copper-tone-tech/mev-beta
1
0
Fork 0
Code Issues Pull Requests 7 Actions Packages Projects Releases Wiki Activity

refactor: move all remaining files to orig/ directory

Browse Source 
Completed clean root directory structure:
- Root now contains only: .git, .env, docs/, orig/
- Moved all remaining files and directories to orig/:
  - Config files (.claude, .dockerignore, .drone.yml, etc.)
  - All .env variants (except active .env)
  - Git config (.gitconfig, .github, .gitignore, etc.)
  - Tool configs (.golangci.yml, .revive.toml, etc.)
  - Documentation (*.md files, @prompts)
  - Build files (Dockerfiles, Makefile, go.mod, go.sum)
  - Docker compose files
  - All source directories (scripts, tests, tools, etc.)
  - Runtime directories (logs, monitoring, reports)
  - Dependency files (node_modules, lib, cache)
  - Special files (--delete)

- Removed empty runtime directories (bin/, data/)

V2 structure is now clean:
- docs/planning/ - V2 planning documents
- orig/ - Complete V1 codebase preserved
- .env - Active environment config (not in git)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
Administrator
2025-11-10 10:53:05 +01:00
parent 803de231ba
commit c54c569f30
718 changed files with 8304 additions and 8281 deletions
Download Patch File Download Diff File Expand all files Collapse all files

