Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

@deploydao/migrator

Package Overview
Dependencies
Maintainers
1
Versions
1
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@deploydao/migrator

Migration management for Solana programs.

  • 0.1.0
  • latest
  • Source
  • npm
  • Socket score
Version published
Maintainers
1
Created
Source

DeployDAO Migrator

Crates.io License Build Status Contributors

A program for deploying and upgrading programs.

About

The Migrator:

  • Performs program deploys and upgrades
  • Decouples program deploys/upgrades into 3 roles: the proposer, the approver, and the deployer
  • Leaves an on-chain audit trail of program upgrades and deploys

Usage

There are two forms of intended usage: "self-hosted" and the DeployDAO.

Self-hosted

This may be used for development or if you want to maintain full control over your own smart contract deployment.

  1. Reserve a program ID. This allows for the program to be deployed at the same address across multiple chains.
  2. Create a new migrator, with the approver set to your own address, a multisig, or a DAO.
  3. Upload the bytecode of the program to a buffer via solana program write-buffer. Ideally this bytecode is generated in a verifiable manner.
  4. Create a proposal to deploy the program.
  5. Approve your proposal.
  6. Anyone must supply the migrator account with enough SOL to cover the program deployment.
  7. Anyone may deploy the new migration, until the migration expires.

DeployDAO

note: this is subject to change

The DeployDAO is a decentralized autonomous organization that elects multisig holders to approve program upgrades and deploys.

To deploy a program, one should:

  1. Reserve a program ID. This allows for the program to be deployed at the same address across multiple chains.
  2. Create a new migrator, with the approver set to the DeployDAO address.
  3. Upload the bytecode of the program to a buffer via solana program write-buffer. Ideally this bytecode is generated in a verifiable manner.
  4. Create a proposal to deploy the program.
  5. Contact the DeployDAO requesting for your program to be approved for deployment.
  6. If the DeployDAO likes your code, they may approve the deployment.
  7. Anyone in the community must supply the migrator account with enough SOL to cover the program deployment.
  8. Anyone in the community may deploy the new migration, until the migration expires.

Upgrading is done very similarly.

License

The DeployDAO program and SDK is distributed under the GPL v3.0 license.

Keywords

FAQs

Package last updated on 06 Oct 2021

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts

Research

Security News

Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts

Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.

By Kirill Boychenko  -  Dec 20, 2024
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc