RogueWave
b98b904896
Monetization (design Rev 4, §3.1) — transparent in-tx fee, non-custodial:
- @pyre/core: computeFeeBreakdown (single source of truth, BigInt) + FeeBreakdown
threaded through close/burn previews; fee tests.
- @pyre/config: PYRE_TREASURY_WALLET / PYRE_FEE_BPS (500) / swap fee / max contribution.
- @pyre/solana: close-empty + burn→close now append ONE System transfer of exactly
the disclosed fee to the treasury; rent/authority/feePayer pinned to wallet.
buildBurnTx re-validates EVERY account on-chain and value-gates via the classifier
(classic SPL + Token-2022) — never burns protected/valuable/NFT/unsupported;
ignores client amount (burns real balance); whole-build rejection.
- @pyre/api: close-empty/burn endpoints carry the fee + bounded optional contribution;
/api/receipt persists (cleanup_receipts) and records the on-chain treasury fee as
Essence; GET /api/essence; startup migrate(). Best-effort DB (never fails receipts).
- @pyre/db: Postgres Essence ledger (rounds, cleanup_receipts, essence_contributions),
idempotent migrations, parameterized + u64-safe.
- @pyre/web: fee preview ("reclaim · feeds the PYRE · you net" + treasury) + optional
"feed more" slider; burn flow w/ destructive confirm; decode+match verifies the fee
transfer (treasury + exact lamports) before signing; public "🔥 fed the PYRE" panel.
Built by agents (2 waves) + 2 audits. Security audit found a HIGH — buildBurnTx
didn't value-gate CLASSIC spl tokens (a direct API caller could burn USDC/an NFT);
FIXED (classify classic accounts too) + 2 regression tests. Integration: SHIP.
typecheck 8/8, core 91, solana 30, web build green. Live: burn preview on the dust
token shows 5% → treasury; non-empty/non-owned/valuable rejected. Nightly DB backup
cron enabled.
Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
@pyre/api
PYRE backend HTTP API. Skeleton only — endpoints exist as TODO stubs/route
placeholders, NOT real implementations. No Solana transaction or scan/build
logic is implemented yet (see CLAUDE.md, §14).
Stack: Node.js + Fastify + TypeScript, with PostgreSQL (@pyre/db), Redis +
BullMQ for queueing jobs handled by @pyre/worker.
Responsibilities (§13)
Token scan coordination, classification helpers, route evaluation, AI generation orchestration, metadata preparation, receipt storage, Spawn record storage, public API, admin API.
Endpoints to implement (§14) — TODO
POST /api/scan— scan a wallet's token accounts; return summary + accounts.POST /api/build/close-empty— build unsigned close-account tx for empty ATAs.POST /api/build/burn— build unsigned burn tx for selected junk tokens.POST /api/receipt— record/return a cleanup receipt for a confirmed tx.POST /api/prometheus/generate— enqueue a Prometheus Spawn generation job.- Admin endpoints — review/approve/reject generated Spawn packages.
Currently only GET /health is wired up.
Backend security rules (§16)
Rate-limit scan endpoints, validate wallet pubkeys, validate token-account ownership, never trust client-submitted classifications (recompute server-side), log all transaction-build requests, protect admin endpoints, use env secrets only.
Scripts
dev—tsx watch src/index.tsbuild—tsc -p tsconfig.jsontypecheck—tsc --noEmitlint/test— placeholders for now