npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@solana-asm/shield

v0.5.1

Published

Client SDK for composing Shield transaction guards

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

priyansh.ptl18priyansh.ptl18

Keywords

solanasbpfguardstransactionslippage

Readme

@solana-asm/shield

TypeScript builders for Shield transaction guards. Each function returns a TransactionInstruction you prepend to your transaction. If a guard's check fails, Solana aborts the whole transaction atomically.

Install

npm install @solana-asm/shield @solana/web3.js

@solana/web3.js is a peer dependency. The package is tree-shakeable; importing one guard does not pull in the others.

Quick Start

import { Connection, Keypair, PublicKey, Transaction } from "@solana/web3.js"
import {
    slotDeadlineIx,
    slippageIx,
    balanceFloorIx,
    feeCeilingIx,
} from "@solana-asm/shield"

const SLOT_DEADLINE = new PublicKey("SLDyTxMbunLA51WADZKpXNZ49mFnhsPxtZSp4Rbr4ja")
const SLIPPAGE      = new PublicKey("SLDChznvxmWVQpGQbweD1oXK8KcaxgaCD1qyDWB3Tps")
const BALANCE_FLOOR = new PublicKey("SLDwNtfXVRXuW29kMWLkvs8QX6xkdg8qjPuV6WQ25Hb")
const FEE_CEILING   = new PublicKey("SLDM7koS4UYLni15NGVoNW1DMG8ueZJmcGAA6UqMzQQ")

const connection = new Connection("https://api.devnet.solana.com")
const slot = await connection.getSlot()
const { blockhash, lastValidBlockHeight } = await connection.getLatestBlockhash()

const tx = new Transaction({ feePayer: signer.publicKey, blockhash, lastValidBlockHeight })

tx.add(slotDeadlineIx({ programId: SLOT_DEADLINE, maxSlot: BigInt(slot + 100) }))
tx.add(slippageIx({ programId: SLIPPAGE, tokenAccount, minAmount: 1_000_000n }))
tx.add(balanceFloorIx({ programId: BALANCE_FLOOR, account: signer.publicKey, minLamports: 1_000n }))
tx.add(feeCeilingIx({ programId: FEE_CEILING, maxMicroLamports: 1_000n }))
tx.add(yourDestinationInstruction)

API

slotDeadlineIx({ programId, maxSlot })

Transaction fails if the current slot is past maxSlot. No accounts.

slotDeadlineIx({
    programId: SLOT_DEADLINE,
    maxSlot: 200_000_100n, // bigint or number
})

slippageIx({ programId, tokenAccount, minAmount })

Transaction fails if tokenAccount.amount is less than minAmount. tokenAccount must be an SPL Token account.

slippageIx({
    programId: SLIPPAGE,
    tokenAccount: userUsdcAta,
    minAmount: 1_000_000n,
})

balanceFloorIx({ programId, account, minLamports })

Transaction fails if account.lamports is less than minLamports. Works for any account, not just the signer.

balanceFloorIx({
    programId: BALANCE_FLOOR,
    account: signer.publicKey,
    minLamports: 5_000_000n,
})

signerAllowlistIx({ programId, signer, allowed })

Transaction fails unless the signer's pubkey is in allowed. The on-chain program also verifies the account's is_signer byte (defense in depth), so the AccountMeta is always built with isSigner: true.

signerAllowlistIx({
    programId: SIGNER_ALLOWLIST,
    signer: keeper.publicKey,
    allowed: [keeperA.publicKey, keeperB.publicKey, keeperC.publicKey],
})

Cost scales linearly with the list size: roughly 17 + 11*N CU. allowed is capped at 255 entries (count is a u8); in practice the transaction-size limit bites first around N=38. Throws RangeError if you pass more than 255 entries.

feeCeilingIx({ programId, maxMicroLamports })

Transaction fails if any ComputeBudget SetComputeUnitPrice instruction in the same tx exceeds maxMicroLamports per CU. The Instructions sysvar account is wired internally, so the caller passes only the threshold.

feeCeilingIx({
    programId: FEE_CEILING,
    maxMicroLamports: 1_000n, // micro-lamports per CU
})

Useful for capping priority fee bids on keeper / agent transactions so a misconfigured client can't quietly burn an order of magnitude more than intended. Pair with ComputeBudgetProgram.setComputeUnitPrice from @solana/web3.js to set the actual fee. Throws RangeError if maxMicroLamports is negative or exceeds u64.