336
orig/harness/local-ci-pipeline.sh Executable file
View File

@@ -0,0 +1,336 @@
#!/usr/bin/env bash
set -euo pipefail
ROOT_DIR=$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd)
cd "$ROOT_DIR"
HARNESS_DIR="$ROOT_DIR/harness"
LOG_DIR="${HARNESS_LOG_DIR:-$HARNESS_DIR/logs}"
REPORT_DIR="${HARNESS_REPORT_DIR:-$HARNESS_DIR/reports}"
mkdir -p "$LOG_DIR" "$REPORT_DIR"
export GOCACHE="${HARNESS_GOCACHE:-$ROOT_DIR/.gocache}"
export GOMODCACHE="${HARNESS_GOMODCACHE:-$ROOT_DIR/.gomodcache}"
mkdir -p "$GOCACHE" "$GOMODCACHE"
CONTAINER_RUNTIME="${HARNESS_RUNTIME:-}"
if [[ -z "$CONTAINER_RUNTIME" ]]; then
if command -v podman >/dev/null 2>&1; then
CONTAINER_RUNTIME=podman
elif command -v docker >/dev/null 2>&1; then
CONTAINER_RUNTIME=docker
else
echo "WARNING: No container runtime found. Some tests will be skipped." >&2
CONTAINER_RUNTIME=""
fi
fi
SKIP_DOCKER="${HARNESS_SKIP_DOCKER:-false}"
SKIP_MATH_AUDIT="${HARNESS_SKIP_MATH_AUDIT:-false}"
SKIP_SECURITY="${HARNESS_SKIP_SECURITY:-false}"
PARALLEL_JOBS="${HARNESS_PARALLEL_JOBS:-4}"
GO_IMAGE="${HARNESS_GO_IMAGE:-golang:1.25-alpine}"
GOLANGCI_IMAGE="${HARNESS_GOLANGCI_IMAGE:-golangci/golangci-lint:v1.60.1}"
log() {
printf '[%s] %s\n' "$(date '+%Y-%m-%d %H:%M:%S')" "$*"
}
run_step() {
local name="$1"
shift
local logfile="$LOG_DIR/${name}.log"
log "Starting $name"
if "$@" |& tee "$logfile"; then
log "✅ Completed $name"
return 0
else
log "❌ Failed $name - see $logfile"
return 1
fi
}
check_requirements() {
log "Checking requirements..."
if ! command -v git >/dev/null 2>&1; then
echo "ERROR: git is required" >&2
exit 1
fi
if ! command -v go >/dev/null 2>&1; then
echo "ERROR: Go is required" >&2
exit 1
fi
GO_VERSION=$(go version | grep -o 'go[0-9.]*' | head -1)
log "Using Go version: $GO_VERSION"
if [[ -n "$CONTAINER_RUNTIME" ]]; then
log "Using container runtime: $CONTAINER_RUNTIME"
fi
}
setup_directories() {
log "Setting up directories..."
mkdir -p logs reports/math/latest reports/security reports/coverage
}
run_go_deps() {
run_step "go-deps" go mod download
run_step "go-verify" go mod verify
run_step "go-tidy-check" bash -c "
cp go.mod go.mod.bak
cp go.sum go.sum.bak
go mod tidy
if ! diff -q go.mod go.mod.bak >/dev/null || ! diff -q go.sum go.sum.bak >/dev/null; then
echo 'ERROR: go.mod or go.sum not tidy - run go mod tidy'
mv go.mod.bak go.mod
mv go.sum.bak go.sum
exit 1
fi
rm go.mod.bak go.sum.bak
"
}
run_formatting() {
run_step "go-fmt-check" bash -c "
fmt_out=\$(gofmt -l \$(find . -name '*.go' -not -path './vendor/*' -not -path './.gomodcache/*'))
if [[ -n \"\$fmt_out\" ]]; then
echo 'ERROR: Following files need gofmt:'
echo \"\$fmt_out\"
exit 1
fi
"
}
run_static_checks() {
run_step "go-vet" go vet ./cmd/... ./pkg/... ./internal/...
if command -v golangci-lint >/dev/null 2>&1; then
