Idk

.devcontainer/devcontainer.json

@@ -0,0 +1,10 @@
+{
+	"image": "mcr.microsoft.com/devcontainers/universal:2",
+	"features": {
+		"ghcr.io/dhoeric/features/act:1": {},
+		"ghcr.io/nikiforovall/devcontainer-features/dotnet-csharpier:1": {},
+		"ghcr.io/devcontainers-extra/features/act:1": {},
+		"ghcr.io/devcontainers-extra/features/actionlint:1": {},
+		"ghcr.io/dotnet/aspire-devcontainer-feature/dotnetaspire:1": {}
+	}
+}

.env.example

@@ -0,0 +1,13 @@
+# RPC Endpoints
+GROK_API_KEY=your_grok_key_here
+SOLANA_RPC=https://api.mainnet-beta.solana.com
+HELIUS_API_KEY=your_helius_key_here
+QUICKNODE_ENDPOINT=your_quicknode_endpoint_here
+MORALIS_API_KEY=your_moralis_key_here
+
+# Relayer
+RELAYER_URL=https://api.helius.xyz/v0/transactions/submit
+RELAYER_FEE_PAYER=HeLiuSrpc1111111111111111111111111111111111
+
+# DO NOT COMMIT ACTUAL KEYS
+# Copy to .env and add real values

.github/dependabot.yml

@@ -1,19 +1,28 @@
-# To get started with Dependabot version updates, you'll need to specify which
-# package ecosystems to update and where the package manifests are located.
-# Please see the documentation for all configuration options:
-# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
-
 version: 2
 updates:
-  - package-ecosystem: "gomod"
+  - package-ecosystem: "npm"
     directory: "/"
     schedule:
-      interval: "weekly"
-  - package-ecosystem: "docker"
+      interval: "daily"
+    open-pull-requests-limit: 10
+    reviewers:
+      - "loydcercenia-Paul"
+    labels:
+      - "dependencies"
+      - "automated"
+
+  - package-ecosystem: "github-actions"
     directory: "/"
     schedule:
       interval: "weekly"
-  - package-ecosystem: "github-actions"
+    labels:
+      - "github-actions"
+      - "automated"
+
+  - package-ecosystem: "docker"
     directory: "/"
     schedule:
       interval: "weekly"
+    labels:
+      - "docker"
+      - "automated"

.github/workflows/.github/workflows/dependency-audit.yml

@@ -0,0 +1,132 @@
+name: "Dependency Audit & Vulnerability Scan"
+
+# Run on push to main (or any branch), and on a daily schedule
+on:
+  push:
+    branches:
+      - '**'
+  schedule:
+    - cron: '0 2 * * *' # daily at 02:00 UTC
+  workflow_dispatch:
+
+concurrency:
+  group: dependency-audit
+  cancel-in-progress: true
+
+jobs:
+  audit-node:
+    name: "Node.js / npm audit"
+    runs-on: ubuntu-latest
+    if: ${{ always() }}
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '18'
+          cache: 'npm'
+
+      - name: Install dependencies (npm)
+        if: ${{ hashFiles('**/package-lock.json') != '' }}
+        run: |
+          npm ci
+
+      - name: Run npm audit (JSON)
+        if: ${{ hashFiles('**/package-lock.json') != '' }}
+        run: |
+          set -o pipefail
+          npm audit --json > npm-audit.json || true
+          cat npm-audit.json
+
+      - name: Upload npm audit artifact
+        if: ${{ hashFiles('**/package-lock.json') != '' }}
+        uses: actions/upload-artifact@v4
+        with:
+          name: npm-audit-json
+          path: npm-audit.json
+
+      - name: Fail on high/critical npm findings
+        if: ${{ hashFiles('**/package-lock.json') != '' }}
+        run: |
+          jq -e '.advisories as $a | ($a | to_entries | map(.value) | map(select(.severity == "high" or .severity == "critical")) | length) > 0' npm-audit.json \
+            && (echo "High/Critical vulnerabilities found in npm dependencies" && exit 1) || echo "No high/critical npm vulnerabilities"
+
+  audit-go:
+    name: "Go / govulncheck"
+    runs-on: ubuntu-latest
+    if: ${{ always() }}
+    needs: audit-node
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup Go
+        uses: actions/setup-go@v4
+        with:
+          go-version: '1.24'
+
+      - name: Install govulncheck
+        run: |
+          set -eux
+          GO111MODULE=on go install golang.org/x/vuln/cmd/govulncheck@latest
+          export PATH=$PATH:$(go env GOPATH)/bin
+
+      - name: Run govulncheck (JSON)
+        run: |
+          set -eux
+          # run in module root; govulncheck returns 0 with no vulns, >0 otherwise
+          $(go env GOPATH)/bin/govulncheck -json ./... > govulncheck.json || true
+          cat govulncheck.json
+
+      - name: Upload govulncheck artifact
+        uses: actions/upload-artifact@v4
+        with:
+          name: govulncheck-json
+          path: govulncheck.json
+
+      - name: Fail on found Go vulnerabilities (HIGH/CRITICAL)
+        run: |
+          # govulncheck JSON has "vulns" entries; search for severity levels if available
+          if jq -e '.vulns | length > 0' govulncheck.json >/dev/null 2>&1; then
+            # Try to detect severity mentions; if none, fail so maintainers can review
+            if jq -e '.vulns | map(.fixed|length > 0 or true) | length > 0' govulncheck.json >/dev/null 2>&1; then
+              echo "Go vulnerabilities detected — please review govulncheck.json artifact."
+              exit 1
+            fi
+          fi
+          echo "No Go vulnerabilities detected (or none reported by govulncheck)."
+
+  results-notify:
+    name: "Publish summary"
+    runs-on: ubuntu-latest
+    needs: [audit-node, audit-go]
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Download artifacts
+        uses: actions/download-artifact@v4
+        with:
+          path: artifacts
+
+      - name: Create short summary comment (if run from PR)
+        if: github.event_name == 'pull_request'
+        uses: actions/github-script@v7
+        with:
+          script: |
+            const fs = require('fs');
+            const path = 'artifacts';
+            let summary = `🔎 Dependency audit artifacts available:\\n\\n`;
+            const files = fs.readdirSync(path);
+            files.forEach(f => summary += `- ${f}\\n`);
+            github.rest.issues.createComment({
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              issue_number: context.issue.number || github.context.payload.pull_request.number,
+              body: summary
+            });
+
+      - name: Finish
+        run: echo "Artifacts uploaded: $(ls -la artifacts || true)"

