Security

This document covers the security architecture, patterns, and practices implemented across Built By DAO's smart contract system.

🔐 Security Overview

🔒 Access

🛡️ Guards

📊 Limits

🔍 Audits

Role-based

Reentrancy

Safety rails

External review

🎯 Purpose: Protect user funds and ensure system integrity

🔒 Principle: Defense in depth with multiple security layers

🔒 Access Control Model

Role-Based Access

Pattern

Implementation

📜 Standard

OpenZeppelin AccessControl

🔑 Hierarchy

Admin can grant/revoke

🏷️ Granular

Per-function permissions

Standard Roles

Role

Purpose

Holder

DEFAULT_ADMIN_ROLE

Super admin

Multisig

ADMIN_ROLE

Admin functions

Ops team

MINTER_ROLE

Token minting

Authorized contracts

GOVERNANCE_ROLE

Governance execution

Timelock

Role Assignment

// Only admin can grant roles
function grantRole(bytes32 role, address account)
    public virtual onlyRole(getRoleAdmin(role));

// Role-protected function
function mint(address to, uint256 amount)
    external onlyRole(MINTER_ROLE);

Founder → Multisig Transition

Phase

Control

🔵 Launch

Founder single-sig

🟡 Transition

enableMultisig()

🟢 Operational

Multisig control

modifier onlyAuthorized() {
    if (multisigEnabled) {
        if (msg.sender != multisigWallet) revert NotAuthorized();
    } else {
        if (msg.sender != founder) revert NotAuthorized();
    }
    _;
}

One-Way Transition

function enableMultisig(address _multisig) external onlyFounder {
    if (multisigEnabled) revert MultisigAlreadyEnabled();
    if (_multisig == address(0)) revert InvalidAddress();
    multisigWallet = _multisig;
    multisigEnabled = true;
    emit MultisigEnabled(_multisig);
}

No way to disable once enabled.

🛡️ Security Patterns

Reentrancy Protection

import "@openzeppelin/contracts/security/ReentrancyGuard.sol";

function withdraw(uint256 amount) external nonReentrant {
    // Safe from reentrancy
}

Contract

Protected Functions

Treasury

All withdrawals

Bank

Buy/sell operations

Rental

Payment processing

Checks-Effects-Interactions

function transfer(address to, uint256 amount) external {
    // 1. Checks
    require(balances[msg.sender] >= amount, "Insufficient");

    // 2. Effects
    balances[msg.sender] -= amount;
    balances[to] += amount;

    // 3. Interactions
    emit Transfer(msg.sender, to, amount);
}

Pull Over Push

// Bad: Push
function distribute() external {
    for (uint i = 0; i < recipients.length; i++) {
        recipients[i].transfer(amounts[i]); // Can fail
    }
}

// Good: Pull
function withdraw() external {
    uint256 amount = pendingWithdrawals[msg.sender];
    pendingWithdrawals[msg.sender] = 0;
    payable(msg.sender).transfer(amount);
}

Pausability

Contract

Pausable

Treasury

Yes (emergency)

Bank

Yes (circuit breaker)

Governance

function pause() external onlyRole(ADMIN_ROLE) {
    _pause();
}

function withdraw() external whenNotPaused {
    // Only works when not paused
}

📊 Treasury Safety Rails

Spending Limits

Limit

Value

Period

📋 Per proposal

10% of treasury

Single proposal

📅 Daily

5% of treasury

Rolling 24 hours

📆 Monthly

20% of treasury

Rolling 30 days

Floor Protection

Parameter

Value

🏠 Minimum balance

15% of peak

🔒 Cannot go below

Floor enforced

function _checkSafetyRails(uint256 amount) internal view {
    // Per-proposal limit
    require(amount <= treasury * 10 / 100, "Exceeds proposal limit");

    // Daily limit
    require(dailySpent + amount <= treasury * 5 / 100, "Exceeds daily limit");

    // Floor protection
    require(treasury - amount >= treasuryFloor, "Below floor");
}

