.
Given the dynamic nature of smart contracts and their potential interactions with external contracts within the TRON ecosystem, how does the bot adapt its analysis to account for dynamic changes that may occur during the execution of smart contracts?
Hi @strandgeek
I see that you have dropped your previous block menu project? How do you plan on gaining traction for users to use the TRON AI scanner bot? What is your marketing/business plan?
1 Like
Such an excellent question I was also curious about that. Iāll be waiting their answers as well
1 Like
Hi @EMerchant
As for now (the Hackathon scope), the ScannerBot only scans the smart contract code, before the deployment.
Although, a feature to analyze the vulnerabilities on-chain is something that definitely can be added on the ScannerBot roadmap. Something that identify all the inner call to other contracts and checks the vulnerability of other contracts.
@WindsOfChange92 thanks for your question.
Smart Contract code analysis is really important to keep smart contract safe from vulnerabilities. (I would say that audit the code is a must before start any business in Web3). The main strategy is keep the project active on the dev community not only with educational content but also guides regarding how to fix vulnerabilities.
With a good network of developers, we can scale the ScannerBot.
I checked your project, interesting submission!
I think it would be nice to have at least one contract check done in the web interface.
As I see in the architecture I think it could work with more complex smart contracts.It would be lovely to have a demo on SunSwap smartContract :). Check them at https://github.com/sunswapteam/sunswap2.0-contracts/tree/main/contracts.
Congrats @strandgeek on the work done so far 
1 Like
I also wanted to add that itās good that you use docker as a tech stack
Thanks 
2 Likes
You have created a very diverse project based on AI. I had the opportunity to try it briefly before, I spent a lot of time tonight and I starred you to see this part as well. Iāll be following closely.
1 vote from us to you. Please keep moving forward 
1 Like
I donāt use tronbox for developing, what other options are there? Is it possible to upload code or have Tronide integration? Can I scan a contract already deployed on blockchain if the code is verified?
Right now I find usage very limited, compared to other code checking tools.
3 Likes
Hi @Sirluke,
TronBox is not required to run a scan. All you need is the solidity contracts files.
When I say ācompatible with TronBoxā is because I created the TVM solidity compiler executables using NodeJS + WebAssembly for each TRON solc version also used in TronBox. So, if you have TronBox and compile your code from there, you code can be scanned by ScannerBot. Probably the TronIDE also uses the same WebAssembly wrapper versions.
The ScannerBot was created entirely on the Hackathon Season 5 period. I would love to know which tool you are mentioning. Because from my research I didnāt find any smart contract code scanner in solidity that really deals with the TVM differences. All of them only scan solidity contracts taking EVM into account. And I managed to do this implementation, taking into account the specificities of TVM using the WebAssembly builds of the TRON Solidity Compiler. I will be grateful if you can share the names of the tools so that I can use them and plan the roadmap considering them.
Since the time was limited (due the hackathon duration), the scope was limited as well. And Iām looking forward to keep it up and improve the features and business model as well.
Thanks so much!