SkillAgentSearch skills...

PRSpec

AI-powered CI checks for Ethereum spec compliance. Catches spec↔code mismatches before they hit mainnet. Built by Safi El-Hassanine | AI-powered CI guardian for Ethereum protocol specs.

GenerateConvertImprove

Install / Use

/learn @Fosurero/PRSpec
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

PRSpec

Ethereum specification compliance checker: Compares EIP specs against client source code using LLM analysis.

CI Python 3.9+ License: MIT Powered by: Gemini Support on Giveth

PRSpec fetches official EIP documents (plus execution and consensus specs from the Ethereum repos), pulls the corresponding implementation files from multiple Ethereum clients (go-ethereum, Nethermind, Besu), and sends both to a large-context LLM (Gemini 2.5 Pro or GPT-4) to find deviations, missing checks, or edge cases.

Real-world validation: PRSpec flagged Nethermind's FeeCollector property as a deviation from EIP-1559's mandatory fee burn. A Nethermind core developer confirmed the finding, noting it is a chain-specific extension that "could be refactored better." (Issue #10522)

Ethereum Foundation engagement: The execution-specs team provided architectural guidance on using fork-to-fork diffs for EIP boundary detection — directly improving PRSpec's spec extraction pipeline. (Issue #2212)

This project is being developed under the Ethereum Foundation ESP program for Integrating LLMs into Ethereum Protocol Security Research. See GRANT_PROPOSAL.md for the full proposal.

<details> <summary><b>Table of Contents</b></summary>

  Demo Video · Screenshots · Supported EIPs & Clients · Quick start · CLI usage · Configuration · Project layout · Example output · Running tests · API usage · Contributing · Security · Changelog · Roadmap

</details>

Screenshots

CLI Analysis

<img src="docs/cli-analysis.svg" alt="PRSpec CLI running EIP-1559 analysis" width="100%">

Report Overview

<img src="docs/report-overview.svg" alt="PRSpec compliance report overview" width="100%">

Detailed Findings

<img src="docs/report-details.svg" alt="PRSpec detailed issue findings" width="100%">

Multi-Client Analysis (Phase 2)

<img src="docs/multi-client-analysis.svg" alt="PRSpec multi-client analysis — Nethermind C# and Besu Java" width="100%">

Demo Video

Video ▶️ Watch on Youtube

Version 1.3 Terminal Video Demo ▶️ Watch on ASCiinma

Supported EIPs & Clients

Clients

| Client | Language | EIPs supported | Repo | |--------|----------|---------------|------| | go-ethereum | Go | 1559, 4844, 4788, 2930 | ethereum/go-ethereum | | Nethermind | C# | 1559, 4844 | NethermindEth/nethermind | | Besu | Java | 1559, 4844 | hyperledger/besu |

EIPs

| EIP | Title | Specs fetched | Files per client | Key focus areas | |-----|-------|---------------|------------------|-----------------| | 1559 | Fee market change | EIP + execution | geth 5 · nethermind 5 · besu 5 | base fee, gas limit, fee cap, state transition | | 4844 | Shard Blob Transactions | EIP + execution + consensus | geth 5 · nethermind 5 · besu 5 | blob gas, KZG, max blobs, sidecar, tx pool | | 4788 | Beacon block root in EVM | EIP + execution | geth 1 | beacon root | | 2930 | Optional access lists | EIP + execution | geth 2 | access list validation | | 7002 | Execution layer withdrawals | EIP + execution | spec only | withdrawal requests | | 7251 | Increase MAX_EFFECTIVE_BALANCE | EIP + consensus | spec only | consolidation |

Run python -m src.cli list-eips to see the live registry.

Quick start

# clone and set up
git clone https://github.com/Fosurero/PRSpec.git
cd PRSpec
python -m venv venv && source venv/bin/activate
pip install -r requirements.txt

# add your API key
cp .env.example .env
# edit .env → GEMINI_API_KEY=your_key_here

# run the demo
python run_demo.py              # EIP-1559 by default
python run_demo.py --eip 4844   # EIP-4844
python run_demo.py --test       # quick API check

Get a Gemini key at https://makersuite.google.com/app/apikey

CLI usage

# full analysis → produces JSON/Markdown/HTML reports
python -m src.cli analyze --eip 1559 --client go-ethereum --output html

# analyze Nethermind (C#) or Besu (Java) instead
python -m src.cli analyze --eip 1559 --client nethermind --output html
python -m src.cli analyze --eip 4844 --client besu --output html

# other commands
python -m src.cli fetch-spec --eip 4844
python -m src.cli list-files --client go-ethereum --eip 4844
python -m src.cli list-eips
python -m src.cli check-config

Configuration

config.yaml

llm:
  provider: gemini

  gemini:
    model: gemini-2.5-pro
    max_output_tokens: 8192
    temperature: 0.1

  openai:
    model: gpt-4-turbo-preview
    max_tokens: 4096
    temperature: 0.1

eips:
  1559:
    focus_areas:
      - base_fee_calculation
      - gas_limit_validation
      - fee_cap_check
  4844:
    focus_areas:
      - blob_gas_price
      - kzg_commitment
      - max_blobs_per_block
      - sidecar_validation