The guard walks every instruction in the sysvar's serialized data, so cost scales with num_instructions in the tx. Measured at 86 CU on a 2-ix transaction (limit + guard, no match); ~30 CU extra per matched SetComputeUnitPrice.

programAllowlistIx({ programId, allowed })

Transaction fails if any other top-level instruction in the same tx targets a program that is not in allowed. The guard's own instruction is implicitly skipped, so this program does not need to be on the list.

programAllowlistIx({
    programId: PROGRAM_ALLOWLIST,
    allowed: [JUPITER_V6, ComputeBudgetProgram.programId],
})

Every OTHER top-level ix is checked, including ComputeBudget (SetComputeUnitLimit, SetComputeUnitPrice) and any other Shield guards you compose with. If the transaction sets a CU limit, allowlist ComputeBudget111111111111111111111111111111 too, or the guard exits 1 ("not allowed") at that ix. ~80 CU on N=1; scales roughly with num_top_level_ix * average_allowlist_position. Throws RangeError if allowed exceeds 255 entries.

computeUnitFloorIx({ programId, minUnits })

Transaction fails if no ComputeBudget SetComputeUnitLimit is present, or if its u32 value is below minUnits. Use to guarantee a minimum compute budget for keeper or agent transactions where the client might forget to set one or under-allocate.

computeUnitFloorIx({
    programId: COMPUTE_UNIT_FLOOR,
    minUnits: 200_000, // bigint or number, u32 range
})

Boundary is non-strict: units == minUnits passes. ~93 CU on a 3-ix tx (limit + guard + destination). Throws RangeError if minUnits is negative or exceeds u32.

Reading errors

Each guard logs a short string and exits with a numeric code before failing. Parse a failed transaction's logs:

import { GuardExitCode, parseGuardError } from "@solana-asm/shield"

const { value } = await connection.simulateTransaction(tx)
if (value.err) {
    const parsed = parseGuardError(value.logs ?? [])
    if (parsed?.code === GuardExitCode.ConditionFailed) {
        // user's slippage / deadline / balance check failed
    }
}

| Code | Name | Meaning | |---:|---|---| | 0 | Success | Condition held | | 1 | ConditionFailed | The guard's check returned false | | 2 | BadInstructionData | Instruction data did not match the guard's expected layout | | 3 | InvalidAccount | Required account was missing or wrong type |

Program IDs

Live on devnet and mainnet at the same addresses.

| Guard | Program ID | |---|---| | slot_deadline | SLDyTxMbunLA51WADZKpXNZ49mFnhsPxtZSp4Rbr4ja | | slippage | SLDChznvxmWVQpGQbweD1oXK8KcaxgaCD1qyDWB3Tps | | balance_floor | SLDwNtfXVRXuW29kMWLkvs8QX6xkdg8qjPuV6WQ25Hb | | signer_allowlist | SLDPp75MazNodaDGQVqduNNGYYbJVYk3EKWLFppYtvh | | fee_ceiling | SLDM7koS4UYLni15NGVoNW1DMG8ueZJmcGAA6UqMzQQ | | program_allowlist | SLDHxogaum69jT7C8V4jV16AK7jnuQM8y8EfCJ9RGeK | | compute_unit_floor | SLDfqR7EtW1Fgb8y8oEM6aFuho6Yccf8a3j2ebrGQEy |

Examples

Runnable per-guard demos live in examples/. They share signer / RPC / explorer plumbing through examples/_shared.ts.

bun run example:devnet              # run every example
bun run example:devnet slippage     # run one example
MODE=send bun run example:devnet    # actually submit (default is simulate)

License

MIT