Timelock Delays

Proposal Type

Delay

⚙️ Operational

24 hours

💰 Financial

48 hours

🏛️ Governance

72 hours

Multi-Signature

Threshold

For

3-of-5

Routine operations

4-of-5

Large transactions

5-of-5

Emergency actions

🪙 Token Security

Soul-Bound Implementation

function _update(
    address to,
    uint256 tokenId,
    address auth
) internal override returns (address) {
    address from = _ownerOf(tokenId);

    // Allow mint
    if (from == address(0)) {
        return super._update(to, tokenId, auth);
    }

    // Allow burn
    if (to == address(0)) {
        return super._update(to, tokenId, auth);
    }

    // Block transfer
    revert TransferNotAllowed();
}

EQTBLT Controls

Feature

Implementation

🔒 Non-transferable

Transfer blocked

🔑 Authorized mint

MINTER_ROLE only

🔥 Burn on redeem

Redemption contract

BLTBY Controls

Feature

Implementation

✅ Transferable

Standard ERC-20

📊 Capped supply

Max 100M

🔑 Controlled mint

Bank only

Stablecoin Handling

mapping(address => bool) public supportedStablecoins;
mapping(address => uint8) public stablecoinDecimals;

function _validateStablecoin(address token) internal view {
    require(supportedStablecoins[token], "Unsupported stablecoin");
}

📊 Security Checklist

🔐 Security Principles

🔒 Defense in depth
🛡️ Principle of least privilege
📊 Safety rails on value
🔍 External audits

💻Overview Architecture Treasury Testing

PreviousGovernance V2.1 NextTesting

Last updated 15 days ago

Good evening

Security

🔐 Security Overview

🔒 Access Control Model

Role-Based Access

Standard Roles

Role Assignment

Founder → Multisig Transition

One-Way Transition

🛡️ Security Patterns

Reentrancy Protection

Checks-Effects-Interactions

Pull Over Push

Pausability

📊 Treasury Safety Rails

Spending Limits

Floor Protection

Timelock Delays

Multi-Signature

🪙 Token Security

Soul-Bound Implementation

EQTBLT Controls

BLTBY Controls

Stablecoin Handling

🔍 Audit & Review

Audit Coverage

Known Issues

Bug Bounty

Responsible Disclosure

⚠️ Risk Analysis

Smart Contract Risks

Governance Risks

Economic Risks

Operational Risks

External Risks

🔐 Security Principles

Good evening

hashtag🔐 Security Overview

hashtag🔒 Access Control Model

hashtagRole-Based Access

hashtagStandard Roles

hashtagRole Assignment

hashtagFounder → Multisig Transition

hashtagOne-Way Transition

hashtag🛡️ Security Patterns

hashtagReentrancy Protection

hashtagChecks-Effects-Interactions

hashtagPull Over Push

hashtagPausability

hashtag📊 Treasury Safety Rails

hashtagSpending Limits

hashtagFloor Protection

hashtagTimelock Delays

hashtagMulti-Signature

hashtag🪙 Token Security

hashtagSoul-Bound Implementation

hashtagEQTBLT Controls

hashtagBLTBY Controls

hashtagStablecoin Handling

hashtag🔍 Audit & Review

hashtagAudit Coverage

hashtagKnown Issues

hashtagBug Bounty

hashtagResponsible Disclosure

hashtag⚠️ Risk Analysis

hashtagSmart Contract Risks

hashtagGovernance Risks

hashtagEconomic Risks

hashtagOperational Risks

hashtagExternal Risks

hashtag🔐 Security Principles

hashtag🔗 Related Pages

🔐 Security Overview

🔒 Access Control Model

Role-Based Access

Standard Roles

Role Assignment

Founder → Multisig Transition

One-Way Transition

🛡️ Security Patterns

Reentrancy Protection

Checks-Effects-Interactions

Pull Over Push

Pausability

📊 Treasury Safety Rails

Spending Limits

Floor Protection

Timelock Delays

Multi-Signature

🪙 Token Security

Soul-Bound Implementation

EQTBLT Controls

BLTBY Controls

Stablecoin Handling

🔍 Audit & Review

Audit Coverage

Known Issues

Bug Bounty

Responsible Disclosure

⚠️ Risk Analysis

Smart Contract Risks

Governance Risks

Economic Risks

Operational Risks

External Risks

🔐 Security Principles

🔗 Related Pages