Skip to content

Commit fa06c76

Browse files
mattgloryclaude
andcommitted
Clean up repo for external review — remove clutter, fix README, gitignore EVM contracts
- Remove 9 redundant root-level markdown files (QUICKSTART, DEPLOYMENT_SUMMARY, etc.) - Fix duplicate flashstack-sbtc-pool row in README contracts table - Gitignore Solidity contracts (AaveLiquidationFlash, VenusFlashLiquidator) — not part of Stacks protocol - Gitignore PM2 configs, .mcp.json, and local experiment scripts - Add CODE_OF_CONDUCT.md, ROADMAP.md, security CI workflow - Add twitter header assets, logo, bot page, dashboard/logger scripts - Update deploy script, pool page, monitor scripts Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
1 parent 27f4de5 commit fa06c76

35 files changed

Lines changed: 3289 additions & 2610 deletions

.github/workflows/security.yml

Lines changed: 46 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,46 @@
1+
name: Security Scan
2+
3+
on:
4+
push:
5+
branches: [main]
6+
pull_request:
7+
branches: [main]
8+
schedule:
9+
- cron: "0 9 * * 1" # Every Monday 9am UTC
10+
11+
jobs:
12+
dependency-audit:
13+
name: Dependency Audit
14+
runs-on: ubuntu-latest
15+
steps:
16+
- uses: actions/checkout@v4
17+
18+
- uses: actions/setup-node@v4
19+
with:
20+
node-version: "20"
21+
22+
- name: Audit root dependencies
23+
run: npm audit --audit-level=high
24+
continue-on-error: true
25+
26+
- name: Audit web dependencies
27+
run: cd web && npm audit --audit-level=high
28+
continue-on-error: true
29+
30+
codeql:
31+
name: CodeQL Analysis
32+
runs-on: ubuntu-latest
33+
permissions:
34+
actions: read
35+
contents: read
36+
security-events: write
37+
steps:
38+
- uses: actions/checkout@v4
39+
40+
- name: Initialize CodeQL
41+
uses: github/codeql-action/init@v3
42+
with:
43+
languages: javascript
44+
45+
- name: Perform CodeQL Analysis
46+
uses: github/codeql-action/analyze@v3

.gitignore

Lines changed: 20 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -147,3 +147,23 @@ web/.next/
147147
web/node_modules/
148148
docs/OUTREACH.md
149149
docs/archive/ANNOUNCEMENT_TEMPLATES.md
150+
151+
# Ethereum/Solidity contracts (not part of this Stacks protocol)
152+
contracts/*.sol
153+
154+
# PM2 / server configs (deployment ops, not protocol code)
155+
ecosystem.config.cjs
156+
ecosystem.config.vps.cjs
157+
158+
# Local dev scripts and experiments
159+
config/
160+
scripts/deploy-debug.mjs
161+
scripts/deploy-stub-test.mjs
162+
scripts/deploy-rescue.mjs
163+
scripts/estimate-vault-rescue.mjs
164+
scripts/run-vault-rescue.mjs
165+
scripts/usda-peg-trade.mjs
166+
scripts/check-bitflow-lp.mjs
167+
168+
# Nova MCP config (local tooling)
169+
.mcp.json

CODE_OF_CONDUCT.md

Lines changed: 53 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,53 @@
1+
# Contributor Covenant Code of Conduct
2+
3+
## Our Pledge
4+
5+
We as members, contributors, and leaders pledge to make participation in the FlashStack community a harassment-free experience for everyone, regardless of age, body size, visible or invisible disability, ethnicity, sex characteristics, gender identity and expression, level of experience, education, socio-economic status, nationality, personal appearance, race, caste, color, religion, or sexual identity and orientation.
6+
7+
We pledge to act and interact in ways that contribute to an open, welcoming, diverse, inclusive, and healthy community.
8+
9+
## Our Standards
10+
11+
Examples of behavior that contributes to a positive environment:
12+
13+
- Demonstrating empathy and kindness toward other people
14+
- Being respectful of differing opinions, viewpoints, and experiences
15+
- Giving and gracefully accepting constructive feedback
16+
- Accepting responsibility and apologizing to those affected by our mistakes
17+
- Focusing on what is best not just for us as individuals, but for the overall community
18+
19+
Examples of unacceptable behavior:
20+
21+
- The use of sexualized language or imagery, and sexual attention or advances of any kind
22+
- Trolling, insulting or derogatory comments, and personal or political attacks
23+
- Public or private harassment
24+
- Publishing others' private information without their explicit permission
25+
- Other conduct which could reasonably be considered inappropriate in a professional setting
26+
27+
## Enforcement Responsibilities
28+
29+
Community leaders are responsible for clarifying and enforcing our standards of acceptable behavior and will take appropriate and fair corrective action in response to any behavior that they deem inappropriate, threatening, offensive, or harmful.
30+
31+
## Scope
32+
33+
This Code of Conduct applies within all community spaces, and also applies when an individual is officially representing the community in public spaces.
34+
35+
## Enforcement
36+
37+
Instances of abusive, harassing, or otherwise unacceptable behavior may be reported to the community leaders responsible for enforcement at **security@flashstack.xyz** or via GitHub at [@mattglory](https://github.com/mattglory).
38+
39+
All complaints will be reviewed and investigated promptly and fairly.
40+
41+
## Enforcement Guidelines
42+
43+
**1. Correction** — Private written warning with clarity around the violation.
44+
45+
**2. Warning** — A warning with consequences for continued behavior.
46+
47+
**3. Temporary Ban** — Temporary ban from community interaction.
48+
49+
**4. Permanent Ban** — Permanent ban from any public interaction within the community.
50+
51+
## Attribution
52+
53+
This Code of Conduct is adapted from the [Contributor Covenant](https://www.contributor-covenant.org), version 2.1.

CURRENT_STATUS.md

Lines changed: 0 additions & 56 deletions
This file was deleted.

0 commit comments

Comments
 (0)