Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@gooddollar/goodcontracts
Advanced tools
Welcome to the GoodDollar repository!
Everyone is welcome: Developers, designers, and entrepreneurs with a passion for decentralized technologies and a vision to build a new world that has equality, security, inclusivity, and innovation as its cornerstones. Refer to GoodDocs for further information.
Clone the repository:
git clone https://github.com/GoodDollar/GoodContracts.git
Install packages:
npm install
To test the library and setup the environment, issue the following command:
npm run test
cd GoodContracts
.env
file:cp .env.example .env
The GoodContracts DAO can be deployed in two ways:
full
- All contracts are deployed to the network given in .env
. This is done by running npm run deploy:full
light
- The DAO contracts and GoodDollar is deployed. OneTimePayments, UBI and SignUpBonus are not. This is done by running npm run deploy
New UBI schemes are deployed by calling
npm run deploy:ubi
This will deploy a UBI contract with the parameters given in the migration script, propose it as a new scheme vote for it and start the contract if enough votes are given.
New SignUpBonus schemes are deployed by calling
npm run deploy:signup
This will deploy a SignUpBonus contract with the parameters given in the migration script, propose it as a new scheme vote for it and start the contract if enough votes are given.
New OneTimePayments schemes are deployed by calling
npm run deploy:otp
This will deploy a OneTimePayment contract with the parameters given in the migration script, propose it as a new scheme vote for it and start the contract if enough votes are given.
You need to have node
installed.
This repository has only been tested on UNIX-derived systems.
Path | Description |
---|---|
contracts/ | All the solidity files making up the implementation |
contracts/token | Contains the GoodDollar implementation |
contracts/token/ERC677 | ERC677 implementation |
contracts/identity | Defines the identity implementation, i.e. adding claimers and blacklisting |
contracts/dao | Contains the daocreator for creating DAOs |
contracts/dao/schemes | Contains different schemes that can be deployed, registered and used within the DAO |
contracts/mocks | Contracts used specifically for testing purposes |
test/ | Contains testing code |
scripts/ | Specific scripts for testing and coverage |
The GoodDollar mission is reducing wealth inquality by building a new, global, open-source cryptocurrency for distributing money according to the principles of universal basic income (UBI).
To learn more about the reasoning behind the GoodDollar Experiment, please read the Position Paper.
This implementation of the GoodDollar contract system contains forked and modified from the DAOstack repo. We recommend anyone interested in learning about DAOs to [read and contribute] https://github.com/daostack
In this document, we present the on going development efforts and specification of the extended design of the GoodDollar contract system. In section one, we introduce the key concepts of the contract system. In section two, we introduce the individual contracts available in this repo.
This text introduces the core components of the GoodDollar contract system and is intended as a brief overview of the current status of development. This specification is subject to ongoing development and frequent review. This text may not reflect the most recent commit.
In the Table presented below, we provide an overview of the extended design of the GoodDollar contract system suggested for this specification.
Figure 1: Design overview of the GoodContracts system
The GoodDollar contract system is an implementation of a decentralized autonomous organization. The design presented in this document is an iterative policy framework through which users can engage in the collective decision making on the allocation and inflation schedule of a new asset-class: The GoodDollar.
Users suggest, advocate and vote for policy proposals in the form of 'schemes'. A scheme is a user-defined script, containing the logic by which the distribution of community funds is executed at specified intervals.
Once implemented, a scheme will run for a given period of time and subsequently deprecate, at which point the community will vote on either extending or replacing the extant scheme.
Voting power is defined by 'reputation points', a value assigned to all registered addresses. Reputation points can be distributed by any arbitrary logic and perform any arbitrary decision making function in the system. In this implementation, reputation points denote a weighted distribution in which one reputation point equals one vote in a binary choice evaluated by the absolute majority criterion.
The voting logic itself is also implemented as a scheme and is, just as the distribution policy, subject to change by a absolute majority voting.
This concept facilitates the abstract notion of decentralized decision-making in distributed systems of autonomous agents, as the contract system assimilates the political decision-making process through which fiscal policy is implemented in conventional parlimentary systems. Nevertheless, here all participants can attain voting power by virtue of their participation and engagement with the system.
In the following months, we will present more cohesive work on the topic of voting power and decentralized decision-making in decentralized systems. Please stay in touch by following this repo or keep an eye out on social media.
The contract system for the current release, comprises four main components:
The DAU is a decentralized decision-making and resource distribution mechanism. It contains four elements:
Schemes - A "scheme" is a 'wrapper' enacting a given policy or functionality in the GoodDollar contract system. Schemes are deployed by users and elected by the DAU contract through 'reputation voting' (see below). The UBI distribution policy, the one-time payment link policy, the sign-up bonus policy, and the identity contract are all implemented as 'schemes' and can be reiterated and redeployed by the GoodDollar community.
Reputation points - Reputation points are awarded to user accounts by the DAU. The reputation distribution function will be based on contributions to the system, as defined by the GoodDollar community. Reputation is non-transferable and (re)distributed by the DAU.
