add pyth-connecor example (#57)

* add pyth-connecor example

Signed-off-by: master_jedy <yura.zarudny@gmail.com>

* update readme & fix comment

Signed-off-by: master_jedy <yura.zarudny@gmail.com>

* debug proxy op, add proxy op test, update readme

Signed-off-by: master_jedy <yura.zarudny@gmail.com>

---------

Signed-off-by: master_jedy <yura.zarudny@gmail.com>

Author: masterjedy

price_feeds/ton/pyth-connector/.gitignore

@@ -0,0 +1,5 @@
+.env
+yarn.lock
+node_modules
+build
+dist

price_feeds/ton/pyth-connector/.prettierignore

@@ -0,0 +1 @@
+build/

price_feeds/ton/pyth-connector/README.md

@@ -0,0 +1,92 @@
+# Pyth-connector example
+This example provides two main usage patterns for interacting with Pyth:
+
+- **On-chain getter:**  
+  `User → User JW → App JW → App → Pyth → App → ...`
+
+- **Proxy call:**  
+  `User → Pyth → App → ...`
+
+You can use this example as a standalone module for sandbox testing. It exports functions to deploy and configure a local Pyth contract, making it easy to experiment without connecting to real on-chain contracts on testnet or mainnet.
+
+This example uses a patched Pyth contract intended only for testing purposes in a local development environment. It accepts simplified prices without requiring a Merkle trie proof, so price authenticity is not verified.
+
+<div style="border-radius: 8px; border: 1px solid #ffd700; background: #fffbe6; padding: 16px; margin: 16px 0;">
+  <strong>Important:</strong> This patched contract is for <strong>testing purposes only</strong>. For production, always use the official Pyth contract deployed on mainnet.
+</div>
+
+The demonstration is fully sandboxed. You do not need the Hermes client, prices can be generated locally, for example:  **`{ TON: 3.456, USDC: 0.998, USDT: 0.999 }`**
+
+## Project Structure
+
+- `contracts/` — Source code of the smart contracts and their dependencies.
+- `wrappers/` — TypeScript contract wrappers (implementing `Contract` from ton-core), including serialization/deserialization and compilation utilities.
+- `tests/` — Unit and integration tests for the contracts.
+- `scripts/` — Deployment and utility scripts.
+
+
+## How to use
+
+1. **Install Node.js version 22**  
+   It is recommended to use [nvm](https://github.com/nvm-sh/nvm) for managing Node.js versions.  
+   If you don't have nvm installed, run:
+   ```bash
+   curl -o- https://raw.githubusercontent.com/nvm-sh/nvm/v0.39.7/install.sh | bash
+   source ~/.bashrc
+   ```
+   Then install and use Node.js 22:
+   ```bash
+   nvm install 22
+   nvm use 22
+   ```
+
+2. **Install Yarn** (if not already installed):
+   ```bash
+   npm install -g yarn
+   ```
+
+3. **Install project dependencies**  
+   In the project root directory, run:
+   ```bash
+   yarn install
+   ```
+
+After these steps, you are ready to build, test, and use the example. See the sections below for more commands.
+
+### Build
+to build the module you can run:
+   ```bash 
+   yarn build
+   ```
+
+### Contracts
+To prebuild contracts run:
+   ```bash 
+   yarn contracts
+   ```
+
+### Test
+   ```bash
+    yarn test:unit
+   ```
+    
+### Deploy
+You don't need to deploy this example's contracts to testnet/mainnet,
+
+## Important Note on Message Handling
+
+When using the Pyth price feed in the recommended flow (User/App -> Pyth -> Protocol), be aware that:
+
+### Security Warning ⚠️
+
+**CRITICAL**: Integrators MUST validate the sender address in their receive function to ensure messages are coming from the Pyth Oracle contract. Failure to do so could allow attackers to:
+
+- Send invalid price responses
+- Impersonate users via the sender_address and custom_payload fields
+- Potentially drain the protocol
+
+### Message Bouncing Behavior
+
+- If the target protocol bounces the message (e.g., due to invalid custom payload or other errors), the forwarded TON will remain in the Pyth contract and will not be automatically refunded to the original sender.
+- This could be significant when dealing with large amounts of TON (e.g., in DeFi operations).
+- Integrators should implement proper error handling and refund mechanisms in their applications.

price_feeds/ton/pyth-connector/contracts/Pyth/Main.fc

@@ -0,0 +1,103 @@
+#include "imports/stdlib.fc";
+#include "common/errors.fc";
+#include "common/storage.fc";
+#include "common/op.fc";
+#include "Wormhole.fc";
+#include "Pyth.fc";
+
+;; @title Pyth Network Price Oracle Contract for TON
+;; @notice This contract serves as the main entry point for the Pyth Network price oracle on TON.
+;; @dev The contract handles various operations including:
+;;      - Updating guardian sets for Wormhole message verification
+;;      - Updating price feeds with the latest price data
+;;      - Executing governance actions
+;;      - Upgrading the contract code
+;;      - Parsing price feed updates for clients
+;;
+;; The contract uses Wormhole's cross-chain messaging protocol to verify price updates
+;; and governance actions. It maintains a dictionary of price feeds indexed by price ID.
+;; Each price feed contains the current price, confidence interval, exponent, and publish time.
+
+;; Internal message handler
+;; @param my_balance - Current contract balance
+;; @param msg_value - Amount of TON sent with the message
+;; @param in_msg_full - Full incoming message cell
+;; @param in_msg_body - Message body as a slice
+;; @returns () - No return value
+() recv_internal(int my_balance, int msg_value, cell in_msg_full, slice in_msg_body) impure {
+    if (in_msg_body.slice_empty?()) { ;; ignore empty messages
+        return ();
+    }
+
+    ;; * A 32-bit (big-endian) unsigned integer `op`, identifying the `operation` to be performed, or the `method` of the smart contract to be invoked.
+    int op = in_msg_body~load_uint(32);
+    cell data = in_msg_body~load_ref();
+    slice data_slice = data.begin_parse();
+
+    ;; Get sender address from message
+    slice cs = in_msg_full.begin_parse();
+    int flags = cs~load_uint(4);
+    if (flags & 1) { ;; ignore all bounced messages
+        return ();
+    }
+    slice sender_address = cs~load_msg_addr();  ;; load sender address
+
+    ;; * The remainder of the message body is specific for each supported value of `op`.
+    if (op == OP_UPDATE_GUARDIAN_SET) {
+        ;; @notice Updates the guardian set based on a Wormhole VAA
+        ;; @param data_slice - Slice containing the VAA with guardian set update information
+        update_guardian_set(data_slice);
+    } elseif (op == OP_UPDATE_PRICE_FEEDS) {
+        ;; @notice Updates price feeds with the latest price data
+        ;; @param msg_value - Amount of TON sent with the message (used for fee calculation)
+        ;; @param data_slice - Slice containing the price feed update data
+        update_price_feeds(msg_value, data_slice);
+    } elseif (op == OP_EXECUTE_GOVERNANCE_ACTION) {
+        ;; @notice Executes a governance action based on a Wormhole VAA
+        ;; @param data_slice - Slice containing the VAA with governance action information
+        execute_governance_action(data_slice);
+    } elseif (op == OP_UPGRADE_CONTRACT) {
+        ;; @notice Upgrades the contract code
+        ;; @param data - Cell containing the new contract code
+        execute_upgrade_contract(data);
+    } elseif (op == OP_PARSE_PRICE_FEED_UPDATES) {
+        ;; @notice Parses price feed updates and returns the results to the caller
+        ;; @param msg_value - Amount of TON sent with the message (used for fee calculation)
+        ;; @param data_slice - Slice containing the price feed update data
+        ;; @param price_ids_slice - Slice containing the price IDs to filter for
+        ;; @param min_publish_time - Minimum publish time for price updates to be considered
+        ;; @param max_publish_time - Maximum publish time for price updates to be considered
+        ;; @param sender_address - Address of the sender (for response)
+        ;; @param target_address - Address to send the response to
+        ;; @param custom_payload - Custom payload to include in the response
+        cell price_ids_cell = in_msg_body~load_ref();
+        slice price_ids_slice = price_ids_cell.begin_parse();
+        int min_publish_time = in_msg_body~load_uint(64);
+        int max_publish_time = in_msg_body~load_uint(64);
+        slice target_address = in_msg_body~load_msg_addr();
+        cell custom_payload_cell = in_msg_body~load_ref();
+        slice custom_payload = custom_payload_cell.begin_parse();
+        parse_price_feed_updates(msg_value, data_slice, price_ids_slice, min_publish_time, max_publish_time, sender_address, target_address, custom_payload);
+    } elseif (op == OP_PARSE_UNIQUE_PRICE_FEED_UPDATES) {
+        ;; @notice Parses unique price feed updates (only the latest for each price ID) and returns the results to the caller
+        ;; @param msg_val; @notice Parses unique price feed updates (only the latest for each price ID) and returns the results to the caller
+        ;; @param msg_value - Amount of TON sent with the message (used for fee calculation)
+        ;; @param data_slice - Slice containing the price feed update data
+        ;; @param price_ids_slice - Slice containing the price IDs to filter for
+        ;; @param publish_time - Target publish time for price updates
+        ;; @param max_staleness - Maximum allowed staleness of price updates (in seconds)
+        ;; @param sender_address - Address of the sender (for response)
+        ;; @param target_address - Address to send the response to
+        ;; @param custom_payload - Custom payload to include in the response
+        cell price_ids_cell = in_msg_body~load_ref();
+        slice price_ids_slice = price_ids_cell.begin_parse();
+        int publish_time = in_msg_body~load_uint(64);
+        int max_staleness = in_msg_body~load_uint(64);
+        slice target_address = in_msg_body~load_msg_addr();
+        cell custom_payload_cell = in_msg_body~load_ref();
+        slice custom_payload = custom_payload_cell.begin_parse();
+        parse_unique_price_feed_updates(msg_value, data_slice, price_ids_slice, publish_time, max_staleness, sender_address, target_address, custom_payload);
+    } else {
+        throw(0xffff); ;; Throw exception for unknown op
+    }
+}

