Skip to content

boundlessfi/bounties

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

394 Commits
.github/workflows
.github/workflows
 
 
.husky
.husky
 
 
.vscode
.vscode
 
 
app
app
 
 
components
components
 
 
docs
docs
 
 
helpers
helpers
 
 
hooks
hooks
 
 
lib
lib
 
 
providers
providers
 
 
public
public
 
 
scripts
scripts
 
 
types
types
 
 
.gitignore
.gitignore
 
 
.lintstagedrc
.lintstagedrc
 
 
README.md
README.md
 
 
codegen.ts
codegen.ts
 
 
components.json
components.json
 
 
eslint.config.mjs
eslint.config.mjs
 
 
jest.config.js
jest.config.js
 
 
jest.setup.js
jest.setup.js
 
 
next.config.ts
next.config.ts
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
pnpm-lock.yaml
pnpm-lock.yaml
 
 
postcss.config.mjs
postcss.config.mjs
 
 
proxy.ts
proxy.ts
 
 
tsconfig.json
tsconfig.json
 
 

Repository files navigation

Boundless Bounty

Stellar License Status

Inclusive Web3 Bounty Platform on Stellar

WebsitePlatformDiscord

Overview

Boundless Bounty is an open-source bounty platform built on Stellar that supports all types of Web3 work—not just code. Contributors can earn XLM for design, writing, research, marketing, community management, and development tasks.

Key Features:

  • 🎯 Multiple bounty claiming models
  • ⚡ Credit-based application system
  • 🔐 Passkey wallet integration
  • 💰 Smart contract escrow
  • 📊 On-chain reputation system

Tech Stack

Blockchain:

Frontend:

  • React/Next.js
  • TailwindCSS
  • Stellar SDK

Backend:

  • Node.js/Express
  • PostgreSQL
  • Redis (caching)
  • GraphQL Subscriptions via graphql-ws (replaces Socket.IO for real-time sync)

Integrations:

  • GitHub OAuth
  • KYC providers
  • Payment processors

Getting Started

Prerequisites

node >= 18.0.0
npm >= 9.0.0

Installation

# Clone repository
git clone https://github.com/boundlessfi/bounties.git
cd bounty

# Install dependencies
npm install

# Set up environment variables
cp .env.example .env

# Run development server
npm run dev

All bounty budgets are locked in Soroban smart contracts until work is approved.

Development

Running Tests

# Unit tests
npm test

# Integration tests
npm run test:integration

# Smart contract tests
npm run test:contracts

Building

# Production build
npm run build

Code Style

We use ESLint and Prettier:

npm run lint
npm run format

Contributing

We welcome contributions! Please see CONTRIBUTING.md for guidelines.

Areas for Contribution

  • Frontend components and UI/UX improvements
  • API endpoints and services
  • Documentation
  • Testing and QA
  • Bug fixes and security patches

Development Workflow

  1. Fork the repository
  2. Create a feature branch (git checkout -b feature/amazing-feature)
  3. Commit changes (git commit -m 'Add amazing feature')
  4. Push to branch (git push origin feature/amazing-feature)
  5. Open a Pull Request

API Endpoints

Bounties

GET    /api/bounties              # List all bounties
GET    /api/bounties/:id          # Get bounty details
POST   /api/bounties              # Create bounty (auth required)
PUT    /api/bounties/:id          # Update bounty (auth required)
DELETE /api/bounties/:id          # Delete bounty (auth required)

Applications

GET    /api/applications          # List applications
POST   /api/applications          # Submit application (auth required)
PUT    /api/applications/:id      # Update application (auth required)

Users

GET    /api/users/:id             # Get user profile
PUT    /api/users/:id             # Update profile (auth required)
GET    /api/users/:id/reputation  # Get reputation score

Security

Reporting Vulnerabilities

Please report security vulnerabilities to security@boundlessfi.xyz. Do not open public issues for security concerns.

Security Features

  • Passkey authentication (WebAuthn)
  • Smart contract escrow
  • Rate limiting on API endpoints
  • Input validation and sanitization
  • CORS protection
  • SQL injection prevention

Deployment

Testing

Frontend Testing

cd frontend
npm run test
npm run test:e2e

Backend Testing

License

This project is licensed under the MIT License - see the LICENSE file for details.

Resources

Support

Schema sync (CI)

This repository validates that the local lib/graphql/schema.graphql is kept in sync with the canonical GraphQL schema that lives in the backend repository.

  • The GitHub Actions workflow .github/workflows/check-schema.yml runs node ./scripts/sync-schema.js --check on push and pull requests.
  • If the canonical schema is stored in the private backend repo boundlessfi/boundless-nestjs, the workflow can check out that repo when you provide a repository PAT in the BOUNDLESS_NESTJS_TOKEN secret.

How to enable CI checks for a private backend repo:

  1. Create a GitHub Personal Access Token (PAT) with repo (read) scope for boundlessfi/boundless-nestjs.
  2. In this repository, go to Settings → Secrets → Actions and add a new secret named BOUNDLESS_NESTJS_TOKEN with the PAT value.
  3. The workflow will automatically checkout boundlessfi/boundless-nestjs into the boundless-nestjs path and the sync script will copy src/schema.gql from there.

If you do not want to provide cross-repo access, two alternatives are supported:

  • Set the CANONICAL_SCHEMA environment variable (or repository secret) to a path or URL where the canonical schema.gql can be found, or
  • Keep a copied lib/graphql/schema.graphql file in this repo and update it manually when the backend schema changes.

Local commands:

# copy the canonical schema into this repo (useful for local development)
npm run sync-schema

# CI-friendly check (fails if out-of-sync)
npm run check-schema

Acknowledgments

Built with:

Built on Stellar

WebsitePlatformDiscord

About

bounties-six.vercel.app

Resources

Readme
Activity
Custom properties

Stars

3 stars

Watchers

0 watching

Forks

29 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages