Skip to content

brainblast v0.7.0 — the Solana power release

Choose a tag to compare

View all tags
@DSB-117 DSB-117 released this 18 Jun 00:04
· 6 commits to main since this release
v0.7.0
48993ad
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Six features that extend brainblast from "audit before you ship" to a full-lifecycle safety layer for Solana developers and AI agents. Each ships a CLI command and a programmatic export so agent frameworks can call it inline.

AI-agent transaction firewall — brainblast firewall <base64-tx>

Inspect a serialized Solana transaction before an agent signs it. Decodes legacy + v0 messages (incl. address lookup tables) locally, flags drain patterns (delegate Approve, SetAuthority, program upgrades, unknown programs), optionally simulates for the full CPI tree, and returns allow / warn / block. Exit 1 on block. inspectTransaction() for inline use.

Anchor IDL → auto-generated rules — brainblast idl-rules <idl.json>

Turns any Anchor IDL into a brainblast rule that verifies the program's Rust source actually declares every signer/mut account constraint the IDL promises. A missing Signer<'info> or mut is a silent authorization hole. Unlimited rules derived from your own program's spec.

Program trust score / oracle — brainblast score <program-id>

A 0–100 trust score + A–F grade for any deployed program: upgrade authority (renounced > DAO > multisig > single-key), verified build, audits, curation, cluster parity — with a transparent factor breakdown. --min gates CI; --json makes it an oracle other tools can consume.

Live on-chain monitoring — brainblast watch-chain <program-id>

Moves brainblast from "before you ship" to while it's live. Polls a deployed program and streams NDJSON anomalies: upgrade-authority changes (the headline event) and activity bursts. No websocket dependency.

Launch pre-flight — brainblast pump-check <mint>

For pump.fun / SPL builders. Reads the on-chain mint account (is the mint authority revoked? the freeze authority?), verifies identity, and folds in Rico Maps forensics into one GO / CAUTION / NO-GO verdict. A live mint authority is an automatic NO-GO.

Batch token risk scanner — brainblast batch <file>

Risk-rank a list of contract addresses in parallel (identity + Rico Maps), impersonators floated to the top. For curating which tokens an app should support.

330 tests (268 baseline + 62 new), typecheck clean, SLSA-provenance build. No new runtime dependencies — the Solana message decoder and SPL mint / BPF-loader layout parsers are hand-written; @solana/web3.js stays test-only.

5 new agent slash commands: /brainblast-firewall, /brainblast-score, /brainblast-pump-check, /brainblast-batch, /brainblast-idl-rules.

Install / update

curl -fsSL https://raw.githubusercontent.com/DSB-117/brainblast/v0.7.0/install.sh | sh
Assets 2
Loading