fbda1b4beb
Some checks failed
Deploy to Phoenix / deploy (push) Has been cancelled
- ADD_CHAIN138_TO_LEDGER_LIVE: Ledger form done; public code review repo bis-innovations/LedgerLive; init/push commands - CONTRACT_DEPLOYMENT_RUNBOOK: Chain 138 gas price 1 gwei, 36-addr check, TransactionMirror workaround - CONTRACT_*: AddressMapper, MirrorManager deployed 2026-02-12; 36-address on-chain check - NEXT_STEPS_FOR_YOU: Ledger done; steps completable now (no LAN); run-completable-tasks-from-anywhere - MASTER_INDEX, OPERATOR_OPTIONAL, SMART_CONTRACTS_INVENTORY_SIMPLE: updates - LEDGER_BLOCKCHAIN_INTEGRATION_COMPLETE: bis-innovations/LedgerLive reference Co-authored-by: Cursor <cursoragent@cursor.com>
10 KiB
10 KiB
Placeholders and Required Additions — Master List
Last Updated: 2026-02-05
Purpose: Single reference for all placeholders (code/config) and required additions (operator, env, phases, API keys).
Sources: PLACEHOLDERS_AND_TBD.md, REQUIRED_FIXES_UPDATES_GAPS.md, 11-references/PLACEHOLDER_IMPLEMENTATIONS.md, TODO_TASK_LIST_MASTER.md, NEXT_STEPS_MASTER.md, reports/API_KEYS_REQUIRED.md, IMPLEMENTATION_CHECKLIST.md.
1. Placeholders (code / config)
smom-dbis-138
| Item | Location | Description | Priority |
|---|---|---|---|
| Canonical addresses env-only | services/token-aggregation/src/config/canonical-tokens.ts |
All token addresses from env (e.g. CUSDC_ADDRESS_138, WETH_ADDRESS_138). Unset → filtered out. Required env: see services/token-aggregation/README.md and root/smom .env.example; document any new tokens in env or add fallback (config/DB). |
Medium |
| AlltraAdapter fee | contracts/bridge/adapters/evm/AlltraAdapter.sol |
getBridgeFee() / setBridgeFee() — update with actual ALL Mainnet fee after verification. Default 0.001 ALL. |
Medium |
| Smart accounts kit | script/smart-accounts/DeploySmartAccountsKit.s.sol |
EntryPoint, AccountFactory, Paymaster from env; deploy and set in .env if not already. | Medium |
| Quote service Fabric chainId | orchestration/bridge/quote-service.ts |
Uses FABRIC_CHAIN_ID or fallback 999 until Fabric integrated. |
Low |
| EnhancedSwapRouter / DODOPMMProvider | contracts/bridge/trustless/EnhancedSwapRouter.sol, DODOPMMProvider.sol |
Some fee/size logic returns 0 or “placeholder”; optimize when oracle/pool config ready. | Low |
| WETH bridges mainnet receiver | script/deploy/bridge/DeployWETHBridges.s.sol |
Set MAINNET_WETH9_BRIDGE_ADDRESS, MAINNET_WETH10_BRIDGE_ADDRESS in env when configuring cross-chain destinations. |
Config |
| CMC / CoinGecko chain support | Token aggregation adapters | ChainId 138 and 651940 not supported by CoinGecko/CMC; external price/volume empty until platforms add support or another source. | Informational |
| .bak script/test restoration | Various (e.g. DeployVaultSystem.s.sol.bak, DODOPMMIntegration.t.sol.bak) |
Fix and restore or keep deprecated; see BAK_FILES_DEPRECATION.md. | Low |
dbis_core
| Item | Location | Description | Priority |
|---|---|---|---|
| Prometheus / Redis / PagerDuty / AS4 | arbitrage metrics, cache, alert.service, as4-metrics | Prometheus when monitoring stack deployed; Redis optional; PagerDuty stub (log only); AS4 Redis health in metrics. | Medium |
| TypeScript errors | dbis_core | ~1186 TS errors (deferred); fix by module/file. | Deferred |
