You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
- Upgradeable contracts only with strict storage layout discipline, initialization guards, upgrade authorization, and rehearsal tests.
69
70
- Mainnet deployment only after tests, verification, monitoring, and human approval.
70
71
72
+
73
+
## Octra support
74
+
75
+
When users ask about Octra, treat it as an emerging network and verify current repository or documentation state before making claims. Prefer official Octra Labs repositories and provided project files over social posts or third-party farming guides.
76
+
77
+
Known Octra tooling patterns to support:
78
+
79
+
-`octra-labs/octra_pre_client`: Python terminal wallet client using a local `wallet.json` with `priv`, `addr`, and `rpc`, commonly pointed at `https://octra.network`.
80
+
-`octra-labs/webcli`: C++17 local web wallet client for Octra network work, including DEVNET and MAINNET ALPHA modes, encrypted local wallet file storage, stealth transactions, and balance encryption or decryption flows.
81
+
-`octra-labs/wallet-gen`: wallet generator UI with scripts hosted from `octra.org` and a faucet referenced at `https://faucet.octra.network`.
82
+
83
+
Octra-specific safety rules:
84
+
85
+
1. Never ask users to paste private keys, seed phrases, `wallet.json`, `data/wallet.oct`, PINs, or decrypted key material into chat.
86
+
2. Prefer local signing and local wallet generation workflows. Treat remote scripts as convenience paths that must be inspected or replaced with cloned-source execution for high-value use.
87
+
3. Verify official repository URLs, build instructions, dependencies, RPC endpoints, and network mode before giving operational commands.
88
+
4. For C++ webcli work, review vendored crypto and HTTP libraries, OpenSSL linkage, local server binding, wallet encryption, filesystem permissions, and transaction construction.
@@ -30,9 +30,10 @@ Use this skill when working on smart contracts, protocol architecture, tokenomic
30
30
4. Prefer audited libraries and simple architecture over bespoke cleverness.
31
31
5. For EVM, default to Foundry tests when available. Add fuzz and invariant tests for accounting or authorization logic.
32
32
6. For Solana, verify account constraints, signer checks, PDA seeds, CPI targets, token program IDs, and close authority behavior.
33
-
7. For tokenomics, analyze supply, emissions, vesting, liquidity, governance capture, oracle or bridge security, and revenue sources.
34
-
8. Run the smallest relevant verification command, then broader tests when practical.
35
-
9. Report exact commands, outcomes, risks, and assumptions.
33
+
7. For Octra, identify whether the work targets `octra_pre_client`, `webcli`, `wallet-gen`, RPC integration, faucet or testnet operations, or transaction review before giving commands.
34
+
8. For tokenomics, analyze supply, emissions, vesting, liquidity, governance capture, oracle or bridge security, and revenue sources.
35
+
9. Run the smallest relevant verification command, then broader tests when practical.
36
+
10. Report exact commands, outcomes, risks, and assumptions.
36
37
37
38
## Review checklist
38
39
@@ -45,6 +46,15 @@ Use this skill when working on smart contracts, protocol architecture, tokenomic
45
46
- Admin powers are disclosed and minimized.
46
47
- Deployment steps include verification, monitoring, and incident response.
47
48
49
+
## Octra checklist
50
+
51
+
- Verify official Octra Labs repository URLs before relying on commands or endpoints.
52
+
- Never expose private keys, seed phrases, wallet JSON, `data/wallet.oct`, PINs, or decrypted wallet material.
53
+
- For `octra_pre_client`, inspect `wallet.json.example`, `requirements.txt`, async RPC behavior, nonce handling, transaction serialization, and private-key export paths.
54
+
- For `webcli`, inspect C++17 build flags, OpenSSL 3 linkage, local server binding, wallet encryption, filesystem permissions, vendored crypto or HTTP code, and transaction builders.
55
+
- For `wallet-gen`, prefer cloned-source review over blind remote script execution for high-value use.
56
+
- Treat DEVNET, testnet, faucet, and MAINNET ALPHA instructions as volatile. Verify live docs or repo README before acting.
57
+
48
58
## Pitfalls
49
59
50
60
- Treating a multisig as a complete security model.
Use this skill when the user asks about Octra, Octra wallets, Octra clients, Octra RPC, faucet usage, Octra testnet or alpha-mainnet activity, or code review of Octra-related repositories.
15
+
16
+
## Ground truth first
17
+
18
+
Octra appears to be an emerging network with fast-moving tooling. Before giving operational commands, inspect the current repository files or current official documentation when available. Prefer official Octra Labs repositories over third-party farming guides.
19
+
20
+
Known official repositories discovered during profile maintenance:
21
+
22
+
-`octra-labs/octra_pre_client`: Python terminal wallet client. Its README describes balance and transaction history, sending one or many transactions, private-key or full-wallet export, Python 3.8 or later, `wallet.json`, and RPC default examples using `https://octra.network`.
23
+
-`octra-labs/webcli`: C++17 local web wallet client. Its README describes DEVNET and MAINNET ALPHA compatibility, local server usage, OpenSSL 3, `libpvac`, encrypted local wallet storage in `data/wallet.oct`, PIN unlock, stealth transactions, and balance encryption or decryption flows.
24
+
-`octra-labs/wallet-gen`: wallet generator UI. Its README describes install scripts from `octra.org` and references `https://faucet.octra.network` for testnet tokens.
25
+
26
+
## Private-key safety
27
+
28
+
Never ask the user to paste or upload:
29
+
30
+
- Private keys.
31
+
- Seed phrases.
32
+
-`wallet.json`.
33
+
-`data/wallet.oct`.
34
+
- PINs.
35
+
- Decrypted wallet material.
36
+
- Faucet auth tokens or API keys.
37
+
38
+
If key material is needed, instruct the user to keep it local and provide redacted file structure or command output only.
2. Inspect repository files such as `README.md`, `requirements.txt`, `package.json`, `Makefile`, `setup.sh`, `wallet.json.example`, `rpc_client.hpp`, `wallet.hpp`, `crypto_utils.hpp`, and transaction builder files.
44
+
3. Verify platform requirements before commands: Python version for terminal client, C++17 compiler and OpenSSL 3 for webcli, Bun or Node tooling for wallet generation if applicable.
45
+
4. Prefer local clone and review over blind remote script execution. If a README uses `curl | bash` or PowerShell `iex`, offer a safer cloned-source path for high-value wallets.
46
+
5. Check wallet file permissions, local server binding, RPC endpoint configuration, transaction serialization, nonce handling, error handling, and logging of sensitive values.
47
+
6. For troubleshooting, ask for redacted errors and public addresses only. Never request secrets.
0 commit comments