Proposal: Daml Security Framework
SubmittedPR- SIG
- needs-SIG
- Champion
- —
- Author org
- —
- Ask
- source pending
Abstract
This proposal delivers the first security framework for the Daml smart contract language: a 12-class vulnerability taxonomy, a 45-item pre-deployment audit checklist, and a static analysis CLI (daml-check) with detectors for the 6 highest-severity vulnerability classes. A working proof-of-concept scanner with two detectors is already published at https://github.com/1D0n/daml-security-framework ---
Milestones
| Title | Due date | Target | Amount (CC) |
|---|---|---|---|
| _Vulnerability Taxonomy and Architecture_ | — | — | — |
| _Static Analysis CLI — daml-check_ | — | — | — |
| Total | — | ||
Budget impact
- % of available
- —
- % if all RFV pass
- —
- Ask (CC)
- amount pending
Comments by org
No public reasons documented.
View discussion on GitHub