Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Payroll Aragon app #4

Open
sohkai opened this issue May 8, 2019 · 2 comments

Comments

2 participants
@sohkai
Copy link
Member

commented May 8, 2019

Payroll app

Description: Employee payroll, by the block, in any token.

Notes:

  • Delegates price information for tokens to an external IFeed contract
    • Price feed can be implemented either through a user-controlled server ("Passive Price Feed", see below), or as an on-chain mirror of an oracle like DAI's
  • Includes functionality for adding reimbursements and employee bonuses
  • Interacts with an installed Finance app (and therefore a Vault app as well) to create recurring salary accounts that employees can withdraw from

Contracts:

Status: Ready to review, will include a more complete spec and threat model assumption before audit starts.

@LouisGrx LouisGrx added this to New Requests in Security review pipeline May 8, 2019

@LouisGrx LouisGrx moved this from New Requests to AA Prioritization / Review in Security review pipeline May 8, 2019

@maurelian

This comment has been minimized.

Copy link

commented May 10, 2019

@sohkai do you feel the need for a formal report, with the whole initial and mitigations phase?
Or would handling this a bit more like the whole late/great 'ongoing support' thing work, in which we review for a week, then submit issues in the repo?

@LouisGrx LouisGrx moved this from AA Prioritization / Review to External Review in Security review pipeline May 13, 2019

@LouisGrx LouisGrx moved this from External Review to AA Prioritization / Review in Security review pipeline May 13, 2019

@LouisGrx LouisGrx moved this from AA Prioritization / Review to External Review in Security review pipeline May 13, 2019

@sohkai

This comment has been minimized.

Copy link
Member Author

commented May 13, 2019

@maurelian I mentioned this privately, but for the sake of the AA it would likely help to have a breakdown of the differences in cost between the two.

In this case, because Payroll will handle direct funds and is what I'd consider to be a fairly sensitive contract for both the organization and its employees, I'd favour a more formal approach cc @LouisGrx

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.