Product
Introducing GitHub Actions Scanning Support
Detect malware, unsafe data flows, and license issues in GitHub Actions with Socket’s new workflow scanning support.
By Rakesh Chatrath, Greg Tystahl -  Oct 23, 2025
🚀 DAY 4 OF LAUNCH WEEK: Introducing GitHub Actions Scanning Support.Learn more →
gearbox-core-v2
Advanced tools
Package was removed
Sorry, it seems this package was removed from the registry
Gearbox protocol
This repository contains the core smart contracts source code for Gearbox Protocol V2.
What is Gearbox protocol?
Gearbox is a generalized leverage protocol: it allows you to take leverage in one place and then use it across various DeFi protocols and platforms in a composable way. The protocol has two sides to it: passive liquidity providers who earn higher APY by providing liquidity; active traders, farmers, or even other protocols who can borrow those assets to trade or farm with x4+ leverage.
Gearbox protocol is a Marketmake ETHGlobal hackathon finalist.
Bug bounty
This repository is subject to the Gearbox bug bounty program, per the terms defined here.
Documentation
General documentation of the Gearbox Protocol can be found here. Developer documentation with more tech-related infromation about the protocol, contract interfaces, integration guides and audits is available on the Gearbox dev protal.
Testing
Setup
Running Forge unit tests requires Foundry. See Foundry Book for installation details.
Solidity unit tests
forge t
Licensing
The primary license for the Gearbox-Contracts is the Business Source License 1.1 (BUSL-1.1), see LICENSE. The files licensed under the BUSL-1.1 have appropriate SPDX headers.
- The files in
contracts/adapters,contracts/fuzzing,contracts/interfaces,contracts/supportare licensed under GPL-2.0-or-later. - The files in
contracts/librariesare licensed under GPL-2.0-or-later or GNU AGPL 3.0 (as indicated in their SPDX headers). - The files in
contracts/integrationsare either licensed under GPL-2.0-or-later or unlicensed (as indicated in their SPDX headers). - The file
contracts/tokens/GearToken.solis based onUni.soland distributed under the BSD 3-clause license. - The files in
audits,scripts,test,contracts/mocksare unlicensed.
Disclaimer
This application is provided "as is" and "with all faults." Me as developer makes no representations or warranties of any kind concerning the safety, suitability, lack of viruses, inaccuracies, typographical errors, or other harmful components of this software. There are inherent dangers in the use of any software, and you are solely responsible for determining whether this software product is compatible with your equipment and other software installed on your equipment. You are also solely responsible for the protection of your equipment and backup of your data, and THE PROVIDER will not be liable for any damages you may suffer in connection with using, modifying, or distributing this software product.
Keywords
FAQs
Core smart contracts of Gearbox V2
We found that gearbox-core-v2 demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 05 Oct 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Product
Introducing Webhook Events for Pull Request Scans
Add real-time Socket webhook events to your workflows to automatically receive pull request scan results and security alerts in real time.
By Jeppe Hasseriis -  Oct 22, 2025
Research
Malicious NuGet Packages Typosquat Nethereum to Exfiltrate Wallet Keys
The Socket Threat Research Team uncovered malicious NuGet packages typosquatting the popular Nethereum project to steal wallet keys.
By Kirill Boychenko -  Oct 22, 2025