// the find
thirdweb-dev/contracts
Collection of smart contracts deployable via thirdweb
A large library of production-ready Solidity contracts from the thirdweb team, covering ERC20/721/1155 tokens, drops, marketplaces, and ERC-4337 smart accounts. Designed to be deployed as-is via the thirdweb platform or inherited as building blocks in your own contracts. The target user is a web3 developer who wants audited token/NFT contracts without writing everything from scratch.
15+ third-party audits with PDFs committed to the repo — unusually thorough for a contract library of this size. The extension/base/prebuilt layering is well thought out: you can grab just the Drop extension without pulling in the whole stack. ERC721A integration for gas-efficient batch minting is a good default choice. The upgradeable variants use diamond-style storage patterns correctly, avoiding the storage collision bugs that plagued earlier proxy approaches.
Heavy vendor lock-in: the prebuilt contracts have thirdweb platform fees and registry assumptions baked in at the contract level, not just the SDK level, which means forking them cleanly requires auditing what you're removing. The external-deps directory vendors OpenZeppelin and Chainlink rather than importing them as packages — you lose upstream security patches unless you manually diff and update. Smart account (ERC-4337) contracts are present but the README barely mentions them, and there's no documented paymaster setup, so you're on your own for the interesting part. The repo mixes 'use via our platform' contracts with 'inherit this yourself' contracts in a way that isn't always obvious until you read the fee logic.