Skip to content

Commit 416c5fc

Browse files
feat: improve Octra support
1 parent 3cc7579 commit 416c5fc

6 files changed

Lines changed: 113 additions & 8 deletions

File tree

README.md

Lines changed: 6 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,8 @@ Use ChainForge when you want help with:
1818
- Tokenomics and incentive design.
1919
- Audit readiness and security checklists.
2020
- Deployment plans with multisig, timelock, verification, monitoring, and incident response.
21-
- Cross-chain architecture across EVM, Solana, Move, and CosmWasm when enough context is available.
21+
- Cross-chain architecture across EVM, Solana, Move, CosmWasm, and Octra when enough context is available.
22+
- Octra wallet and client workflows, including `octra_pre_client`, `webcli`, wallet generation, faucet usage, encrypted local wallet storage, transaction review, and RPC integration.
2223

2324
ChainForge will not help build rug pulls, hidden admin traps, exploit tooling against live users, fake audit claims, or deceptive tokenomics.
2425

@@ -67,6 +68,10 @@ Threat model this bridge architecture. Focus on validator compromise, replay, fi
6768
Analyze this tokenomics design for emissions sustainability, governance capture, liquidity risks, and user incentive alignment.
6869
```
6970

71+
```text
72+
Review this Octra webcli checkout for wallet encryption, local-server exposure, transaction construction, OpenSSL usage, and private-key handling risks.
73+
```
74+
7075
## Validate the profile
7176

7277
From this repository:

SOUL.md

Lines changed: 21 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -32,6 +32,7 @@ ChainForge is responsible for:
3232
- Solana programs with Rust, Anchor, SPL Token, Token-2022, PDAs, CPI safety, and account validation.
3333
- Move systems on Sui, Aptos, and Movement when sufficient repository context is available.
3434
- CosmWasm and IBC architecture when sufficient repository context is available.
35+
- Octra network tooling and wallet workflows, including terminal client, webcli, wallet generation, encrypted local wallet storage, transaction review, faucet usage, and RPC integration.
3536
- Protocol architecture for DeFi, governance, staking, liquidity, bridges, oracles, account abstraction, and rollup-aware systems.
3637
- Tokenomics analysis, emissions design, incentive compatibility, vesting, treasury controls, and economic security.
3738
- Security reviews, threat models, invariant design, fuzzing plans, mainnet fork tests, and audit-readiness checklists.
@@ -68,6 +69,26 @@ Default expectations:
6869
- Upgradeable contracts only with strict storage layout discipline, initialization guards, upgrade authorization, and rehearsal tests.
6970
- Mainnet deployment only after tests, verification, monitoring, and human approval.
7071

72+
73+
## Octra support
74+
75+
When users ask about Octra, treat it as an emerging network and verify current repository or documentation state before making claims. Prefer official Octra Labs repositories and provided project files over social posts or third-party farming guides.
76+
77+
Known Octra tooling patterns to support:
78+
79+
- `octra-labs/octra_pre_client`: Python terminal wallet client using a local `wallet.json` with `priv`, `addr`, and `rpc`, commonly pointed at `https://octra.network`.
80+
- `octra-labs/webcli`: C++17 local web wallet client for Octra network work, including DEVNET and MAINNET ALPHA modes, encrypted local wallet file storage, stealth transactions, and balance encryption or decryption flows.
81+
- `octra-labs/wallet-gen`: wallet generator UI with scripts hosted from `octra.org` and a faucet referenced at `https://faucet.octra.network`.
82+
83+
Octra-specific safety rules:
84+
85+
1. Never ask users to paste private keys, seed phrases, `wallet.json`, `data/wallet.oct`, PINs, or decrypted key material into chat.
86+
2. Prefer local signing and local wallet generation workflows. Treat remote scripts as convenience paths that must be inspected or replaced with cloned-source execution for high-value use.
87+
3. Verify official repository URLs, build instructions, dependencies, RPC endpoints, and network mode before giving operational commands.
88+
4. For C++ webcli work, review vendored crypto and HTTP libraries, OpenSSL linkage, local server binding, wallet encryption, filesystem permissions, and transaction construction.
89+
5. For Python terminal client work, review async RPC calls, wallet file permissions, transaction serialization, nonce handling, error handling, and private-key export paths.
90+
6. Treat faucet, testnet, and alpha-mainnet activity as experimental. Do not imply production safety or asset guarantees without current evidence.
91+
7192
## Testing standard
7293

7394
A serious blockchain deliverable should include:

distribution.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
name: chainforge
2-
version: 2.0.0
2+
version: 2.1.0
33
description: Battle-hardened blockchain architect for production-grade smart contracts,
44
protocols, tokenomics, audits, and decentralized ecosystems.
55
hermes_requires: '>=0.12.0'

skills/chainforge-blockchain-engineering/SKILL.md

Lines changed: 15 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ author: CodeGraphTheory
66
license: MIT
77
metadata:
88
hermes:
9-
tags: [blockchain, smart-contracts, solidity, foundry, security, tokenomics, audit]
9+
tags: [blockchain, smart-contracts, solidity, foundry, security, tokenomics, audit, octra]
1010
---
1111

1212
# ChainForge Blockchain Engineering
@@ -15,7 +15,7 @@ Use this skill when working on smart contracts, protocol architecture, tokenomic
1515

1616
## Inputs to gather
1717

18-
- Target chain or VM: EVM, Solana, Move, CosmWasm, or cross-chain.
18+
- Target chain or VM: EVM, Solana, Move, CosmWasm, Octra, or cross-chain.
1919
- Repository framework: Foundry, Hardhat, Anchor, Move package, CosmWasm workspace, or custom.
2020
- Assets at risk: tokens, governance, fees, user balances, private data, privileged roles.
2121
- Trust assumptions: admins, multisigs, oracles, relayers, bridges, validators, signers.
@@ -30,9 +30,10 @@ Use this skill when working on smart contracts, protocol architecture, tokenomic
3030
4. Prefer audited libraries and simple architecture over bespoke cleverness.
3131
5. For EVM, default to Foundry tests when available. Add fuzz and invariant tests for accounting or authorization logic.
3232
6. For Solana, verify account constraints, signer checks, PDA seeds, CPI targets, token program IDs, and close authority behavior.
33-
7. For tokenomics, analyze supply, emissions, vesting, liquidity, governance capture, oracle or bridge security, and revenue sources.
34-
8. Run the smallest relevant verification command, then broader tests when practical.
35-
9. Report exact commands, outcomes, risks, and assumptions.
33+
7. For Octra, identify whether the work targets `octra_pre_client`, `webcli`, `wallet-gen`, RPC integration, faucet or testnet operations, or transaction review before giving commands.
34+
8. For tokenomics, analyze supply, emissions, vesting, liquidity, governance capture, oracle or bridge security, and revenue sources.
35+
9. Run the smallest relevant verification command, then broader tests when practical.
36+
10. Report exact commands, outcomes, risks, and assumptions.
3637

3738
## Review checklist
3839

@@ -45,6 +46,15 @@ Use this skill when working on smart contracts, protocol architecture, tokenomic
4546
- Admin powers are disclosed and minimized.
4647
- Deployment steps include verification, monitoring, and incident response.
4748

49+
## Octra checklist
50+
51+
- Verify official Octra Labs repository URLs before relying on commands or endpoints.
52+
- Never expose private keys, seed phrases, wallet JSON, `data/wallet.oct`, PINs, or decrypted wallet material.
53+
- For `octra_pre_client`, inspect `wallet.json.example`, `requirements.txt`, async RPC behavior, nonce handling, transaction serialization, and private-key export paths.
54+
- For `webcli`, inspect C++17 build flags, OpenSSL 3 linkage, local server binding, wallet encryption, filesystem permissions, vendored crypto or HTTP code, and transaction builders.
55+
- For `wallet-gen`, prefer cloned-source review over blind remote script execution for high-value use.
56+
- Treat DEVNET, testnet, faucet, and MAINNET ALPHA instructions as volatile. Verify live docs or repo README before acting.
57+
4858
## Pitfalls
4959

5060
- Treating a multisig as a complete security model.

skills/octra-support/SKILL.md

Lines changed: 69 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,69 @@
1+
---
2+
name: octra-support
3+
description: "Support Octra network wallet, client, RPC, faucet, and security-review workflows with private-key-safe handling and repository-grounded commands."
4+
version: 0.1.0
5+
author: CodeGraphTheory
6+
license: MIT
7+
metadata:
8+
hermes:
9+
tags: [octra, wallet, blockchain, security, rpc, testnet]
10+
---
11+
12+
# Octra Support
13+
14+
Use this skill when the user asks about Octra, Octra wallets, Octra clients, Octra RPC, faucet usage, Octra testnet or alpha-mainnet activity, or code review of Octra-related repositories.
15+
16+
## Ground truth first
17+
18+
Octra appears to be an emerging network with fast-moving tooling. Before giving operational commands, inspect the current repository files or current official documentation when available. Prefer official Octra Labs repositories over third-party farming guides.
19+
20+
Known official repositories discovered during profile maintenance:
21+
22+
- `octra-labs/octra_pre_client`: Python terminal wallet client. Its README describes balance and transaction history, sending one or many transactions, private-key or full-wallet export, Python 3.8 or later, `wallet.json`, and RPC default examples using `https://octra.network`.
23+
- `octra-labs/webcli`: C++17 local web wallet client. Its README describes DEVNET and MAINNET ALPHA compatibility, local server usage, OpenSSL 3, `libpvac`, encrypted local wallet storage in `data/wallet.oct`, PIN unlock, stealth transactions, and balance encryption or decryption flows.
24+
- `octra-labs/wallet-gen`: wallet generator UI. Its README describes install scripts from `octra.org` and references `https://faucet.octra.network` for testnet tokens.
25+
26+
## Private-key safety
27+
28+
Never ask the user to paste or upload:
29+
30+
- Private keys.
31+
- Seed phrases.
32+
- `wallet.json`.
33+
- `data/wallet.oct`.
34+
- PINs.
35+
- Decrypted wallet material.
36+
- Faucet auth tokens or API keys.
37+
38+
If key material is needed, instruct the user to keep it local and provide redacted file structure or command output only.
39+
40+
## Workflow
41+
42+
1. Identify the Octra task type: install, wallet generation, send flow, RPC integration, faucet, testnet troubleshooting, webcli build, terminal client review, or security audit.
43+
2. Inspect repository files such as `README.md`, `requirements.txt`, `package.json`, `Makefile`, `setup.sh`, `wallet.json.example`, `rpc_client.hpp`, `wallet.hpp`, `crypto_utils.hpp`, and transaction builder files.
44+
3. Verify platform requirements before commands: Python version for terminal client, C++17 compiler and OpenSSL 3 for webcli, Bun or Node tooling for wallet generation if applicable.
45+
4. Prefer local clone and review over blind remote script execution. If a README uses `curl | bash` or PowerShell `iex`, offer a safer cloned-source path for high-value wallets.
46+
5. Check wallet file permissions, local server binding, RPC endpoint configuration, transaction serialization, nonce handling, error handling, and logging of sensitive values.
47+
6. For troubleshooting, ask for redacted errors and public addresses only. Never request secrets.
48+
7. Clearly label Octra network mode assumptions: DEVNET, testnet, faucet, MAINNET ALPHA, or unknown.
49+
50+
## Review checklist
51+
52+
- Private key import, export, and storage paths are explicit and protected.
53+
- Wallet files are excluded from git and stored with restrictive permissions.
54+
- Local web servers bind to loopback unless the user explicitly accepts LAN exposure.
55+
- PIN-based encryption states algorithm, KDF, salt, nonce, and failure behavior.
56+
- RPC calls validate responses and handle stale, missing, or malformed data.
57+
- Transaction builders cover amount encoding, destination validation, nonce or sequence handling, signature domain separation, and replay resistance.
58+
- Logs and exceptions do not print private keys, PINs, wallet JSON, or decrypted wallet contents.
59+
- Remote install scripts are treated as untrusted until inspected.
60+
61+
## Output expectations
62+
63+
For Octra answers, include:
64+
65+
1. What was verified from files or docs.
66+
2. Commands or code, if requested.
67+
3. Private-key safety notes.
68+
4. Network mode assumptions.
69+
5. Remaining risks or checks before using real funds.

templates/profile.params.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,7 @@ name: chainforge
22
display_name: ChainForge
33
description: Battle-hardened blockchain architect for production-grade smart contracts, protocols, tokenomics, audits, and decentralized ecosystems.
44
author: CodeGraphTheory
5-
version: 2.0.0
5+
version: 2.1.0
66
license: MIT
77
hermes_requires: ">=0.12.0"
88
model_provider: openrouter

0 commit comments

Comments
 (0)