veil — terminal-first tool that decodes, simulates, and risk-checks EVM transactions before you sign

Post original

I've been building veil-cli — an open-source, terminal-first security tool for EVM users. The goal is simple: before signing a transaction, you should be able to understand what it actually does. Unlike Etherscan or Tenderly, veil runs locally, requires no browser, and chains decode → simulate → risk into one CLI flow. Current MVP features: veil decode Decodes calldata into a human-readable function call. ABI resolution flow: Etherscan → Sourcify → 4byte.directory fallback veil approvals Scans active ERC-20 / ERC-721 approvals from event logs and flags unlimited ( MaxUint256 ) allowances veil simulate Forks the chain locally with Anvil, executes the transaction, and shows balance diffs before broadcasting veil risk Runs on-chain heuristics (proxy detection, bytecode checks, EOA detection, etc.) alongside GoPlus Security API checks and returns a risk report with flags veil explain Interactive Ink TUI for exploring the risk report — drill down into each flag with context and on-chain evidence Stack: TypeScript, viem, Ink, Commander.js, Foundry/Anvil Planned next: veil wallet import Encrypted local keystore support (password-protected) veil send Full flow: decode → risk check → confirm [y/N] → sign → broadcast → wait for receipt Security model write-up Key handling, storage guarantees, and threat model I'd especially love feedback on the simulation flow and risk engine architecture — those are the parts I'm iterating on most right now. [github.com/summusforge-lab/veil-cli]   submitted by   /u/Economy_Hamster_8645 [link]   [comments]