Skip to content

0xSoftBoi/quantgroup

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
cache
cache
 
 
docs
docs
 
 
lib
lib
 
 
out
out
 
 
src
src
 
 
test
test
 
 
tests
tests
 
 
.gitmodules
.gitmodules
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
foundry.lock
foundry.lock
 
 
foundry.toml
foundry.toml
 
 
wake.toml
wake.toml
 
 

Repository files navigation

QuantDEX

A constant-product AMM (automated market maker) DEX built in Solidity. Supports multi-pool token swaps, liquidity provision, and LP share tracking — all governed by the x * y = k invariant with a 0.3% swap fee.

Rebuilt from my original 2017 DEX experiment — same vision, now with constant-product AMM and proper test coverage.

How it works

Pool state

Each token pair maps to a pool via keccak256(abi.encodePacked(tokenA, tokenB)). The pool stores reserveA, reserveB, and totalShares.

Adding liquidity

addLiquidity(tokenA, tokenB, amountA, amountB) pulls both tokens from the caller and mints LP shares proportional to the deposit. The first deposit bootstraps the pool at the geometric mean (sqrt(amountA * amountB)). Subsequent deposits must respect the existing ratio — the contract mints shares based on the lesser of the two pro-rata amounts.

Removing liquidity

removeLiquidity(tokenA, tokenB, shares) burns LP shares and returns a pro-rata slice of both reserves to the caller.

Swapping

swap(tokenIn, tokenOut, amountIn, minAmountOut) routes through the pool in either direction. The output amount is computed as:

amountOut = (amountIn * 997 * reserveOut) / (reserveIn * 1000 + amountIn * 997)

The 0.3% fee stays in the pool, accruing to LPs. The minAmountOut parameter acts as a slippage guard — the call reverts if the output falls below it.

Security notes

  • Reserves are internal accounting (pool.reserveA/pool.reserveB), never balanceOf. This structurally closes the first-depositor donation/inflation attack: a raw transfer to the contract isn't counted, so it can't move share price. (The sqrt bootstrap is only for ratio-independence — Uniswap v2 §3.4 — not the inflation defense.)
  • Transfers use OpenZeppelin SafeERC20, so tokens that return false or no value (e.g. USDT) revert rather than silently failing.
  • Standard ERC20s only. Reserves are credited by the requested amount, so fee-on-transfer / rebasing tokens are unsupported.

Full attack-surface analysis: SECURITY.md. Status: unaudited, educational.

Stack

Build

forge build

Test

forge test -vv

Tests cover:

  • Bootstrap liquidity (addLiquidity)
  • Second-deposit liquidity at existing ratio
  • Full removeLiquidity round-trip
  • Swap A→B and B→A
  • Slippage revert
  • Constant-product invariant holds after swap (k_after >= k_before)

About

Annotated constant-product AMM for auditors — attack simulations, invariant tests, Wake fuzz suite, 18 Foundry tests, SWC/CWE mapping

Topics

solidity fuzzing amm defi invariant-testing smart-contract-security

Resources

Readme

Security policy

Security policy
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages