This repository contains tools that make on-chain governance safer, including automated scripts that apply checks to live proposals to allow for better informed voting.
Every few hours a GitHub workflow is run which simulates all proposals for each DAO defined in governance-checks.yaml.
Reports for each proposal are saved as Markdown files associated with the workflow run.
To view the reports, navigate to this repo's Actions, select a workflow, and download the attached artifacts.
This will download a zip file containing all reports, where you can find the report you're interested in and open it in your favorite markdown viewer.
Soon, alternative viewing options will be available so you don't need to download the files.
If running the simulations locally, you can find the reports in the reports folder.
Some notes on the outputs of reports:
- If a transaction reverts, that will be reported in the state changes section
- State changes and events around the proposal execution process, such as the
ExecuteTransactionevent andqueuedTransactionsstate changes, are omitted from reports to reduce noise - Slither analysis for the timelock, governor proxy, and governor implementation is skipped to reduce noise in the output. Note that skipping analysis for the implementation on historical proposals requires an archive node, and a warning will be shown if archive data is required not available
- ETH balance changes are reported in a dedicated section, showing transfers and net balance changes for each address involved
This repository also includes a frontend application that allows you to visualize simulation results and create proposals.
To run the frontend with simulation results:
-
Run a simulation first:
# run a specific simulation SIM_NAME=uni-transfer bun run sim -
Start the frontend:
bun run propose
-
Or do both in one command:
# Run specific simulation and start frontend SIM_NAME=uni-transfer bun run propose
The frontend will be available at http://localhost:3000.
The frontend allows you to:
- View simulation results including state changes, events, and checks the same way reports are visualized
- Connect your wallet to sign and submit proposals using the proposal data
You will need to set up a .env.local file in the frontend folder according to the example .env.local
To add a DAO to CI, submit a pull request that adds the desired DAO_NAME and GOVERNOR_ADDRESS
to the matrix section of .github/workflows/governance-checks.yaml.
Note that currently only Compound GovernorBravo and OpenZeppelin style governors are supported.
First, create a file called .env with the following environment variables:
# Etherscan API Key, used when running Slither.
ETHERSCAN_API_KEY=yourEtherscanApiKey
# URL to your node, e.g. Infura or Alchemy endpoint.
RPC_URL=yourNodeUrl
# Tenderly access token.
# Access token is obtained from the Tenderly UI via Account > Authorization > Generate Access Token.
TENDERLY_ACCESS_TOKEN=yourAccessToken
# Tenderly user name.
# User name can be found in the URL of your project: https://dashboard.tenderly.co/<userName>/<project_slug>/transactions
# This is `me` for personal accounts.
TENDERLY_USER=userName
# Tenderly project slug.
# Project slug can be found in the URL of your project: https://dashboard.tenderly.co/<userName>/<project_slug>/transactions.
# The name of your tenderly project may not always be your project slug,
# and the project slug can sometimes just be `project`.
TENDERLY_PROJECT_SLUG=projectName
# Define the DAO name and the address of its governor.
DAO_NAME=Uniswap
GOVERNOR_ADDRESS=0x408ED6354d4973f66138C91495F2f2FCbd8724C3There are two modes of operation:
- Run
bun startto simulate and run checks on all Governor proposals. - Alternatively, create a file called
<analysisName>.sim.tsand run a specific simulation withSIM_NAME=analysisName bun start. See the*.sim.tsfiles in thesimsfolder for examples.
When running either of those two modes locally, reports will be saved into a reports/ folder in the root of the repository.
The specific path will be ./reports/${daoName}/${governorAddress}/${proposalId}.${extension}.
The reports/ folder is gitignored, so when searching for reports in this directory your editor may hide the files by default.
To run the tests:
cd checks
bun testOr to run a specific test file:
cd checks
bun test tests/check-eth-balance-changes.test.tsCurrently, there is a test for the ETH balance changes check, which verifies that the check correctly identifies and reports ETH transfers and balance changes. As new checks are added or existing checks are modified, corresponding tests should be added to ensure their functionality. The test framework is set up to use Bun's built-in testing capabilities and can be extended to cover additional checks in the future.