Skip to main content

✅ Checklist

Once you finished developing your smart contract please go through the following list in order to ensure everything is safe for the end user.

Anatomy

  1. All private methods are decorated asprivate.

Environment

  1. predecessor and signer are used correctly through the entire contract.

Storage

  1. Each time the state grows it is ensured that there is enough balance to cover it
  2. All collections (i.e. Vector, Map, Tree, etc) have an unique id
  3. Check for underflow and overflow!. In rust, you can do this by simply adding the overflow-checks = true flag in your Cargo.toml.

Actions

  1. When sending money, you leave enough in the contract to cover the storage cost
  2. If you are tracking user's fund, you deduct them before sending them back to the user.

Callbacks

  1. All private callbacks are marked as private
  2. All cross-contract calls have a callback that checks for errors and rolls back the state if necessary
  3. All cross-contract calls have a callback that checks for errors and returns money to the predecessor if necessary
  4. All the callbacks are given enough GAS to execute entirely
  5. The contract is not left in a exploitable state between a cross-contract call and its callback