npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@amirshirif/auralis

v1.0.3

Published

Security-first Solidity protocol engineering portfolio contracts and validation artifacts.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

amirshirifamirshirif

Keywords

solidityethereumfoundrydefierc4626erc7540diamond-standardsmart-contracts

Readme

Auralis is a protocol-engineering portfolio repository focused on security-first, upgrade-aware Solidity systems. It combines modular contract design, deployment-backed validation, local operator flows, hardening coverage, and standalone smart-wallet execution so a reviewer can assess architecture and evidence together rather than as isolated snippets.

Why This Repo Exists

This repo is meant to demonstrate more than isolated contract snippets. It shows how access control, guard rails, oracle safety, vault logic, diamond routing, deployment scripts, rehearsal flows, and CI checks fit together as a reviewable engineering system.

Review In 5 Minutes

  • Architecture decisions: docs/adr/README.md
  • Canonical docs map: docs/README.md
  • AMM architecture: docs/amm.md
  • Hosted vault architecture: docs/vault-facets.md
  • Async vault requests: docs/erc7540-vault.md
  • Smart-wallet architecture: docs/multisig-wallet.md
  • Security assumptions: docs/threat-model.md
  • Validation and CI policy: docs/security-checks.md
  • Local workflow and deployment artifacts: docs/auralis-local.md

What This Repo Proves

  • Core architecture: diamond routing, selector ownership discipline, and separate hosted token and vault deployment models plus standalone AMM and smart-wallet tracks.
  • Safety posture: RBAC, timed permissions, pause semantics, reentrancy protection, oracle validation, upgrade guardrails, and threshold-based wallet execution.
  • Token hosts: ERC20 and ERC721 diamond deployments with role, pause, Permit, metadata, and selector ownership coverage.
  • Vault platform: hosted ERC-4626 vaults with controls, strategy integration, native-asset support, and an ERC-7540 async request track for ERC-20 hosts.
  • AMM track: standalone V2-style AMM with deterministic pair deployment, wrapped-native routing, pricing math, and protocol-fee controls.
  • Wallet track: standalone multisig wallet with single-call, batch, and self-managed configuration flows.
  • Operational maturity: local bootstrap, smoke validation, activity flows, upgrade rehearsal, and matching CI/hardening gates.

Evidence

Architecture And Design

  • docs/adr/README.md: accepted architecture decisions and why the repo is shaped this way.
  • docs/diamond-core.md: diamond routing, cut flow, selector ownership, and storage discipline.
  • docs/vault-facets.md: hosted vault family, facet split, lifecycle, and deployment model.
  • docs/erc7540-vault.md: async request lifecycle, settlement surface, controller/operator semantics, and reviewer entrypoints.
  • docs/amm.md: standalone AMM deployment model, pair/router behavior, math, and reviewer path.
  • docs/multisig-wallet.md: wallet deployment model, signature semantics, replay protection, and self-managed configuration surface.
  • docs/threat-model.md: trust boundaries, threat assumptions, and residual risks.

Validation

  • test/DiamondSelectorIntegrityCore.t.sol: selector routing and loupe integrity regressions.
  • test/DiamondVaultDeploymentIntegration.t.sol: hosted vault deployment, init, async selector ownership, settlement surface, and oracle wiring.
  • test/DiamondVaultHostHardening.t.sol: replace/remove/re-add hardening across the hosted vault diamond path.
  • test/DiamondVaultHostInvariant.t.sol: diamond-routed hosted vault invariants across deposits, withdrawals, strategy lifecycle, roles, and pause state.
  • test/DiamondNativeVaultHostHardening.t.sol: native hosted vault force-sent ETH, strategy, selector replacement, and persistence hardening.
  • test/DiamondNativeVaultHostInvariant.t.sol: native hosted vault invariants for managed accounting, immediate liquidity, limits, strategy debt, and force-sent surplus.
  • test/ERC7540VaultFoundationCore.t.sol: aggregate request model, selector split, and operator bookkeeping coverage.
  • test/ERC7540VaultDepositCore.t.sol: async deposit request, settlement, and claim coverage.
  • test/ERC7540VaultRedeemCore.t.sol: async redeem request, settlement, and claim coverage.
  • test/ERC7540VaultDepositFuzz.t.sol and test/ERC7540VaultRedeemFuzz.t.sol: async request property coverage for deposit and redeem flows.
  • test/ERC7540VaultRequestAccountingInvariant.t.sol: async request accounting invariants across pending, claimable, escrowed, and managed buckets.
  • test/ERC7540VaultRequestTime.t.sol: async controller/operator and settlement-scope time-window coverage.
  • test/DiamondTokenDeploymentIntegration.t.sol: ERC20 and ERC721 host deployment and selector ownership.
  • test/DiamondTokenHostHardening.t.sol: token-host replace/remove/re-add, role, pause, Permit, and metadata persistence coverage.
  • test/DiamondErc20HostInvariant.t.sol and test/DiamondErc721HostInvariant.t.sol: diamond-routed token-host invariants for ERC20 and ERC721 behavior.
  • test/AMMFactoryRegistry.t.sol: AMM factory registry behavior, sorted pair lookups, and deterministic pair address coverage.
  • test/AMMPairCore.t.sol: pair mint/burn/swap accounting, fee switch, and reserve update behavior.
  • test/AMMRouterCore.t.sol: router quoting, liquidity, wrapped-native, and single-hop/multi-hop swap coverage.
  • test/AMMRouterTime.t.sol: cumulative price and reserve timestamp coverage.
  • test/AMMPairFuzz.t.sol and test/AMMRouterFuzz.t.sol: pair and router property coverage.
  • test/AMMInvariant.t.sol: AMM reserve, balance, LP, and factory invariants.
  • test/AMMHardening.t.sol: malformed token, false/silent transfer, reentrancy, protocol-fee, and router balance hardening coverage.
  • test/SystemOracleFailureScenarios.t.sol: stale-data, breaker, fallback, and recovery behavior.
  • test/SystemVaultStressInvariant.t.sol: higher-signal system stress coverage for vault behavior under adversarial sequences.
  • test/MultisigWalletFoundationCore.t.sol: initializer, owner-set, and clone foundation checks.
  • test/MultisigWalletCoreExecution.t.sol: EIP-712 signing, nonce, ERC-1271, and single-call execution behavior.
  • test/MultisigWalletIntegration.t.sol: batch execution and deterministic factory deployment coverage.
  • test/MultisigWalletManagement.t.sol: self-managed owner and threshold mutation coverage.
  • test/MultisigWalletFuzz.t.sol: signature, signer-ordering, batch, and management fuzz coverage.
  • test/MultisigWalletInvariant.t.sol: owner uniqueness, threshold bounds, and nonce progression invariants.