price_feeds/ton/pyth-connector/contracts/Pyth/MainNoCheck.fc

@@ -0,0 +1,65 @@
+{-
+  This test contract serves two main purposes:
+  1. It allows testing of non-getter functions in FunC without requiring specific opcodes for each function.
+  2. It provides access to internal functions through wrapper getter functions.
+
+  This approach is common in FunC development, where a separate test contract is used for unit testing.
+  It enables more comprehensive testing of the contract's functionality, including internal operations
+  that are not directly accessible through standard getter methods.
+-}
+{-
+  The only difference from the Main.fc is that it uses patched Pyth functions,
+  which don't verify prices sources and allow to run tests with locally generated prices.
+-}
+#include "imports/stdlib.fc";
+#include "tests/PythNoCheck.fc";
+#include "Wormhole.fc";
+#include "common/op.fc";
+
+() recv_internal(int balance, int msg_value, cell in_msg_full, slice in_msg_body) impure {
+    if (in_msg_body.slice_empty?()) {
+        return ();
+    }
+
+    ;; Get sender address from message
+    slice cs = in_msg_full.begin_parse();
+    int flags = cs~load_uint(4);  ;; load flags
+    if (flags & 1) {
+        return ();
+    }
+    slice sender_address = cs~load_msg_addr();  ;; load sender address
+
+    int op = in_msg_body~load_uint(32);
+    cell data = in_msg_body~load_ref();
+    slice data_slice = data.begin_parse();
+
+    if (op == OP_UPDATE_GUARDIAN_SET) {
+        update_guardian_set(data_slice);
+    } elseif (op == OP_UPDATE_PRICE_FEEDS) {
+        update_price_feeds(msg_value, data_slice);
+    } elseif (op == OP_EXECUTE_GOVERNANCE_ACTION) {
+        execute_governance_action(data_slice);
+    } elseif (op == OP_UPGRADE_CONTRACT) {
+        execute_upgrade_contract(data);
+    } elseif (op == OP_PARSE_PRICE_FEED_UPDATES) {
+        cell price_ids_cell = in_msg_body~load_ref();
+        slice price_ids_slice = price_ids_cell.begin_parse();
+        int min_publish_time = in_msg_body~load_uint(64);
+        int max_publish_time = in_msg_body~load_uint(64);
+        slice target_address = in_msg_body~load_msg_addr();
+        cell custom_payload_cell = in_msg_body~load_ref();
+        slice custom_payload = custom_payload_cell.begin_parse();
+        parse_price_feed_updates(msg_value, data_slice, price_ids_slice, min_publish_time, max_publish_time, sender_address, target_address, custom_payload);
+    } elseif (op == OP_PARSE_UNIQUE_PRICE_FEED_UPDATES) {
+        cell price_ids_cell = in_msg_body~load_ref();
+        slice price_ids_slice = price_ids_cell.begin_parse();
+        int publish_time = in_msg_body~load_uint(64);
+        int max_staleness = in_msg_body~load_uint(64);
+        slice target_address = in_msg_body~load_msg_addr();
+        cell custom_payload_cell = in_msg_body~load_ref();
+        slice custom_payload = custom_payload_cell.begin_parse();
+        parse_unique_price_feed_updates(msg_value, data_slice, price_ids_slice, publish_time, max_staleness, sender_address, target_address, custom_payload);
+    } else {
+        throw(0xffff); ;; Throw exception for unknown op
+    }
+}