npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

sc-release-process-exploration

v1.3.0

Published

This repository illustrates a release process for the smart contracts.

Downloads

9

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

vincentgenodvincentgenod

Keywords

Readme

Smart contracts release process exploration

This repository illustrates a release process for the smart contracts.

The repository contains the compilation artifacts of the previous releases. Each release's artifacts are static and sufficient for deployment/interaction and verification on Etherscan.

From the releases artifacts, a NPM package can be published containing the ABIs organized by contracts and release version.

Motivation

The goal is to satisfy in the simplest way possible the different actors:

  • Smart contract developers want to develop in an isolated way and not worrying about modifying artifacts of previous releases,
  • Smart contract "DevOps" want to have a simple way to create a freeze of the code at a certain point in time and create the associated artifacts. The artifacts should be sufficient for any later uses such as deployments, transactions, Etherscan verifications or generation of packages for downstream uses,
  • Backend and Frontend developers want to have a simple and safe way to interact with a contract given its release version.

Practical release process

Once code is ready to be released,

  1. create a new branch,
  2. if not already there, add a changeset describing the changes and the version bump (see the Release process details section below for more details) and commit it,
yarn changeset
  1. prepare the release artifacts that will define the release and commit them,
yarn release:prepare
  1. create a pull request against main, verify the smart contract artifacts, merge it if it looks good,
  2. an automated Changeset PR will be created (or updated if it already exist), merge it to create the release and publish the NPM package.

Release process details

The first need for the process is the management of the version. This repository uses semver versionning. In practice, version is managed here using Changesets.

[!NOTE] Changesets let contributors declare how their changes should be released.

Developers can add a changeset alongside their changes with a type major, minor or patch and a description. Before releasing, all changesets are consumed in order to derive the next release version.

Once code is ready for a release,

  1. the changesets are consumed and the next release version is fixed,
  2. a compilation of the smart contracts is performed and artifacts are stored under a temporary folder releases/tmp,
  3. the releases/tmp is renamed using the release version: releases/<release name>, at this point the releases folder looks like
releases
├── <release-name a>
│   └── artifacts
│       ├── build-info
│       │   └── <build info file name>.json
│       └── src
│           ├── <contract-name>.sol
│           │   └── <contract-name>.dbg.json
│           │   └── <contract-name>.json
│           └── ...
└── <release-name b>
    └── artifacts
        ├── build-info
        │   └── <build info file name>.json
        └── src
            ├── <contract-name>.sol
            │   └── <contract-name>.dbg.json
            │   └── <contract-name>.json
            └── ...

In this case, the contracts are assumed to be under src folder.

Each release folder is completely independent and contains all the informations for later operations.

Once step 3. is performed, the rest of the process can be performed. This part is highly opinionated and is inspired from real-world needs.

  1. the delta between each releases is generated: the list of versions for each contract is built. If a contract has not changed since the previous release, it will be ignored. At this point the releases folder looks like
releases
├── generated-delta
|   │   ├── <contract-name>
|   │   │   ├── <release-name a>.json // No change between release a and b
|   │   │   ├── <release-name c>.json
|   │   │   └── ...
|   │   └── ...
|   └── build-infos
|       ├── <release-name a>.json
|       ├── <release-name b>.json
|       ├── <release-name c>.json
|       └── ...
├── <release-name a>
│   └── artifacts
│       ├── build-info
│       │   └── <build info file name>.json
│       └── src
│           ├── <contract-name>.sol
│           │   └── <contract-name>.dbg.json
│           │   └── <contract-name>.json
│           └── ...
├── <release-name b>
│   └── artifacts
│       ├── build-info
│       │   └── <build info file name>.json
│       └── src
│           ├── <contract-name>.sol
│           │   └── <contract-name>.dbg.json
│           │   └── <contract-name>.json
│           └── ...
└── <release-name c>
    └── artifacts
        ├── build-info
        │   └── <build info file name>.json
        └── src
            ├── <contract-name>.sol
            │   └── <contract-name>.dbg.json
            │   └── <contract-name>.json
            └── ...
  1. the final step is to build the artifacts that will be exposed to downstream consumers through a NPM package. In this repository, only the ABIs are exposed, exposure is made as json file or as TypeScript const. This build uses tsup to realize the compilations. The generated artifacts are exposed in a git ignored dist folder with the following form
dist
├── <contract-name>
│   ├── <release-name a>.json
│   ├── <release-name a>.js
│   ├── <release-name a>.d.ts
│   ├── <release-name c>.json
│   ├── <release-name c>.js
│   ├── <release-name c>.d.ts
|   └── ...
└── ...
  1. the dist folder is copied in a more friendly exposed abis folder for consumers.

Snapshot releases

Releases are meant to be created once the code is considered stable. This is not the case during the development process but backend and frontend developers may alreay want to have access to the new ABIs, snapshot releases are introduced here as a way to solve this issue.

From the Changesets documentation:

Snapshot releases are a way to release your changes for testing without updating the versions. Both a modified version and a modified publish command are used to do accomplish a snapshot release. After both processes run, you will have a published version of packages in changesets with a version of 0.0.0-{tag}-DATETIMESTAMP.

In order to publish a snapshot release, one first creates a branch snapshot/<snapshot name> with the target smart contract codebase. Once the branch is created,

  • Recommended option, the user can push the branch, even if there are no changes, to the remote registry, i.e. git push. If the branch was correctly named, it will trigger a workflow in order to create the snapshot release. Once the release has been successful, the branch can be deleted,
  • If the user has the authorization to publish the NPM package, he/she can run yarn snapshot-release <snapshot-name> and then copy the artifacts to the S3. At this point, the branch can be deleted.

About deployment

Deployment is considered as operations using one or multiple previous releases. It is therefore a consumer of the release process but it is not part of the release process.

However, it impacts the content of a release as it must satisfy the needs of later deployment operations.

Additional development may be later added on this.