Proposing Daml Package Analyzer
ApprovedMerged- SIG
- daml-tooling
- Champion
- —
- Author org
- —
- Ask
- 335,000
Abstract
We propose a lightweight static analysis tool that inspects a Daml project to compute and present information about cross-package interactions in a developer-friendly way. Unexpected references across packages can increase the risk of misuse of sensitive functionality and broaden the attack surface. Being able to precisely compute the dependencies gives users a way to inspect it statically and redesign the system if needed.
Milestones
| Title | Due date | Target | Amount (CC) |
|---|---|---|---|
| Core Analysis Engine | — | — | 335,000 |
| The tool is run on 5 production-scale or representative Canton deployment | — | — | — |
| The tool is run on 5 additional production-scale or representative Canton deployment | — | 335,000 Canton Coin | — |
| Total | 335,000 | ||
Budget impact
- % of available
- 0.1%
- % if all RFV pass
- 0.2%
- Ask (CC)
- 335,000
Comments by org
6 comments · 1 org · last activity Apr 15, 2026
| Organisation | Comments |
|---|---|
| Canton Foundation | 5 |
| Unknown | 1 |