run_step "golangci-lint" timeout 300 golangci-lint run --timeout=10m
elif [[ -n "$CONTAINER_RUNTIME" && "$SKIP_DOCKER" != "true" ]]; then
run_step "golangci-lint-container" \
"$CONTAINER_RUNTIME" run --rm \
-v "$ROOT_DIR":/app -w /app \
-v "$GOCACHE":/gocache -e GOCACHE=/gocache \
"$GOLANGCI_IMAGE" golangci-lint run --timeout=10m
else
log "WARNING: Skipping golangci-lint (not available)"
fi
}
run_tests() {
log "Creating logs directory for tests..."
mkdir -p logs
run_step "unit-tests" \
go test -race -coverprofile="$REPORT_DIR/coverage.out" \
-timeout=300s \
./pkg/types ./pkg/arbitrage ./pkg/execution ./pkg/arbitrum ./pkg/math ./internal/...
if [[ -f "$REPORT_DIR/coverage.out" ]]; then
run_step "coverage-report" \
go tool cover -html="$REPORT_DIR/coverage.out" -o "$REPORT_DIR/coverage.html"
COVERAGE=$(go tool cover -func="$REPORT_DIR/coverage.out" | tail -1 | awk '{print $3}')
log "Test coverage: $COVERAGE"
echo "Test coverage: $COVERAGE" > "$REPORT_DIR/coverage-summary.txt"
fi
}
run_build() {
run_step "build-binary" make build
if [[ -f bin/mev-bot ]]; then
log "✅ Binary built successfully: $(ls -lh bin/mev-bot | awk '{print $5}')"
else
log "❌ Binary not found after build"
exit 1
fi
}
run_smoke_test() {
export GO_ENV="development"
export MEV_BOT_ENCRYPTION_KEY="test_key_32_chars_minimum_length_required"
local logfile="$LOG_DIR/smoke-test.log"
log "Starting smoke-test"
# Run the bot with timeout, capture output
timeout 30s ./bin/mev-bot start &> "$logfile" || {
local exit_code=$?
# Check if the bot successfully started and entered main loop
if grep -q "BOT FULLY STARTED" "$logfile"; then
log "✅ Completed smoke-test (bot successfully started and then stopped)"
return 0
elif [[ $exit_code -eq 124 ]]; then
log "✅ Completed smoke-test (timeout expected after 30s)"
return 0
elif [[ $exit_code -eq 0 ]]; then
log "✅ Completed smoke-test"
return 0
else
log "❌ Failed smoke-test - see $logfile"
return 1
fi
}
}
run_math_audit() {
if [[ "$SKIP_MATH_AUDIT" == "true" ]]; then
log "Skipping math audit (HARNESS_SKIP_MATH_AUDIT=true)"
return 0
fi
run_step "math-audit" \
go run ./tools/math-audit --vectors default --report reports/math/latest
if [[ -f reports/math/latest/report.json && -f reports/math/latest/report.md ]]; then
log "✅ Math audit completed successfully"
cp reports/math/latest/report.md "$REPORT_DIR/math-audit.md"
else
log "❌ Math audit failed - reports not generated"
return 1
fi
}
run_security_checks() {
if [[ "$SKIP_SECURITY" == "true" ]]; then
log "Skipping security checks (HARNESS_SKIP_SECURITY=true)"
return 0
fi
if command -v gosec >/dev/null 2>&1; then
log "Running gosec security scan (with timeout)..."
timeout 60 gosec -fmt sarif -out "$REPORT_DIR/gosec-results.sarif" ./... || {
if [[ $? -eq 124 ]]; then
log "WARNING: gosec timed out after 60s"