.github/workflows/auto-update.yml

@@ -0,0 +1,97 @@
+name: Auto Update & Upgrade
+
+on:
+  schedule:
+    - cron: '0 0 * * 0'
+  workflow_dispatch:
+
+jobs:
+  update-dependencies:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+
+      - name: Update npm packages
+        run: |
+          npm update
+          npm outdated || true
+
+      - name: Check Solana SDK Updates
+        run: |
+          CURRENT=$(npm list @solana/web3.js --depth=0 | grep @solana/web3.js | awk '{print $2}')
+          LATEST=$(npm view @solana/web3.js version)
+          echo "Current: $CURRENT"
+          echo "Latest: $LATEST"
+          if [ "$CURRENT" != "$LATEST" ]; then
+            npm install @solana/web3.js@latest
+          fi
+
+      - name: Search Solana Best Practices
+        run: |
+          echo "🔍 Searching for Solana best practices..."
+          curl -s "https://api.github.com/search/repositories?q=solana+security+best+practices&sort=stars" | jq -r '.items[0:3] | .[] | .html_url'
+
+      - name: Create PR with Updates
+        uses: peter-evans/create-pull-request@v7
+        with:
+          commit-message: "⬆️ Update dependencies and apply best practices"
+          title: "Automated Dependency Updates"
+          body: |
+            ## Automated Updates
+
+            This PR includes:
+            - Updated npm dependencies
+            - Latest Solana SDK
+            - Security patches
+
+            Please review and merge.
+          branch: auto-updates
+          labels: automated, dependencies
+
+  solana-upgrade-check:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check Solana Network Upgrades
+        run: |
+          echo "🔄 Checking Solana network upgrades..."
+          curl -s https://api.mainnet-beta.solana.com -X POST -H "Content-Type: application/json" -d '
+          {
+            "jsonrpc": "2.0",
+            "id": 1,
+            "method": "getVersion"
+          }' | jq .
+
+      - name: Check Program Upgrade Status
+        run: |
+          echo "📦 Checking program upgrade status..."
+          curl -s https://api.mainnet-beta.solana.com -X POST -H "Content-Type: application/json" -d '
+          {
+            "jsonrpc": "2.0",
+            "id": 1,
+            "method": "getAccountInfo",
+            "params": ["4Ec7ZxZS6Sbdg5UGSLHbAnM7GQHp2eFd4KYWRexAipQT", {"encoding": "base64"}]
+          }' | jq .result
+
+      - name: Report Findings
+        run: |
+          echo "📊 Generating upgrade report..."
+          cat > upgrade-report.md <<EOF
+          # Solana Upgrade Report
+
+          **Date:** $(date)
+
+          ## Network Status
+          - Cluster: Mainnet-beta
+          - Health: Active
+
+          ## Recommendations
+          - Keep dependencies updated
+          - Monitor program upgrades
+          - Review security advisories
+          EOF
+          cat upgrade-report.md