Environment variables

| Variable | Required | Description | |----------|----------|-------------| | GEMINI_API_KEY | Yes (Gemini) | Google API key | | OPENAI_API_KEY | Yes (OpenAI) | OpenAI key | | GITHUB_TOKEN | No | Higher GitHub rate limits | | LLM_PROVIDER | No | Override default provider |

Project layout

src/
  config.py            – YAML + env config loader
  spec_fetcher.py      – EIP registry, spec fetching (EIP/execution/consensus)
  code_fetcher.py      – Per-client per-EIP file registry, code fetching
  parser.py            – Go/Python/C#/Java parsing, EIP keyword matching
  analyzer.py          – Gemini / OpenAI analysis, JSON response parsing
  report_generator.py  – JSON, Markdown, HTML report output
  cli.py               – Click CLI
tests/
  test_eip1559.py
  test_eip4844.py
  test_multi_client.py – Nethermind/Besu registry + C#/Java parser tests
config.yaml
pyproject.toml         – Package metadata, dependencies, linter config
run_demo.py
CONTRIBUTING.md
SECURITY.md
LICENSE

Example output

{
  "status": "PARTIAL_MATCH",
  "confidence": 85,
  "issues": [
    {
      "type": "EDGE_CASE",
      "severity": "MEDIUM",
      "description": "Edge case when gas used equals target not explicitly handled",
      "suggestion": "Add explicit equality check"
    }
  ],
  "summary": "Implementation mostly compliant with minor edge case gaps."
}

Reports are written to the output/ directory in all three formats.

Running tests

python -m pytest tests/ -v

# with coverage
python -m pytest tests/ --cov=src

API usage

from src.config import Config
from src.analyzer import GeminiAnalyzer
from src.spec_fetcher import SpecFetcher
from src.code_fetcher import CodeFetcher

config = Config()
analyzer = GeminiAnalyzer(api_key=config.gemini_api_key)

spec_fetcher = SpecFetcher()
code_fetcher = CodeFetcher()

spec = spec_fetcher.fetch_eip_spec(4844)
files = code_fetcher.fetch_eip_implementation("go-ethereum", 4844)

result = analyzer.analyze_compliance(
    spec_text=spec["eip_markdown"],
    code_text=files["core/types/tx_blob.go"],
    context={"eip_number": 4844, "language": "go"},
)

print(result.status, result.confidence)
for issue in result.issues:
    print(f"  [{issue['severity']}] {issue['description']}")

Library API (Engine)

PRSpec can also be used as a Python library for programmatic scanning. The engine module discovers source files and identifies EIP-relevant code blocks without requiring LLM API keys.

from src.engine import scan_path

result = scan_path("path/to/client/source", ruleset="ethereum")

print(f"Scanned {result['summary']['files_scanned']} files")
print(f"Found {len(result['findings'])} EIP-relevant code blocks")

for finding in result["findings"]:
    print(f"  [{finding['severity']}] {finding['title']}")
    print(f"    {finding['file']}:{finding['line']} — {finding['message']}")

The returned dict has the structure:

{
  "tool": "PRSpec",
  "tool_version": "1.4.0",
  "ruleset": "ethereum",
  "findings": [{"id", "severity", "title", "message", "file", "line", "hint"}],
  "summary": {"high": 0, "med": 0, "low": 0, "info": 5, "files_scanned": 12}
}

Contributing

Contributions are welcome! See CONTRIBUTING.md for guidelines on:

  • Adding new EIP file mappings
  • Adding new client support (Prysm, Lighthouse, etc.)
  • Parser improvements
  • Report enhancements

Security

PRSpec is a security research tool. See SECURITY.md for:

  • Vulnerability reporting process
  • API key handling
  • Data handling policies
  • LLM provider trust considerations

Changelog

v1.4.0 (2026-02-14)

  • Multi-client support: Nethermind (C#) and Besu (Java) alongside go-ethereum (Go)
  • EIP-1559 and EIP-4844 file mappings for all three clients (5 files each)
  • C# and Java regex parsers with class + method extraction
  • 25 new tests covering registry,

Related Skills

next

A beautifully designed, floating Pomodoro timer that respects your workspace.

product-manager-skills

50

PM skill for Claude Code, Codex, Cursor, and Windsurf: diagnose SaaS metrics, critique PRDs, plan roadmaps, run discovery, and coach PM career transitions.

devplan-mcp-server

3

MCP server for generating development plans, project roadmaps, and task breakdowns for Claude Code. Turn project ideas into paint-by-numbers implementation plans.

Fosurero

View profile

View on GitHub
GitHub Stars13
CategoryProduct
Updated1mo ago
Forks0
Fosurero/PRSpec

Languages

Python

Security Score

90/100

Audited on Feb 22, 2026

No findings