else
log "WARNING: gosec completed with warnings"
fi
}
else
log "WARNING: gosec not available"
fi
if command -v govulncheck >/dev/null 2>&1; then
run_step "govulncheck" govulncheck ./...
else
log "WARNING: govulncheck not available"
fi
}
run_docker_build() {
if [[ "$SKIP_DOCKER" == "true" || -z "$CONTAINER_RUNTIME" ]]; then
log "Skipping Docker build"
return 0
fi
log "Building Docker image with $CONTAINER_RUNTIME..."
if timeout 300 "$CONTAINER_RUNTIME" build -t mev-bot:harness-test . &> "$LOG_DIR/docker-build.log"; then
log "✅ Docker build successful"
IMAGE_SIZE=$("$CONTAINER_RUNTIME" images mev-bot:harness-test --format "table {{.Size}}" | tail -1)
log "Docker image size: $IMAGE_SIZE"
echo "Docker image size: $IMAGE_SIZE" > "$REPORT_DIR/docker-image-size.txt"
else
log "❌ Docker build failed - see $LOG_DIR/docker-build.log"
return 1
fi
}
generate_report() {
log "Generating final report..."
REPORT_FILE="$REPORT_DIR/pipeline-report.md"
cat > "$REPORT_FILE" << EOF
# MEV Bot Local CI Pipeline Report
**Generated:** $(date -u '+%Y-%m-%d %H:%M:%S UTC')
**Branch:** $(git rev-parse --abbrev-ref HEAD)
**Commit:** $(git rev-parse --short HEAD)
**Go Version:** $(go version)
## Pipeline Results
### ✅ Completed Steps
EOF
for logfile in "$LOG_DIR"/*.log; do
if [[ -f "$logfile" ]]; then
step=$(basename "$logfile" .log)
echo "- $step" >> "$REPORT_FILE"
fi
done
cat >> "$REPORT_FILE" << EOF
### 📊 Metrics
EOF
if [[ -f "$REPORT_DIR/coverage-summary.txt" ]]; then
echo "- $(cat "$REPORT_DIR/coverage-summary.txt")" >> "$REPORT_FILE"
fi
if [[ -f "$REPORT_DIR/docker-image-size.txt" ]]; then
echo "- $(cat "$REPORT_DIR/docker-image-size.txt")" >> "$REPORT_FILE"
fi
cat >> "$REPORT_FILE" << EOF
### 📁 Generated Artifacts
- Coverage report: \`$REPORT_DIR/coverage.html\`
- Math audit: \`$REPORT_DIR/math-audit.md\`
- Security report: \`$REPORT_DIR/gosec-results.sarif\`
- Full logs: \`$LOG_DIR/\`
### 🔧 Environment
- Container runtime: ${CONTAINER_RUNTIME:-"none"}
- Parallel jobs: $PARALLEL_JOBS
- Go cache: $GOCACHE
- Skip flags: docker=$SKIP_DOCKER, math-audit=$SKIP_MATH_AUDIT, security=$SKIP_SECURITY
EOF
log "✅ Report generated: $REPORT_FILE"
}
main() {
log "🚀 Starting MEV Bot Local CI Pipeline"
log "Working directory: $ROOT_DIR"
log "Logs: $LOG_DIR"
log "Reports: $REPORT_DIR"
START_TIME=$(date +%s)
check_requirements
setup_directories
# Core pipeline steps
run_go_deps
run_formatting
run_static_checks
run_tests
run_build
run_smoke_test
# Optional steps
run_math_audit
run_security_checks
run_docker_build
generate_report
END_TIME=$(date +%s)
DURATION=$((END_TIME - START_TIME))
log "🎉 Pipeline completed successfully in ${DURATION}s"
log "📊 View full report: $REPORT_DIR/pipeline-report.md"
}
if [[ "${BASH_SOURCE[0]}" == "${0}" ]]; then
main "$@"
fi

