gearbox-contracts

Gearbox protocol

This repository contains the smart contracts source code for Gearbox Protocol V2.

What is Gearbox protocol?

Gearbox is a generalized leverage protocol: it allows you to take leverage in one place and then use it across various DeFi protocols and platforms in a composable way. The protocol has two sides to it: passive liquidity providers who earn higher APY by providing liquidity; active traders, farmers, or even other protocols who can borrow those assets to trade or farm with x4+ leverage.

Gearbox protocol is a Marketmake ETHGlobal hackathon finalist.

Bug bounty

This repository is subject to the Gearbox bug bounty program, per the terms defined here.

Documentation

General documentation of the Gearbox Protocol can be found here. Developer documentation with more tech-related infromation about the protocol, contract interfaces, integration guides and audits is available on the Gearbox dev protal.

Audits

• Consensys Diligence Fuzzing (04/10/2021- 13/12/2021): report
• ChainSecurity (31/08/2021 - 13/12/2021): report
• Peckshield (22/07/2021 - 10/08/2021): report
• Peckshield (09/04/2021 - 03/05/2021): report

Testing

Setup

To install TS dependencies, run npm install.

Running Forge unit tests requires Foundry. See Foundry Book for installation details.

Solidity unit tests

forge test

Mainnet integration tests

• Build contract artifacts and types with yarn build;
• Start a mainnet fork with yarn fork (it is recommended to set a fixed starting block with --fork-block-number, to speed up deployment in subsequent runs);
• Open a new terminal window & run yarn test <PATH_TO_TEST> --network localhost.

It is recommended to restart the fork before running a new test file. Different tests within a single file will work on a single fork instance.

Brownie tests

An additional suite of Python-based tests was provided as a result of an audit from Sigma Prime. To install the Python dependencies, run

pip install -r requirements.txt

then

brownie test

to run tests.

Licensing

The primary license for the Gearbox-Contracts is the Business Source License 1.1 (BUSL-1.1), see LICENSE. The files licensed under the BUSL-1.1 have appropriate SPDX headers.

• The files in contracts/adapters, contracts/fuzzing, contracts/interfaces, contracts/support are licensed under GPL-2.0-or-later.
• The files in contracts/libraries are licensed under GPL-2.0-or-later or GNU AGPL 3.0 (as indicated in their SPDX headers).
• The files in contracts/integrations are either licensed under GPL-2.0-or-later or unlicensed (as indicated in their SPDX headers).
• The file contracts/tokens/GearToken.sol is based on Uni.sol and distributed under the BSD 3-clause license.
• The files in audits, scripts, test, contracts/mocks are unlicensed.

Disclaimer

This application is provided "as is" and "with all faults." Me as developer makes no representations or warranties of any kind concerning the safety, suitability, lack of viruses, inaccuracies, typographical errors, or other harmful components of this software. There are inherent dangers in the use of any software, and you are solely responsible for determining whether this software product is compatible with your equipment and other software installed on your equipment. You are also solely responsible for the protection of your equipment and backup of your data, and THE PROVIDER will not be liable for any damages you may suffer in connection with using, modifying, or distributing this software product.