Skip to content
Open
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
88 changes: 88 additions & 0 deletions .github/ISSUE_TEMPLATE/bug_report.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,88 @@
name: Bug report
description: Report a reproducible frontend, backend, contract, or CI problem.
title: "[Bug]: "
labels:
- bug
- dx
body:
- type: markdown
attributes:
value: |
Thanks for reporting a SecureFlow bug. Do not include secrets, private keys, API keys, or sensitive wallet data.

- type: textarea
id: summary
attributes:
label: Summary
description: What happened, and what did you expect instead?
placeholder: I expected ..., but ...
validations:
required: true

- type: textarea
id: steps
attributes:
label: Reproduction steps
description: Provide the smallest set of steps or commands that reproduces the problem.
placeholder: |
1. Run ...
2. Open ...
3. See ...
validations:
required: true

- type: dropdown
id: area
attributes:
label: Affected layer
multiple: true
options:
- Frontend
- Backend
- Soroban contract
- Generated contract clients
- CI / tooling
- Documentation
- Not sure
validations:
required: true

- type: input
id: os
attributes:
label: Operating system
placeholder: "macOS 15.5, Ubuntu 24.04, Windows 11, etc."
validations:
required: true

- type: input
id: node-version
attributes:
label: Node.js version
placeholder: "node --version"

- type: input
id: rust-version
attributes:
label: Rust version
placeholder: "rustc --version"

- type: input
id: stellar-version
attributes:
label: Stellar CLI / scaffold version
placeholder: "stellar --version; stellar-scaffold --version"

- type: textarea
id: logs
attributes:
label: Logs, screenshots, or failing output
description: Paste terminal output, browser console errors, screenshots, or test failures. Redact secrets.
render: shell

- type: textarea
id: extra
attributes:
label: Additional context
description: Link related issues, PRs, deployments, or docs.

56 changes: 56 additions & 0 deletions .github/ISSUE_TEMPLATE/contract_issue.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,56 @@
name: Contract issue
description: Report or propose a Soroban contract change.
title: "[Contract]: "
labels:
- contract
- security
body:
- type: markdown
attributes:
value: |
Use this for public contract bugs, invariants, gas issues, tests, or API concerns. For exploitable vulnerabilities, follow SECURITY.md and use a private advisory instead.

- type: textarea
id: summary
attributes:
label: Summary
description: Describe the contract behavior, invariant, or API concern.
validations:
required: true

- type: input
id: function
attributes:
label: Affected function or module
placeholder: "contracts/secureflow/src/... or function_name()"
validations:
required: true

- type: textarea
id: impact
attributes:
label: Security implications
description: Explain possible effects on escrow funds, milestones, disputes, deadlines, permissions, storage, events, generated clients, or gas usage.
placeholder: "Impact is limited to ... / Could affect ..."
validations:
required: true

- type: textarea
id: reproduction
attributes:
label: Reproduction or test case
description: Include a failing test, command, transaction flow, or minimal scenario when possible.
render: shell

- type: textarea
id: proposed-fix
attributes:
label: Proposed fix
description: Share the expected contract behavior or implementation direction.

- type: textarea
id: references
attributes:
label: References
description: Link related docs, issues, PRs, audits, or Stellar/Soroban references.

67 changes: 67 additions & 0 deletions .github/ISSUE_TEMPLATE/feature_request.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,67 @@
name: Feature request
description: Suggest a scoped SecureFlow improvement.
title: "[Feature]: "
labels:
- enhancement
- dx
body:
- type: markdown
attributes:
value: |
Use this for product, UX, frontend, backend, contract, testing, tooling, and documentation improvements.

- type: textarea
id: problem
attributes:
label: Problem or opportunity
description: What user, contributor, operator, or maintainer problem should this solve?
placeholder: This would help because ...
validations:
required: true

- type: textarea
id: proposal
attributes:
label: Proposed solution
description: Describe the change you would like to see.
placeholder: |
- Add ...
- Update ...
- Keep ...
validations:
required: true

- type: dropdown
id: area
attributes:
label: Affected layer
multiple: true
options:
- Frontend
- Backend
- Soroban contract
- Generated contract clients
- CI / tooling
- Documentation
- Not sure
validations:
required: true

- type: textarea
id: alternatives
attributes:
label: Alternatives considered
description: Share workarounds, rejected approaches, or related designs.

- type: textarea
id: testing
attributes:
label: Test or validation plan
description: What would prove this change works?

- type: textarea
id: references
attributes:
label: References
description: Link related issues, PRs, docs, mockups, or external references.

47 changes: 47 additions & 0 deletions .github/pull_request_template.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,47 @@
## Why

<!-- Explain the problem or opportunity. Link issues with Closes #... when applicable. -->

## What changed

-

## Type of change

- [ ] feat
- [ ] fix
- [ ] docs
- [ ] test
- [ ] refactor
- [ ] chore / ci
- [ ] contract
- [ ] frontend
- [ ] backend

## Test evidence

<!-- Paste command output, screenshots, or a short reason when a check is not relevant. -->

- [ ] `npm run lint`
- [ ] `npx prettier . --check`
- [ ] `npm run build`
- [ ] `npm test --if-present`
- [ ] `cd backend && npm run build`
- [ ] `cargo fmt --all -- --check`
- [ ] `cargo clippy --workspace --all-targets -- -D warnings`
- [ ] `cargo test --workspace --locked`
- [ ] `STELLAR_SCAFFOLD_ENV=development stellar-scaffold build --build-clients`
- [ ] `npm run install:contracts`

## Contract impact

- [ ] No contract changes
- [ ] Affected functions/modules are listed
- [ ] Events, storage layout, generated clients, and security implications are documented

## Safety checklist

- [ ] No secrets, `.env` files, private keys, generated credentials, or build artifacts are committed
- [ ] User-visible behavior, API changes, or environment variable changes are documented
- [ ] Follow-up work is explicitly listed

Loading