the-order (legal documents)
| Item | Location | Description | Priority |
|---|---|---|---|
| E-signature | services/legal-documents/src/services/e-signature.ts |
Integrate with DocuSign/Adobe Sign or similar; status query; webhook. | Medium |
| Court e-filing | services/legal-documents/src/services/court-efiling.ts |
Integrate with actual court e-filing system; status query. | Medium |
| Document security | services/legal-documents/src/services/document-security.ts |
PDF watermarking, redaction, encryption/decryption. | Medium |
| Document export | services/legal-documents/src/services/document-export.ts |
PDF (pdfkit/puppeteer), DOCX (docx library). | Medium |
| Security routes | services/legal-documents/src/routes/security-routes.ts |
Watermarking, redaction handlers. | Medium |
OMNIS
| Item | Location | Description | Priority |
|---|---|---|---|
| Sankofa Phoenix SDK | OMNIS/ | Migration from Azure documented; integrate Sankofa Phoenix SDK (or equivalent) for full feature parity. | Medium |
multi-chain-execution / Tezos
| Item | Location | Description | Priority |
|---|---|---|---|
| TezosRelayService | multi-chain-execution, adapter-tezos | No dedicated native Tezos mint/transfer relay; route planning uses adapter. Add service when implemented. | Low |
2. Required additions — operator / environment
Wave 0 (gates)
| Task | Requirement | Command / note |
|---|---|---|
| W0-1 NPMplus RPC fix | Host on LAN | bash scripts/nginx-proxy-manager/update-npmplus-proxy-hosts-api.sh or scripts/run-wave0-from-lan.sh |
| W0-2 sendCrossChain (real) | PRIVATE_KEY, LINK approved | scripts/bridge/run-send-cross-chain.sh <amount> [recipient] (omit --dry-run) |
| W0-3 NPMplus backup | NPM_PASSWORD in .env | bash scripts/verify/backup-npmplus.sh when NPMplus is up |
Wave 1 operator
| Task | Requirement | Note |
|---|---|---|
| W1-1 SSH key-based auth | Deploy keys first | `scripts/security/setup-ssh-key-auth.sh [--dry-run |
| W1-2 Firewall Proxmox 8006 | Admin CIDR | `scripts/security/firewall-proxmox-8006.sh [--dry-run |
| W1-8 NPMplus backup cron | NPMplus up | scripts/maintenance/schedule-npmplus-backup-cron.sh --install; daily-weekly: schedule-daily-weekly-cron.sh --install |
| W1-19 Secure validator keys | Proxmox root | scripts/secure-validator-keys.sh [--dry-run] on host (VMIDs 1000–1004) |
| W1-20 shellcheck | Optional | Install shellcheck; scripts/verify/run-shellcheck.sh [--optional] or run-shellcheck-docker.sh |
| W1-27 ALL_IMPROVEMENTS 1–11 | LAN/Proxmox | .env, validator keys, SSH, firewall, VLANs, metrics, backup, runbooks per ALL_IMPROVEMENTS_AND_GAPS_INDEX.md |
Security (smom / external)
| Task | Requirement | Note |
|---|---|---|
| Security audits VLT-024, ISO-024 | smom backlog | Deferred |
| Bridge integrations BRG-VLT, BRG-ISO | smom backlog | Deferred |
| Paymaster (optional) | Contract sources, RPC | forge script script/smart-accounts/DeployPaymaster.s.sol --rpc-url $RPC_URL_138 --broadcast; see SMART_ACCOUNTS_DEPLOYMENT_NOTE |
3. Required additions — API keys and secrets
Full list: reports/API_KEYS_REQUIRED.md
| Category | Variables / services | Where used |
|---|---|---|
| Cross-chain / DeFi | LIFI_API_KEY, JUMPER_API_KEY, ONEINCH_API_KEY | alltra-lifi-settlement, chain138-quote.service |
