YieldToken is an implementation of zero-coupon Dai bonds. It is inspired by the paper "The Yield Protocol: On-Chain Lending With Interest Rate Discovery" by Dan Robinson and Allan Niemerg.
These smart contracts have been deployed to Kovan and the Mainnet, and a web frontend is deployed at http://app.yield.is
Detailed documentation can be found in the Yield docs.
This code is provided as-is, with no guarantees of any kind.
Before running any command, make sure to install dependencies:
$ yarn
Lint the Solidity code:
$ yarn lint:sol
Lint the TypeScript code:
$ yarn lint:ts
Generate the code coverage report:
$ yarn coverage
Compile and test the smart contracts with Buidler and Mocha:
$ yarn test
npx hardhat flatten contracts/token/ERC20.sol | sed 's/.*SPDX.*$//g' > contracts/token/ERC20.flat.sol
scribble --arm contracts/token/ERC20.flat.sol --output-mode files
mythx --api-key `cat .mythxKey` analyze contracts/token/ERC20.flat.sol --solc-version 0.8.1
scribble --disarm contracts/token/ERC20.flat.sol
rm contracts/token/ERC20.flat.sol
We use ganache as a local blockchain:
$ yarn ganache
We use ganache to fork the mainnet blockchain:
$ yarn mainnet-ganache
We use truffle for migrations, make sure that truffle-config.js
suits your use case, start a local ganache instance as explained above, and then run truffle:
$ npx truffle migrate
or
$ npx truffle migrate --network mainnet-ganache
In developing fyDai we have used two different libraries for fixed point arithmetic.
- For general use we have used a decimal-based fixed point math library, trading off performance for clarity.
- For heavy-duty use in the YieldSpace formula, we have used a binary-based fixed point math library, trading off clarity for performance.
In developing the code in this repository we have set the highest bar possible for security. We have been fully audited by Trail of Bits, with the results publicly available. We have also used fuzzing tests for the Pool and YieldMath contracts, allowing us to find edge cases and vulnerabilities that we would have missed otherwise.
Yield is offering bounties for bugs disclosed to us at security@yield.is. The bounty reward is up to $25,000, depending on severity. Please include full details of the vulnerability and steps/code to reproduce. We ask that you permit us time to review and remediate any findings before public disclosure.
This project doesn't include any governance or upgradability features. If you have a contribution to make, please reach us out on Discord and we will consider it for a future release or product.
We would like to thank Dan Robinson (Paradigm), Georgios Konstantopoulos (Paradigm), Sam Sun (Paradigm), Mikhail Vladimirov (ABDK), Gustavo Grieco (Trail of Bits), Martin Lundfall (dAppHub) and Noah Zinsmeister (Uniswap) for their feedback and advice. We wouldn't be here without them.
All files in this repository are released under the GPLv3 license.