Voting Mechanism - Schemes are approved or rejected through voting. Rules can be implemented for any arbritary voting process and logic. In this initial implementation, voting follows the standard absolute majority criterion. In this implementation, a single reputation point will denote a single vote in the scheme selection process.
Global Constraints - Global constraints are limitations the DAUs actions. When executing a scheme, the controller component checks the constraints to see if a given action violates them, and blocks the execution if it does.
The GoodDollar is a mintable, burnable and ERC20 compatible token. The GoodDollar token can collect an adjustable fee stored in a reserve, whenever a transaction is made.
The bridge contract is an interoperability protocol that allows users to easily and safely transfer digital assets between two blockchains. Similar to an atomic swap operation, assets are locked in one network while representative assets are minted in the other one, and when the process is reversed the representative assets are burned and the locked assets released. The GoodDollar system is currently implemented on a sidechain connected through the Bridge Contract. For this implementation, we deploy on the fuse network: https://github.com/ColuLocalNetwork/fuse-network
In the Table presented below, we provide a simple overview of the GoodDollar contract and scheme taxonomy. Only the most fundemental schemes are included in the list below.
name | Description |
---|---|
GoodDollar | ERC20 Token that collects fees in every transfer. Native token of the system |
DaoCreator | Creates a single GoodDollar organization with an array of founders able to vote for schemes. |
Controller | The central entity of the DAO which connects the Avatar and gives permission to the other contracts. |
Avatar | A contract that receives the fee, stores it and communicates with the outer world |
UBI | The Universal Basic Income calculating and processing contract scheme. |
SignUpBonus | The sign-up bonus handling contract. |
OneTimePayments | The one-time payment contract. |
Identity | The contract defines who is eligible to claim the tokens and counts the total number of people who signed up for it. |
The GoodDollar token is a mintable, burnable and ERC20 compatible token. In this implementation, the token collects an adjustable fee.
Below we list the three main functions, adopted from the standard contract:
name | Description | Working Priciple |
---|---|---|
transfer(to, value) / transferFrom(from, to, value) | Gives the system the ability to collect fees. | Whenever transfer or transferFrom is called with a given value, processFees is called with said value, transferring the transactional fees (set by the DAO at any given time, by a specific scheme) to the feeRecipient and returning the new value to be transferred along. |
approve(spender, value) | Gives a delegate the right to spend a certain amount of tokens of a delegator. The delegators retain the ownership of the tokens until they are spent. | no peculiarities |
balanceOf(user) | It allows the system to know the G$ balance of a specific address. | no peculiarities |
Below, we display the GoodDollar transfer function sequence diagram, highlighting the details of the process.
Figure 2: Transfer function. Checks identity, then sends fees to avatar, which returns the new transfer value and sends it to the receiver.
The DAUCreator contract is responsible for creating the DAU in a single transaction. When creating a DAU, a Token (The GoodDollar token) and reputation are created, which are then used to create the avatar. The founders specified in the creation are then granted their respective tokens and reputation. The controller is then created and given ownership of the GoodDollar, Reputation and Avatar. The caller of the dao creation transaction is then allowed to register an array of initial schemes.
The Controller is the 'owner' of the DAO. It gives permission to other schemes, enforces adherence to global constraints, regulate the reputation points and most importantly it connects to the Avatar.
The Avatar is the outer facing part of the DAO system, which interacts with the other DAOs and contracts. The three main functions of the Avatar are to:
A UBI scheme can be created by anyone and submitted to the GoodDollar Community. A UBI scheme is proposed and voted upon by users. Once a UBI scheme is implemented, the Controller transfers the alotted amounts from the reserves.
When the UBI scheme is created, the author defines start and end periods. A bool, isActive, is set to false, making the policy ‘dormant’ until start() is called. Once start() is called the UBI is active and the claiming process begins.
The Reserve (Avatar) sends all its funds to the UBI contract, and the GoodDollar to mint, indicated in the constructor, is minted to and sent to the contract.
Figure 3: The three states the UBI contract moves through
Then, the distribution ratio is calculated and isActive is set to true, allowing users registered as claimers (before the start period) to claim UBI. After a successfull claim is registered, the users claimin status is updated in order to prevent multiple claims from the same address.
Figure 4: UBI claiming sequence diagram
Finally, the end() function is called, terminating the contract. This can only be done after the period has been exceeded. A deprecated scheme transfers all remaining funds back to the reserve.
A number of contracts are implemented to support the launch of the GoodDollar system. These contracts are implemented as 'schemes' and are subject to reputation voting by the community.
The sign-up bonus scheme allows administrators to award tokens up to a given maximum to users for inviting others.
The OneTimePayments scheme is able to receive funds and keep them stored under a hashed code, allowing users to send funds to unregistered users that can be claimed once they have been registered.
The Identity scheme manages the list of verified user addresses and blacklisted addresses.
Below you can find a comprehensive list of useful links.
FAQs
GoodDollar Contracts
The npm package @gooddollar/goodcontracts receives a total of 237 weekly downloads. As such, @gooddollar/goodcontracts popularity was classified as not popular.
We found that @gooddollar/goodcontracts demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.