| Fiat on/off ramp | MOONPAY_API_KEY, RAMP_NETWORK_API_KEY, ONRAMPER_API_KEY | metamask-integration/ramps |
| E-signature | E_SIGNATURE_BASE_URL + API key (e.g. DocuSign) | the-order/legal-documents |
| Alerts | SLACK_WEBHOOK_URL, PAGERDUTY_INTEGRATION_KEY, EMAIL_ALERT_* | dbis_core alert.service |
| Explorers / price | ETHERSCAN_API_KEY, COINGECKO_API_KEY, COINMARKETCAP_API_KEY | Contract verification, token-aggregation, oracle |
| OTC (dbis_core) | CRYPTO_COM_API_KEY, CRYPTO_COM_API_SECRET | dbis_core/.env |
4. Required additions — phases (infrastructure)
Phase 1 — VLAN enablement (optional)
| Task | Status |
|---|---|
| UDM Pro VLAN config | ⏳ Pending |
| VLAN-aware bridge on Proxmox | ⏳ Pending |
| Services migrated to VLANs | ⏳ Pending |
Phase 2 — Observability (required)
| Task | Status |
|---|---|
| Monitoring stack (Prometheus, Grafana, Loki, Alertmanager) | ⏳ Pending |
| Grafana via Cloudflare Access | ⏳ Pending |
| Alerts configured | ⏳ Pending |
Phase 3 — CCIP fleet (required)
| Task | Status |
|---|---|
| CCIP Ops/Admin (VMID 5400-5401) | ⏳ Pending |
| 16 commit (5410-5425), 16 execute (5440-5455), 7 RMN (5470-5476) | ⏳ Pending |
| NAT pools configured | ⏳ Pending |
Phase 4 — Sovereign tenants (required)
| Task | Status |
|---|---|
| Sovereign VLANs 200–203 configured | ⏳ Pending |
| Tenant isolation enforced (ACLs, east-west deny) | ⏳ Pending |
| Access control configured | ⏳ Pending |
Scripts: scripts/deployment/phase4-sovereign-tenants.sh [--show-steps|--dry-run]; runbook: OPERATIONAL_RUNBOOKS.md § Phase 4.
5. Required additions — implementation checklist (high priority)
From IMPLEMENTATION_CHECKLIST.md:
| Item | Action |
|---|---|
| Secure .env permissions | chmod 600 .env (done in repo; verify on each host) |
| Secure validator key permissions | scripts/secure-validator-keys.sh on Proxmox (W1-19) |
| SSH key-based auth | See W1-1 |
| Firewall Proxmox 8006 | See W1-2 |
| Network segmentation (VLANs) | Phase 1 |
| Basic metrics (Besu 9545, Prometheus) | Phase 2; config exists in scripts/monitoring |
| Health check + alerting | Phase 2; ALERT_EMAIL/ALERT_WEBHOOK in scripts |
| Automated backup + encrypted validator keys | scripts/backup/automated-backup.sh; backup-npmplus; schedule-*-cron.sh |
| Backup config files + version control | scripts/backup-proxmox-configs.sh |
| Integration tests for deployment scripts | Pending |
| Runbooks (add/remove validator, upgrade Besu, key rotation, recovery) | OPERATIONAL_RUNBOOKS.md; expand as needed |
6. Maintenance (ongoing)
| Task | Frequency | Script |
|---|---|---|
| Monitor explorer sync | Daily | daily-weekly-checks.sh daily |
| Monitor RPC 2201 | Daily | daily-weekly-checks.sh daily |
| Config API uptime | Weekly | daily-weekly-checks.sh weekly |
| Review explorer logs | Weekly | Manual; runbook |
| Update token list | As needed | token-list.json / explorer config |
Cron: scripts/maintenance/schedule-daily-weekly-cron.sh [--install|--show].
7. Index references
- Full improvements 1–139: ALL_IMPROVEMENTS_AND_GAPS_INDEX.md
- Execution order: FULL_PARALLEL_EXECUTION_ORDER.md
- Operator checklist: WAVE2_WAVE3_OPERATOR_CHECKLIST.md
- Master TODO: TODO_TASK_LIST_MASTER.md