139
orig/harness/pipelines/staging.yaml Normal file
View File

@@ -0,0 +1,139 @@
pipeline:
name: Staging Promotion
identifier: staging_promotion
projectIdentifier: mev_bot
orgIdentifier: default
tags: {}
properties:
ci:
codebase:
connectorRef: account.git
repoName: fraktal/mev-beta
build:
type: branch
spec:
branch: <+input>
stages:
- stage:
name: Build & Test
identifier: build_test
description: Run Drone-equivalent checks inside Harness.
type: CI
spec:
cloneCodebase: true
platform:
os: Linux
arch: Amd64
execution:
steps:
- step:
type: Run
name: Lint
identifier: lint
spec:
shell: Bash
command: |
go mod download
golangci-lint run --timeout=10m
- step:
type: Run
name: UnitTests
identifier: unit_tests
spec:
shell: Bash
command: |
GOCACHE=$(pwd)/.gocache go test -race -coverprofile=coverage.out ./...
test -s coverage.out
- step:
type: Run
name: MathAudit
identifier: math_audit
spec:
shell: Bash
command: |
GOCACHE=$(pwd)/.gocache go run ./tools/math-audit --vectors default --report reports/math/latest
ls -l reports/math/latest
- step:
type: Run
name: ProfitSimulation
identifier: profit_simulation
spec:
shell: Bash
command: |
./scripts/run_profit_simulation.sh
cat reports/simulation/latest/summary.md
caching:
enabled: true
- stage:
name: Package
identifier: package
type: CI
spec:
cloneCodebase: false
platform:
os: Linux
arch: Amd64
execution:
steps:
- step:
type: Run
name: DockerBuild
identifier: docker_build
spec:
shell: Bash
command: |
docker build -t mev-bot:${HARNESS_BUILD_NUMBER} .
docker save mev-bot:${HARNESS_BUILD_NUMBER} -o mev-bot.tar
- step:
type: Run
name: PublishArtifact
identifier: publish_artifact
spec:
shell: Bash
command: |
echo "Uploading mev-bot.tar to artifact store"
when:
pipelineStatus: Success
- stage:
name: Deploy to Staging
identifier: deploy_staging
type: CD
spec:
deploymentType: Kubernetes
service:
serviceRef: staging
environment:
environmentRef: staging
execution:
steps:
- step:
type: ShellScript
name: HelmUpgrade
identifier: helm_upgrade
spec:
shell: Bash
source: Inline
script: |
helm upgrade --install mev-bot charts/mev-bot \
--set image.tag=${HARNESS_BUILD_NUMBER} \
--namespace mev-bot-staging
- step:
type: ShellScript
name: PostDeployChecks
identifier: post_deploy_checks
spec:
shell: Bash
source: Inline
script: |
kubectl rollout status deploy/mev-bot -n mev-bot-staging --timeout=120s
kubectl logs deploy/mev-bot -n mev-bot-staging | tail -n 100
rollbackSteps:
- step:
type: ShellScript
name: Rollback
identifier: rollback
spec:
shell: Bash
source: Inline
script: |
helm rollback mev-bot 1 || true

