compound-protocol
openzeppelin-contracts
Our great sponsors
compound-protocol | openzeppelin-contracts | |
---|---|---|
16 | 234 | |
1,824 | 24,109 | |
0.5% | 1.7% | |
0.0 | 9.5 | |
5 months ago | 2 days ago | |
TypeScript | JavaScript | |
BSD 3-clause "New" or "Revised" License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
compound-protocol
- List of smart contracts to strengthen your Auditing skills
-
Deployment of the Compound Contract Bravo
https://github.com/compound-finance/compound-protocol/tree/master/contracts/Governance .
-
How to set max votes on DAO delegation?
I'm making an NFT crowdfunding protocol as a summer project and am using Compound Governance contract along with ERC20Votes to do so.
- 333
-
What protocols are doing with our money ?
I highly recommend you do two things, first, try and get a feel for the behavior of smart contracts, there are tools that can help with this, like the ones at blockchain.ey.com - you can get a free personal use account and has a pretty convenient smart contract and token explorer tool for Solidity, you just drop in the code from the protocol’s GitHub (like recommended above) and bam. Here’s Compound’s timelock contract as an example: https://github.com/compound-finance/compound-protocol/blob/master/contracts/Timelock.sol
- Testing governance functions?
-
Tranquil Finance FAQ's!
The Tranquil protocol smart contracts are forked from the Compound protocol with minimal changes. It is a deeply battle-tested and audited protocol with formal verification of its contracts.We plan to get audits for the Tranquil protocol as soon as possible.
- Where can I see solidity code of a audited DAO smart contract? If possible where the code is explained to some degree.
-
Cryptocurrency Loan Platform Implodes in $130M Hack
Yep however I don't think I'd consider it to quite the same extreme. No doubt it was bad however proportionally to the size of the platform Cream's exploit was far more damaging. Like the rekt.news post mentions, it was more of a banking/spec error than an outright vulnerability. Your spec can't protect you if the loss is due to intended behaviour. There are ways to mitigate this however. The main way is by making your spec concise and clearly representable as a series of state transitions & operations or as a series of transformations.
The Compound Finance paper spec essentially just lists "this subsystem does these things" and then each function/operation is a list of preconditions, what actions are taken in what conditions, and the expected result. This isn't bad per se but it's not great either. Instead the paper spec really should be showing what transformation is being applied to the state, why we want that transformation applied, what properties must hold throughout the transformation, and then demonstrating that those properties hold.
Compare this (Compound):
https://github.com/compound-finance/compound-protocol/blob/m...
-
Forta is thrilled to announce that we’ve partnered with Compound Grants to bring you our first Agent Development contest!
Provide alert for 10% or more change in Utilization Rate within a 60 minute window in a given pool.
openzeppelin-contracts
-
Mode - Comprehensive Starter Guide
// SPDX-License-Identifier: GPL-3.0 pragma solidity ^0.8.20; import "https://github.com/OpenZeppelin/openzeppelin-contracts/blob/v5.0.0/contracts/token/ERC20/ERC20.sol"; interface Sfs { function register(address _recipient) external returns (uint256 tokenId); } contract ModeToken is ERC20 { address feeReceiver = msg.sender; constructor() ERC20("ModeTokenSFSTest", "SFST2") { //Example amount to mint our ERC20 _mint(msg.sender, 1000 10 * 18); // This is the SFS contract address on testnet Sfs sfsContract = Sfs(0xBBd707815a7F7eb6897C7686274AFabd7B579Ff6); //Registers this contract and assigns the NFT //to the deployer of this contract sfsContract.register(msg.sender); } }
-
Blockchain transactions decoding: making wallet activity understandable
Lets look the events of Open Zeppelin’s ERC20 token contract:
- Construir e implementar un VAULT (bóveda) ERC20 en Shardeum
-
Are ERC-777 Unsafe?
ERC-777 is difficult to implement properly, due to its susceptibility to different forms of attack(opens in a new tab). It is recommended to use ERC-20 instead. This page remains as a historical archive.
- OpenZeppelin is trying to avoid paying a bounty for a vulnerability that caused $1,1B worth of assets freeze
- Security improvements of the ERC20 token standard
- Ethereums most used token standard ERC20 requires security enhancements
- The most used Ethereums token standard (ERC20) requires a security patch.
What are some alternatives?
cosmos - Internet of Blockchains ⚛
solmate - Modern, opinionated, and gas optimized building blocks for smart contract development.
verified-smart-contracts - Smart contracts which are formally verified
hardhat - Hardhat is a development environment to compile, deploy, test, and debug your Ethereum software.
security - Some of my security stuff and vulnerabilities. Nothing advanced. More to come.
ERC721A - https://ERC721A.org
verified-smart-contra
Safemoon.sol - safemoon contract
security - Materials related to security: docs, checklists, processes, etc...
solidity - Solidity, the Smart Contract Programming Language
publications - Publications from Trail of Bits
truffle - :warning: The Truffle Suite is being sunset. For information on ongoing support, migration options and FAQs, visit the Consensys blog. Thank you for all the support over the years.