Skip to content

gitbankio/contracts

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
scripts
scripts
 
 
src
src
 
 
test
test
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
deployments.json
deployments.json
 
 
hardhat.config.ts
hardhat.config.ts
 
 
package.json
package.json
 
 
tsconfig.json
tsconfig.json
 
 

Repository files navigation

gitbank/contracts

Solidity smart contracts for Gitbank - soul-bound vault system on Base L2.

Contracts

Contract Description
GitVault Per-user vault. Holds real ERC-20 assets, issues soul-bound GitTokens as claim certificates.
GitVaultFactory Deploys vault clones via EIP-1167 minimal proxy pattern.
GitToken Non-transferable ERC-20. Represents a locked position. No transfer, approve, or allowance.

Deployed (Base Mainnet)

Contract Address
GitVaultFactory 0xAA0a4ff46733EBaE8E658642A1314f18980fc77B
GitVault impl 0x3602197A1b445AA4746c47C9D69436d9B7cF5dc9
Deployer / feeCollector 0x1e660A9A1f1F08AFEF9c03c96D66260122464CF2
relayerSigner 0x750E6E4C5DF3483a6235D3DDAB4087266D6EF510

Basescan: https://basescan.org/address/0xAA0a4ff46733EBaE8E658642A1314f18980fc77B#code

Deployed (Base Sepolia)

Contract Address
GitVaultFactory 0xe492ABc6ddFfa154451fC7c7E1CE6BEac826b54A
GitVault impl 0xa44532Ff0647a2016135843659576E06E8171847
Deployer / feeCollector 0x1e660A9A1f1F08AFEF9c03c96D66260122464CF2
relayerSigner 0x750E6E4C5DF3483a6235D3DDAB4087266D6EF510

Key design decisions

  • Dual-signature security - every state-changing vault call requires both the user execution keypair AND a short-lived ECDSA signature from the relayer (5-min deadline). A leaked execution key alone cannot drain the vault.
  • Soul-bound GitTokens - cannot be phished or drained via approval exploits
  • GitHub permanent user ID - vault identity anchored to immutable integer, survives username renames
  • Swap output whitelist - gitSwap can only output WETH or USDC, enforced on-chain
  • 2-step commit-reveal transfer - initTransfer + finalizeTransfer prevents front-running
  • EIP-1167 minimal proxy clones - cheap per-user vault deployment via factory

Prerequisites

  • Node.js 20+
  • pnpm 10+

Install

pnpm install

Compile

npx hardhat compile

Test

npx hardhat test

Deploy to Base Sepolia

cp .env.example .env
# fill in DEPLOYER_PRIVATE_KEY and BASE_SEPOLIA_RPC_URL
npx hardhat run scripts/deploy.ts --network base-sepolia

Environment variables

DEPLOYER_PRIVATE_KEY=       # 0x-prefixed private key
BASE_SEPOLIA_RPC_URL=       # Base Sepolia RPC endpoint
BASE_MAINNET_RPC_URL=       # Base mainnet RPC endpoint
BASESCAN_API_KEY=           # For contract verification
FEE_COLLECTOR_ADDRESS=      # Defaults to deployer if not set
RELAYER_SIGNING_ADDRESS=    # Public address of relayer signer key (passed to factory constructor)

Verify on Basescan

npx hardhat verify --network base-sepolia --constructor-args scripts/verify-args-factory.ts <factory-address>

License

Apache 2.0. See LICENSE.

About

Soul-bound vault smart contracts on Base L2

Resources

Readme

License

View license

Contributing

Contributing
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages