|
Finding the cause of some unreadable tokens
w=3
Some tokens are not visible on the network, but Axiom captures them.
|
Status: Pending |
|
Expose query service via internal API
w=2
Create a simple endpoint that returns latest discovered tokens for the frontend to consume.
|
Done at: 2026-01-06 11:03:25 |
|
Fetch transaction details
w=2
Fetch transaction details
|
Status: Pending |
| Fetch the token contract from the read transaction details w=2 | Status: Pending |
|
Implement websocket/RPC subscription for create events
w=3
Subscribe to the relevant program logs/events; ensure reconnect logic + backoff.
|
Done at: 2026-01-06 11:03:21 |
|
Pump.fun token create event listener: baseline data model
w=2
Define what fields we must capture from create events (mint, creator, timestamp, tx signature, slot, program IDs).
|
Done at: 2026-01-06 11:02:28 |
|
Token metadata fetch pipeline (name/symbol/decimals/image)
w=2
Read on-chain metadata (and/or off-chain URI) with safe timeouts.
|
Done at: 2026-01-06 10:36:36 |
|
Review @@server/query.js: correctness & edge cases
w=2
Handle missing fields, empty responses, invalid mint, RPC errors, timeouts.
|
Done at: 2026-01-06 11:02:04 |
|
Fetching data from PumpFun program
w=2
I am fetching datas from PumpFun program
|
Done at: 2026-01-06 11:03:17 |
|
Query Health Check
Query health check functions added
|
Done at: 2026-01-08 12:20:49 |
|
Trying to approach the speed of Axiom
w=2
In the first phase, we are only aiming to reach a speed close to that.
|
Status: Pending |
|
Basic token list page skeleton (Vite/React)
Display newest tokens with mint, name/symbol, created time; no fancy styling.
|
Done at: 2026-01-06 10:36:44 |
|
Platform internal wallet creation
w=3
Generate keypairs securely; store encrypted at rest; rotation strategy.
|
Status: Pending |
|
User accounts: minimal auth/session model
w=2
Decide email/pass vs wallet-based auth; implement minimal sessions.
|
Status: Pending |
|
One-click buy/sell API: request model
w=2
Define request/response, idempotency key, and error taxonomy.
|
Status: Pending |
|
Wallet storage: encrypted private keys
w=3
Use per-record salt + server-side master key; never store plaintext.
|
Status: Pending |
|
Users table + sessions table
w=2
Implement schema + expiration; indexes.
|
Status: Pending |
|
Price/quote engine baseline
w=3
Fetch pool state and compute quote; handle slippage.
|
Status: Pending |
|
Key management design review
w=3
Threat model: DB leak, server compromise; minimize blast radius.
|
Status: Pending |
|
Rate limiting / abuse controls baseline
w=2
Basic IP + user rate limits for quote/trade endpoints.
|
Status: Pending |
|
Batch RPC calls for quote + trade
w=2
Reduce RPC calls; measure p50/p95 latency.
|
Status: Pending |
|
Wallet screen: show address + balances (minimal)
No fancy charts; just balances and copy address.
|
Status: Pending |
|
Trade form: buy/sell (basic)
Amount input, slippage, submit button, show status.
|
Status: Pending |
|
Trade execution pipeline
w=3
Submit tx, confirm, retries, and user-visible status.
|
Status: Pending |
|
Transaction history
w=2
Persist trade intents, tx signatures, confirmation status.
|
Status: Pending |
|
Trades table + indices
w=2
Fast user history queries.
|
Status: Pending |
|
Backfill job for missed events
w=2
Periodic scan of slots to backfill if listener missed.
|
Status: Pending |
|
Audit logging
Log admin actions + trade intents (no secrets).
|
Status: Pending |
|
Local caching layer for hot metadata
w=2
Cache token metadata/quotes with TTL; invalidate safely.
|
Status: Pending |
|
Token list UX improvements
w=2
Sorting/filter/search, favorites.
|
Status: Pending |
|
Trade status timeline
w=2
Submitted/confirmed/failed states.
|
Status: Pending |
|
Job queue for async processing
w=2
Backfill, metadata fetch, confirmations.
|
Status: Pending |
|
Partitioning/retention strategy
w=2
High volume events: retention + archive tables.
|
Status: Pending |
|
Production config hardening
w=2
Secure headers, CORS policy, env validation.
|
Status: Pending |
|
Profiling + latency budget
w=2
Define budgets for discover->UI and click->trade.
|
Status: Pending |
|
Error/empty states polish
Clear user messaging.
|
Status: Pending |
|
Threat model workshop + document
w=3
Define attacker models; map mitigations.
|
Status: Pending |
|
Private key handling hardening
w=3
Envelope encryption, key rotation, restricted access path.
|
Status: Pending |
|
Server-side signing isolation
w=3
Separate signer service/process; least privilege.
|
Status: Pending |
|
Input validation & request signing
w=2
HMAC/nonce on internal calls; strict schemas.
|
Status: Pending |
|
Anti-automation measures
w=2
Bot detection, device fingerprinting (if needed).
|
Status: Pending |
|
Dependency auditing
w=2
Pin versions; monitor vulnerabilities.
|
Status: Pending |
|
Incident response playbook
w=2
Key compromise steps, user comms, rollback.
|
Status: Pending |
|
RPC provider failover strategy
w=2
Multiple RPC endpoints with health checks.
|
Status: Pending |
|
Fast-path quote cache + prefetch
w=2
Prefetch quotes for top tokens; bounded memory.
|
Status: Pending |
|
Integration tests: listener -> DB -> API
w=3
Replay a known set of events; verify persistence.
|
Status: Pending |
|
Unit tests: quote engine math
w=2
Deterministic fixtures; slippage edge cases.
|
Status: Pending |
|
DB migration tests
w=2
Fresh install + upgrade path.
|
Status: Pending |
|
Auth tests
w=2
Session expiry, brute-force lockouts, rate limit behavior.
|
Status: Pending |
|
UI smoke tests
Basic navigation, token list renders, trade form submits.
|
Status: Pending |
|
Chaos testing: RPC outages
w=2
Failover works, recover cleanly.
|
Status: Pending |
|
Pen-test pass
w=3
OWASP baseline + custom wallet/key flows.
|
Status: Pending |
|
Secrets scanning
w=2
Ensure no keys committed; CI check.
|
Status: Pending |
|
Load test: token ingestion
w=3
Sustained event rate; no memory leaks.
|
Status: Pending |
|
Load test: quote endpoint
w=3
p95 latency targets; cache effectiveness.
|
Status: Pending |