Skip to content

Security review #253

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Sep 29, 2025
Merged

Security review #253

merged 5 commits into from
Sep 29, 2025

Conversation

Septimus4
Copy link
Contributor

Strengthens the governance contract by addressing unsafe patterns, clarifying rules, and adding protective checks. It improves security, maintainability, and auditability.
CLeanup from #239

@Copilot Copilot AI review requested due to automatic review settings September 28, 2025 13:10
@netlify Netlify
Copy link

netlify bot commented Sep 28, 2025
edited
Loading

Deploy Preview for tansu canceled.

Name Link
🔨 Latest commit 2107eaf
🔍 Latest deploy log https://app.netlify.com/projects/tansu/deploys/68dafce031328000089664a8

Copilot
Copilot AI reviewed Sep 28, 2025
View reviewed changes
Copy link

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR strengthens the governance contract by implementing multiple security improvements and addressing unsafe patterns. It adds protective checks for contract validation, voting timeline enforcement, and input validation while clarifying governance rules with better documentation.

Key changes include:

  • Enhanced input validation for voting operations and upgrade proposals
  • Strict voting deadline enforcement to prevent late votes
  • Improved error handling with safer unwrap alternatives
  • Documentation updates explaining supermajority governance model

Reviewed Changes

Copilot reviewed 8 out of 8 changed files in this pull request and generated 2 comments.

Show a summary per file
File Description
website/docs/developers/governance.mdx Added comprehensive documentation for voting timeline, supermajority rules, and eligibility requirements
contracts/tansu/src/tests/test_pause_upgrade.rs Added test coverage for invalid upgrade configuration scenarios
contracts/tansu/src/tests/test_dao.rs Commented out flaky event verification test
contracts/tansu/src/tests/test_commit.rs Added tests for anonymous vote commitment validation edge cases
contracts/tansu/src/lib.rs Improved contract validation logic structure
contracts/tansu/src/contract_tansu.rs Added admin threshold validation and safer error handling
contracts/tansu/src/contract_membership.rs Improved member project badge lookup logic
contracts/tansu/src/contract_dao.rs Enhanced voting validation, deadline checks, and anonymous vote processing

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@netlify Netlify
Copy link

netlify bot commented Sep 28, 2025
edited
Loading

Deploy Preview for staging-tansu ready!

Name Link
🔨 Latest commit 2107eaf
🔍 Latest deploy log https://app.netlify.com/projects/staging-tansu/deploys/68dafce034f0e5000954dd66
😎 Deploy Preview https://deploy-preview-253--staging-tansu.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.
Lighthouse
Lighthouse		 1 paths audited
Performance: 63
Accessibility: 90
Best Practices: 83
SEO: 92
PWA: 70
View the detailed breakdown and full score reports

To edit notification comments on pull requests, go to your Netlify project configuration.

@Septimus4
Copy link
Contributor Author

@tupui PR open

@tupui
Copy link
Owner

tupui commented Sep 28, 2025

Thanks I will have a look latest tomorrow morning

tupui
tupui requested changes Sep 29, 2025
View reviewed changes
Copy link
Owner

@tupui tupui left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for this, I just have one comment and I think this is good to go otherwise.

contracts/tansu/src/contract_dao.rs Outdated
// Use get() method to access elements safely
let voted_approve = match tallies.get(0) {
Some(v) => v,
None => return types::ProposalStatus::Cancelled,
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sorry for the nitpick but we actually don't want to mark it as cancelled if there is an issue. Otherwise that's an easy way for people to mark proposals as cancelled which is a real outcome.

Instead we want to fail. I probably need to add some tools to modify some bad votes or something like this but first I want to see if that's really needed and how people try to abuse the system.

I am also not sure if that can even happen if we get to that point in the code.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done

@Septimus4 Septimus4 requested a review from tupui September 29, 2025 21:47
tupui
tupui approved these changes Sep 29, 2025
View reviewed changes
Copy link
Owner

@tupui tupui left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks again!

@tupui tupui merged commit a1e2679 into tupui:main Sep 29, 2025
11 of 12 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Copilot left review comments

@tupui tupui tupui approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@Septimus4 @tupui