2
orig/harness/reports/solidity/forge-test-results.json Normal file
View File

@@ -0,0 +1,2 @@
[]

227
orig/harness/solidity-audit-pipeline.sh Executable file
View File

@@ -0,0 +1,227 @@
#!/usr/bin/env bash
#
# Solidity Audit Pipeline for MEV Bot Smart Contracts
# Integrates with harness/local-ci-pipeline.sh
#
# This script audits Solidity contracts using Docker-based security tools
# Based on docs/solidity_audit_bundle.md specifications
set -euo pipefail
ROOT_DIR=$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd)
cd "$ROOT_DIR"
HARNESS_DIR="$ROOT_DIR/harness"
LOG_DIR="${HARNESS_LOG_DIR:-$HARNESS_DIR/logs}/solidity"
REPORT_DIR="${HARNESS_REPORT_DIR:-$HARNESS_DIR/reports}/solidity"
mkdir -p "$LOG_DIR" "$REPORT_DIR"
# Container runtime detection
CONTAINER_RUNTIME="${HARNESS_RUNTIME:-}"
if [[ -z "$CONTAINER_RUNTIME" ]]; then
if command -v podman >/dev/null 2>&1; then
CONTAINER_RUNTIME=podman
elif command -v docker >/dev/null 2>&1; then
CONTAINER_RUNTIME=docker
else
echo "ERROR: No container runtime found. Docker or Podman is required." >&2
exit 1
fi
fi
# Configuration
SKIP_FOUNDRY="${HARNESS_SKIP_FOUNDRY:-false}"
SKIP_SLITHER="${HARNESS_SKIP_SLITHER:-false}"
SKIP_MYTHRIL="${HARNESS_SKIP_MYTHRIL:-false}"
VERBOSE="${HARNESS_VERBOSE:-false}"
log() {
printf '[%s] [SOLIDITY] %s\n' "$(date '+%Y-%m-%d %H:%M:%S')" "$*"
}
run_step() {
local name="$1"
shift
local logfile="$LOG_DIR/${name}.log"
log "Starting $name"
if "$@" |& tee "$logfile"; then
log "✅ Completed $name"
return 0
else
log "❌ Failed $name - see $logfile"
return 1
fi
}
check_contracts() {
log "Checking for Solidity contracts..."
if [[ ! -d "$ROOT_DIR/contracts" ]]; then
log "No contracts directory found - skipping Solidity audit"
exit 0
fi
local contract_count=$(find "$ROOT_DIR/contracts" -name "*.sol" -type f | wc -l)
if [[ $contract_count -eq 0 ]]; then
log "No Solidity contracts found - skipping audit"
exit 0
fi
log "Found $contract_count Solidity contracts to audit"
}
run_foundry_tests() {
if [[ "$SKIP_FOUNDRY" == "true" ]]; then
log "Skipping Foundry tests (HARNESS_SKIP_FOUNDRY=true)"
return 0
fi
log "Running Foundry tests..."
if ! command -v forge >/dev/null 2>&1; then
log "Forge not found locally, using Docker image..."
run_step "foundry-test" $CONTAINER_RUNTIME run --rm \
-v "$ROOT_DIR:/src" \
-w /src \
ghcr.io/foundry-rs/foundry:latest \
forge test --gas-report --ffi --json
else
log "Using local Forge installation"
run_step "foundry-test" forge test --gas-report --ffi --json
fi
# Save gas report
if [[ -f "reports/forge-gas.json" ]]; then
cp reports/forge-gas.json "$REPORT_DIR/forge-gas.json"
fi
}
run_slither_analysis() {
if [[ "$SKIP_SLITHER" == "true" ]]; then
log "Skipping Slither analysis (HARNESS_SKIP_SLITHER=true)"
return 0
fi
log "Running Slither static analysis..."
local slither_args=(
run --rm
-v "$ROOT_DIR:/src"
-w /src
trailofbits/eth-security-toolbox:latest
slither .
--json "$REPORT_DIR/slither.json"
--exclude-dependencies
--exclude-informational
)
if [[ "$VERBOSE" == "true" ]]; then
slither_args+=(--print human-summary)
fi
run_step "slither-analysis" $CONTAINER_RUNTIME "${slither_args[@]}" || true
}
run_mythril_analysis() {
if [[ "$SKIP_MYTHRIL" == "true" ]]; then
log "Skipping Mythril analysis (HARNESS_SKIP_MYTHRIL=true)"
return 0
fi
log "Running Mythril symbolic execution..."
# Mythril analysis for each contract
while IFS= read -r -d '' contract; do
local contract_name=$(basename "$contract" .sol)
log "Analyzing $contract_name with Mythril..."
$CONTAINER_RUNTIME run --rm \
-v "$ROOT_DIR:/src" \
-w /src \
mythril/myth:latest \
analyze "$contract" \
--solc-json "$REPORT_DIR/mythril-${contract_name}.json" \
--max-depth 128 || true
done < <(find "$ROOT_DIR/contracts" -name "*.sol" -not -path "*/test/*" -print0)
}
generate_audit_report() {
log "Generating consolidated audit report..."
local report_file="$REPORT_DIR/audit-summary.md"
cat > "$report_file" << 'EOF'
# Solidity Contract Audit Report
**Date**: $(date '+%Y-%m-%d %H:%M:%S')
**MEV Bot Version**: $(git describe --tags --always 2>/dev/null || echo "unknown")
## Contracts Audited
EOF
find "$ROOT_DIR/contracts" -name "*.sol" -not -path "*/test/*" | while read contract; do
echo "- $(basename "$contract")" >> "$report_file"
done
cat >> "$report_file" << 'EOF'
## Audit Tools Used
- ✅ Foundry (forge test)
- ✅ Slither (static analysis)
- ✅ Mythril (symbolic execution)
## Results Summary
### Foundry Tests
EOF
if [[ -f "$REPORT_DIR/forge-gas.json" ]]; then
echo "See \`reports/solidity/forge-gas.json\` for detailed gas analysis." >> "$report_file"
else
echo "⚠️ No Foundry test results found." >> "$report_file"
fi
cat >> "$report_file" << 'EOF'
### Slither Analysis
EOF
if [[ -f "$REPORT_DIR/slither.json" ]]; then
echo "See \`reports/solidity/slither.json\` for detailed vulnerability analysis." >> "$report_file"
else
echo "⚠️ No Slither results found." >> "$report_file"
fi
cat >> "$report_file" << 'EOF'
### Mythril Analysis
EOF
local mythril_count=$(find "$REPORT_DIR" -name "mythril-*.json" 2>/dev/null | wc -l)
if [[ $mythril_count -gt 0 ]]; then
echo "Found $mythril_count Mythril analysis reports." >> "$report_file"
else
echo "⚠️ No Mythril results found." >> "$report_file"
fi
log "Audit report generated: $report_file"
}
# Main execution
main() {
log "Starting Solidity Contract Audit Pipeline"
log "Container runtime: $CONTAINER_RUNTIME"
check_contracts
run_foundry_tests
run_slither_analysis
run_mythril_analysis
generate_audit_report
log "✅ Solidity audit pipeline completed successfully"
log "Reports available in: $REPORT_DIR"
}
main "$@"