Skip to content

tbrent/yield-utils-v2

 
 

Repository files navigation

YieldToken

YieldToken is an implementation of zero-coupon Dai bonds. It is inspired by the paper "The Yield Protocol: On-Chain Lending With Interest Rate Discovery" by Dan Robinson and Allan Niemerg.

These smart contracts have been deployed to Kovan and the Mainnet, and a web frontend is deployed at http://app.yield.is

Detailed documentation can be found in the Yield docs.

Warning

This code is provided as-is, with no guarantees of any kind.

Install

Pre Requisites

Before running any command, make sure to install dependencies:

$ yarn

Lint Solidity

Lint the Solidity code:

$ yarn lint:sol

Lint TypeScript

Lint the TypeScript code:

$ yarn lint:ts

Coverage

Generate the code coverage report:

$ yarn coverage

Test

Compile and test the smart contracts with Buidler and Mocha:

$ yarn test

Fuzz

npx hardhat flatten contracts/token/ERC20.sol | sed 's/.*SPDX.*$//g' > contracts/token/ERC20.flat.sol
scribble --arm contracts/token/ERC20.flat.sol --output-mode files
mythx --api-key `cat .mythxKey` analyze contracts/token/ERC20.flat.sol --solc-version 0.8.1
scribble --disarm contracts/token/ERC20.flat.sol
rm contracts/token/ERC20.flat.sol

Start a local blockchain

We use ganache as a local blockchain:

$ yarn ganache

Start a local copy of the mainnet blockchain

We use ganache to fork the mainnet blockchain:

$ yarn mainnet-ganache

Migrate

We use truffle for migrations, make sure that truffle-config.js suits your use case, start a local ganache instance as explained above, and then run truffle:

$ npx truffle migrate

or

$ npx truffle migrate --network mainnet-ganache

Math

In developing fyDai we have used two different libraries for fixed point arithmetic.

Security

In developing the code in this repository we have set the highest bar possible for security. We have been fully audited by Trail of Bits, with the results publicly available. We have also used fuzzing tests for the Pool and YieldMath contracts, allowing us to find edge cases and vulnerabilities that we would have missed otherwise.

Bug Bounty

Yield is offering bounties for bugs disclosed to us at security@yield.is. The bounty reward is up to $25,000, depending on severity. Please include full details of the vulnerability and steps/code to reproduce. We ask that you permit us time to review and remediate any findings before public disclosure.

Contributing

This project doesn't include any governance or upgradability features. If you have a contribution to make, please reach us out on Discord and we will consider it for a future release or product.

Acknowledgements

We would like to thank Dan Robinson (Paradigm), Georgios Konstantopoulos (Paradigm), Sam Sun (Paradigm), Mikhail Vladimirov (ABDK), Gustavo Grieco (Trail of Bits), Martin Lundfall (dAppHub) and Noah Zinsmeister (Uniswap) for their feedback and advice. We wouldn't be here without them.

License

All files in this repository are released under the GPLv3 license.

About

Utility contracts for Yield v2

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Solidity 55.3%
  • TypeScript 44.6%
  • JavaScript 0.1%