Deployment And Operator Evidence

  • docs/security-checks.md: current CI policy and local reproduction path.
  • docs/ops/README.md: operator runbooks and validation flows.
  • docs/auralis-local.md: local bootstrap, smoke, activity, reset, and artifact layout.

Validation Path

Foundry uses the Solidity compiler pinned in foundry.toml and will fetch that compiler version on first build if it is not already installed locally.

Run the full local validation path with:

forge fmt --check
forge build --sizes --skip script
forge test --offline

For focused reviewer-facing validation, use the curated groups below. The fuller local command inventory lives in docs/security-checks.md.

For hosted diamond and vault behavior:

forge test --offline --match-path test/DiamondSelectorIntegrityCore.t.sol
forge test --offline --match-path test/DiamondVaultDeploymentIntegration.t.sol
forge test --offline --match-path test/DiamondVaultHostHardening.t.sol
forge test --offline --match-path test/DiamondVaultHostInvariant.t.sol
forge test --offline --match-path test/DiamondNativeVaultHostHardening.t.sol
forge test --offline --match-path test/DiamondNativeVaultHostInvariant.t.sol
forge test --offline --match-path test/ERC7540VaultFoundationCore.t.sol
forge test --offline --match-path test/ERC7540VaultDepositCore.t.sol
forge test --offline --match-path test/ERC7540VaultRedeemCore.t.sol
forge test --offline --match-path test/ERC7540VaultDepositFuzz.t.sol
forge test --offline --match-path test/ERC7540VaultRedeemFuzz.t.sol
forge test --offline --match-path test/ERC7540VaultRequestAccountingInvariant.t.sol
forge test --offline --match-path test/ERC7540VaultRequestTime.t.sol
forge test --offline --match-path test/SystemOracleFailureScenarios.t.sol
forge test --offline --match-path test/SystemVaultStressInvariant.t.sol

For the token-host track:

forge test --offline --match-path test/DiamondTokenDeploymentIntegration.t.sol
forge test --offline --match-path test/DiamondTokenHostHardening.t.sol
forge test --offline --match-path test/DiamondErc20HostInvariant.t.sol
forge test --offline --match-path test/DiamondErc721HostInvariant.t.sol

For the wallet track:

forge test --offline --match-path test/MultisigWalletFoundationCore.t.sol
forge test --offline --match-path test/MultisigWalletCoreExecution.t.sol
forge test --offline --match-path test/MultisigWalletIntegration.t.sol
forge test --offline --match-path test/MultisigWalletManagement.t.sol
forge test --offline --match-path test/MultisigWalletFuzz.t.sol
forge test --offline --match-path test/MultisigWalletInvariant.t.sol

For the AMM track:

forge test --offline --match-path test/AMMFoundationCore.t.sol
forge test --offline --match-path test/AMMFactoryRegistry.t.sol
forge test --offline --match-path test/AMMPairCore.t.sol
forge test --offline --match-path test/AMMRouterCore.t.sol
forge test --offline --match-path test/AMMRouterTime.t.sol
forge test --offline --match-path test/AMMPairFuzz.t.sol
forge test --offline --match-path test/AMMRouterFuzz.t.sol
FOUNDRY_INVARIANT_RUNS=64 FOUNDRY_INVARIANT_DEPTH=32 forge test --offline --match-path test/AMMInvariant.t.sol
forge test --offline --match-path test/AMMHardening.t.sol

For the local Auralis workflow:

bash scripts/auralis-up.sh
bash scripts/auralis-smoke.sh
bash scripts/auralis-reset.sh

Documentation

Start with docs/README.md for the canonical docs map.

Recommended reviewer path:

  • Architecture decisions: docs/adr/README.md
  • Core architecture: docs/diamond-core.md, docs/token-facets.md, docs/vault-facets.md, docs/erc7540-vault.md, docs/amm.md, docs/multisig-wallet.md, docs/oracle-adapter.md
  • Security and validation: docs/threat-model.md, docs/security-checks.md
  • Operations and local workflow: docs/ops/README.md, docs/auralis-local.md

Tooling

Built with Foundry. CI workflows live under .github/workflows/.

Foundry docs: book.getfoundry.sh

Public Metadata

This is a personal portfolio repository. Contribution, security, changelog, and GitHub template guidance are provided for public review, while community operations files such as CODE_OF_CONDUCT.md, SUPPORT.md, and FUNDING.yml are intentionally omitted.

Provenance And AI Assistance

Auralis incorporates and refines selected patterns, utilities, and implementation ideas from earlier private portfolio projects.

The protocol architecture, implementation code, technical decisions, curation of prior work, and final review/integration of changes were directed and owned by me.

AI assistance was used for tests, documentation, scripts, and planning support.