Module guards

Expand description

Security guard packs – safe-by-default exploit prevention.

Pre-built validation bundles for common exploit classes:

Functions§

check_lamport_conservation: Verify SOL conservation: total lamports before == total lamports after.
check_writable_coherence: Validate that every writable account in the slice is also a signer OR is owned by our program.
require_all_unique: Verify that all accounts in a slice have unique addresses.
require_authority: Validate an authority account: must be signer, owned by expected program.
require_owned_writable: Validate a writable program-owned account.
require_payer: Validate a payer account: must be signer + writable.
require_unique_signers: Verify that no duplicated account is used as a signer.
require_unique_writable: Verify that no duplicated account is writable.
snapshot_lamports: Snapshot lamport values for conservation checking.